last executing test programs: 59.738082531s ago: executing program 3 (id=16459): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0b046b876c1d0048380019001931a0e69ee517d34460bc06000000a701251e6182949a3651f60a84c9f4d4938037e70e4509c51c268811000000000000000000002571cd53b9851b30599980bc", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001840)=""/183, 0xb7}, {&(0x7f00000038c0)=""/4025, 0xfb9}, {&(0x7f00000048c0)=""/4125, 0x101d}, {&(0x7f00000001c0)=""/186, 0xba}, {&(0x7f00000000c0)=""/152, 0x98}, {&(0x7f0000000e00)=""/75, 0x4b}], 0x6}, 0x40010100) 59.68688979s ago: executing program 3 (id=16464): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000e03000000400001800d0001007564703a73797a31000000002c000400140001"], 0x54}}, 0x0) 59.572406616s ago: executing program 3 (id=16468): r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0) io_setup(0x200, &(0x7f00000010c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000800)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x4, r0, 0x0}]) 59.487033387s ago: executing program 3 (id=16475): semtimedop(0x0, &(0x7f0000000040)=[{0x0, 0x1}], 0x1, 0x0) semop(0x0, &(0x7f00000000c0)=[{}], 0x1) semtimedop(0x0, &(0x7f0000000100)=[{0x0, 0xffff}], 0x1, 0x0) 59.40228434s ago: executing program 3 (id=16483): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mkdirat(r0, &(0x7f0000002040)='./file0\x00', 0x5) 59.306179289s ago: executing program 3 (id=16487): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xfffffffffffffd58, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48) 43.29042976s ago: executing program 32 (id=16487): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0xfffffffffffffd58, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48) 1.005129674s ago: executing program 2 (id=19190): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01000d000000fbdbdf251b000000070021006161"], 0x1c}}, 0x4000890) 1.004574434s ago: executing program 2 (id=19192): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf40b9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x7, 0x100}, 0x204, 0x0, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0xa) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) utimes(0x0, 0x0) 912.645925ms ago: executing program 2 (id=19195): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xe, 0x4a718, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x7, 0xfff}, 0x104b18, 0x6, 0x0, 0x1, 0x8, 0x4, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000016c0)=@newtaction={0xc0, 0x30, 0x53b, 0x0, 0x0, {}, [{0xac, 0x1, [@m_simple={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7ff, 0x3, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbedit={0x50, 0x2, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x8, 0x5, 0x4, 0x8, 0x7fff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xc0}}, 0x0) 912.147165ms ago: executing program 2 (id=19197): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000001200)={0x1, 0x10, 0xfa00, {0x0, r1}}, 0x18) 896.629122ms ago: executing program 2 (id=19198): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 705.098011ms ago: executing program 2 (id=19205): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fdinfo\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) fchdir(r0) 549.736588ms ago: executing program 1 (id=19215): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setsig(0x4203, r0, 0xd3, &(0x7f0000000000)={0x11, 0xec41, 0x6}) 540.298676ms ago: executing program 1 (id=19218): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) 515.40833ms ago: executing program 1 (id=19220): r0 = socket(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'macvlan0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x0, 0x7, r1, 0x2}, 0xc) 429.939812ms ago: executing program 1 (id=19222): perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x1c, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x1000414, &(0x7f00000001c0)=ANY=[@ANYRES64=0x0, @ANYRESOCT=0x0, @ANYRES8, @ANYRES8], 0x1, 0x801, &(0x7f0000001540)="$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") utimes(&(0x7f0000000000)='./file1\x00', 0x0) 429.304872ms ago: executing program 5 (id=19225): perf_event_open(&(0x7f0000000300)={0x2, 0xae, 0xa8, 0x2, 0x0, 0x0, 0x0, 0x1, 0x400, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x1a2d, 0x0, 0x7fa, 0x7, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="10"], 0x48) 309.994307ms ago: executing program 5 (id=19226): perf_event_open(&(0x7f0000000680)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x292ca90c, 0xffffffffffffb2eb}, 0x119b10, 0x1, 0xe, 0x4, 0x8, 0x6, 0xc, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x3c1, 0x3, 0x378, 0x288, 0x168, 0x10, 0x288, 0xb, 0x480, 0x250, 0x250, 0x480, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [0xff6a], [0xff], 'ip6gretap0\x00', 'veth1_to_hsr\x00', {}, {0xff}, 0x3a, 0xb6, 0xb, 0x20}, 0x6000000, 0xa8, 0xd8, 0x0, {0x0, 0x28e}}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0xffffffffffffffff, 0x4, 0x4}, {0x1, 0x2, 0x1}, 0xfc, 0x7fffffff}}}, {{@ipv6={@loopback, @dev={0xfe, 0x80, '\x00', 0x41}, [0xffffff00, 0xffffffff, 0x0, 0xff], [0xff000000, 0x0, 0xffffff00, 0xffffffff], 'veth0_vlan\x00', 'ip6erspan0\x00', {}, {0xff}, 0xff, 0x2, 0x1, 0x40}, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:usb_device_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d8) 306.848095ms ago: executing program 1 (id=19227): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) r0 = open$dir(&(0x7f0000000440)='./file0\x00', 0x42800, 0x0) readv(r0, &(0x7f0000000200)=[{&(0x7f0000000f40)=""/4096, 0x1000}], 0x1) 259.799596ms ago: executing program 5 (id=19228): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00') getdents64(r0, &(0x7f0000000400)=""/43, 0x2b) getdents(r0, 0xffffffffffffffff, 0x7a) 257.700335ms ago: executing program 1 (id=19229): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) read(r0, &(0x7f0000000540)=""/152, 0x98) 234.59723ms ago: executing program 5 (id=19230): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007bc0)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201}, @NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8}, @NFTA_OBJ_HANDLE={0xc}]}, @NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x301, 0x0, 0x0, {0x2}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb0}}, 0x0) 217.702757ms ago: executing program 5 (id=19231): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01000d000000fbdbdf251b000000070021006161"], 0x1c}}, 0x4000890) 183.215419ms ago: executing program 5 (id=19233): syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000001200)='./file0\x00', 0x1000000, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x11fb, &(0x7f0000002440)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.swap.current\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) 157.270624ms ago: executing program 4 (id=19234): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 156.615854ms ago: executing program 0 (id=19235): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0xac, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @loopback}]}]}, 0xac}}, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000006680)={0x0, 0x0, &(0x7f0000006640)={&(0x7f00000065c0)={0x50, 0x1, 0x2, 0x101, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x0) 140.93202ms ago: executing program 0 (id=19236): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000002c0)=@newqdisc={0x88, 0x24, 0xd0f, 0x70bd2d, 0x3, {0x60, 0x0, 0x0, r1, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x10, [0x2, 0x1, 0x6, 0x9, 0x8, 0x9, 0xa, 0x9, 0x5, 0x2, 0x2, 0x4, 0x8, 0xe, 0x2, 0xf], 0x0, [0x0, 0x3, 0xd, 0x6, 0x5, 0xf, 0x7, 0x1ff, 0x2, 0xfb42, 0xc4b, 0x7ff, 0x9, 0x0, 0xb, 0x54], [0xfff9, 0x9, 0xffff, 0xff, 0x2, 0x9f1, 0x1, 0x3b27, 0x1, 0xd, 0x337, 0x5, 0x91b, 0x3, 0x20, 0x7]}}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840) 140.3567ms ago: executing program 4 (id=19237): r0 = socket$inet6(0xa, 0x2, 0x3a) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xb, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000630173100000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmmsg$inet6(r0, &(0x7f0000000340)=[{{&(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x4008}], 0x6}}], 0x1, 0x0) 119.378766ms ago: executing program 0 (id=19238): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r1, r0, 0x4, r0}, 0x10) 98.032831ms ago: executing program 0 (id=19239): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$rxrpc(0x21, 0x2, 0xa) connect$rxrpc(r0, &(0x7f0000000ec0)=@in4={0x21, 0x1, 0x2, 0xf, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x23}}}, 0x24) 97.790791ms ago: executing program 4 (id=19241): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000f80)={0x30, r1, 0x9da65cdd67a402a7, 0x70bd28, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_ENABLED={0x5, 0x29, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x24080845}, 0x60000000) 71.016735ms ago: executing program 4 (id=19242): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@ipv6_newrule={0x4c, 0x20, 0x1, 0x0, 0x25dfdbfc, {0xa, 0x10, 0x4908d13283d17e6b, 0x0, 0x0, 0x0, 0x0, 0x3}, [@FRA_SRC={0x14, 0x2, @private2}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00'}, @FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0xff}]}, 0x4c}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2}]}}}]}, 0x5c}}, 0x0) 70.646085ms ago: executing program 0 (id=19243): mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$TIOCSWINSZ(r0, 0x5414, 0x0) 13.738123ms ago: executing program 4 (id=19244): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0xe82, 0x722}, 0x106200, 0x10004, 0x20da, 0x9, 0x7, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="94010000100001002bbd700000000000fc0100000000000000000000000000000a0101010000000000000000000000000000ecdf001000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x194}}, 0x4050) 13.487213ms ago: executing program 0 (id=19245): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x3ff, 0x80080) read$usbmon(r0, 0x0, 0x0) 0s ago: executing program 4 (id=19246): syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x2010410, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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") mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x81c0, 0x8103) renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0) kernel console output (not intermixed with test programs): n2: entered allmulticast mode [ 302.319207][T11287] ipvlan2: left allmulticast mode [ 302.337784][T11288] netlink: 'syz.4.16553': attribute type 12 has an invalid length. [ 302.378315][T11288] netlink: 132 bytes leftover after parsing attributes in process `syz.4.16553'. [ 302.407860][T11302] loop2: detected capacity change from 0 to 256 [ 302.440273][T11302] FAT-fs (loop2): error, clusters badly computed (0 != 128) [ 302.447592][T11302] FAT-fs (loop2): Filesystem has been set read-only [ 302.469626][T11302] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 302.523054][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 302.523077][ T28] audit: type=1400 audit(2000000067.152:348084): avc: denied { write } for pid=11315 comm="syz.2.16563" path="socket:[117062]" dev="sockfs" ino=117062 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 302.644433][T11333] netlink: 104 bytes leftover after parsing attributes in process `syz.0.16567'. [ 302.835406][ T28] audit: type=1400 audit(2000000067.451:348085): avc: denied { ioctl } for pid=11367 comm="syz.2.16579" path="socket:[117132]" dev="sockfs" ino=117132 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 303.392988][T11411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16592'. [ 303.595306][ T28] audit: type=1400 audit(2000000068.162:348086): avc: denied { ioctl } for pid=11435 comm="syz.1.16598" path="socket:[117196]" dev="sockfs" ino=117196 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 304.098901][T11464] loop4: detected capacity change from 0 to 512 [ 304.112608][T11450] EXT4-fs: Ignoring removed orlov option [ 304.130155][T11464] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 304.152870][T11464] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 304.170905][T11464] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.16606: bg 0: block 248: padding at end of block bitmap is not set [ 304.172941][T11450] EXT4-fs mount: 18 callbacks suppressed [ 304.172981][T11450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 304.205305][T11464] loop4: lost filesystem error report for type 5 error -117 [ 304.216998][T11464] Quota error (device loop4): write_blk: dquota write failed [ 304.224352][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 304.224374][ C0] EXT4-fs (loop4): last error at time 2000000068: ext4_validate_block_bitmap:441 [ 304.249410][T11464] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 304.261098][T11464] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.16606: Failed to acquire dquot type 1 [ 304.272833][T11464] loop4: lost filesystem error report for type 5 error -117 [ 304.273300][T11464] EXT4-fs (loop4): 1 truncate cleaned up [ 304.286687][ T28] audit: type=1400 audit(2000000068.798:348087): avc: denied { unlink } for pid=11448 comm="syz.1.16603" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 304.310948][T11450] EXT4-fs error (device loop1): ext4_free_inode:354: comm syz.1.16603: bit already cleared for inode 13 [ 304.311368][T11464] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 304.356480][T11464] Quota error (device loop4): write_blk: dquota write failed [ 304.376093][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 304.384676][T11464] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 304.431334][T11464] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.16606: Failed to acquire dquot type 1 [ 304.468901][T11464] syz.4.16606 (11464) used greatest stack depth: 9016 bytes left [ 304.499543][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 304.558580][ T28] audit: type=1326 audit(2000000069.060:348088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11501 comm="syz.2.16615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 304.588496][T11505] FAT-fs (loop1): Directory bread(block 1285) failed [ 304.613341][T11505] FAT-fs (loop1): Directory bread(block 1286) failed [ 304.623191][T11505] FAT-fs (loop1): Directory bread(block 1287) failed [ 304.633994][T11505] FAT-fs (loop1): Directory bread(block 1288) failed [ 304.643106][ T28] audit: type=1326 audit(2000000069.060:348089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11501 comm="syz.2.16615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 304.651471][T11505] FAT-fs (loop1): Directory bread(block 1285) failed [ 304.680136][T11514] bond0: option min_links: invalid value (18446744073709530014) [ 304.689777][T11514] bond0: option min_links: allowed values 0 - 2147483647 [ 304.698216][T11505] FAT-fs (loop1): Directory bread(block 1286) failed [ 304.715210][T11505] FAT-fs (loop1): Directory bread(block 1287) failed [ 304.728842][T11505] FAT-fs (loop1): Directory bread(block 1288) failed [ 304.735782][T11505] FAT-fs (loop1): FAT read failed (blocknr 1281) [ 304.803634][T11505] FAT-fs (loop1): Directory bread(block 1285) failed [ 305.094151][T11581] set_capacity_and_notify: 2 callbacks suppressed [ 305.094167][T11581] loop4: detected capacity change from 0 to 1024 [ 305.135169][T11590] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 305.149658][T11581] EXT4-fs: inline encryption not supported [ 305.172235][T11581] EXT4-fs: Ignoring removed nobh option [ 305.179998][T11593] macvtap1: entered allmulticast mode [ 305.182247][T11581] EXT4-fs: Ignoring removed bh option [ 305.190105][T11593] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 305.231757][T11581] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 305.273353][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.291470][T11612] loop2: detected capacity change from 0 to 512 [ 305.348786][T11612] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 305.460867][ T3317] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 305.499003][T11647] sctp: [Deprecated]: syz.0.16661 (pid 11647) Use of struct sctp_assoc_value in delayed_ack socket option. [ 305.499003][T11647] Use struct sctp_sack_info instead [ 305.666936][T11672] netlink: 220 bytes leftover after parsing attributes in process `syz.1.16670'. [ 305.701007][T11672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16670'. [ 305.720791][T11672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16670'. [ 305.736246][T11672] tipc: MTU too low for tipc bearer [ 305.861731][T11710] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 305.868336][T11710] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 305.883863][T11710] vhci_hcd vhci_hcd.0: Device attached [ 305.911181][T11710] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5) [ 305.917717][T11710] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 305.940592][T11710] vhci_hcd vhci_hcd.0: Device attached [ 305.946167][T11727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16685'. [ 305.955902][T11710] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7) [ 305.962424][T11710] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 305.971234][T11710] vhci_hcd vhci_hcd.0: Device attached [ 305.979467][T11729] vhci_hcd: connection closed [ 305.980931][ T30] vhci_hcd vhci_hcd.2: stop threads [ 305.990978][T11721] vhci_hcd: connection closed [ 305.995508][T11711] vhci_hcd: connection closed [ 306.007533][ T30] vhci_hcd vhci_hcd.2: release socket [ 306.031075][ T30] vhci_hcd vhci_hcd.2: disconnect device [ 306.041674][ T30] vhci_hcd vhci_hcd.2: stop threads [ 306.046900][ T30] vhci_hcd vhci_hcd.2: release socket [ 306.071189][ T30] vhci_hcd vhci_hcd.2: disconnect device [ 306.085888][ T30] vhci_hcd vhci_hcd.2: stop threads [ 306.095078][ T30] vhci_hcd vhci_hcd.2: release socket [ 306.100536][ T30] vhci_hcd vhci_hcd.2: disconnect device [ 306.149274][ T35] usb 5-1: new low-speed USB device number 2 using vhci_hcd [ 306.158039][ T35] usb 5-1: enqueue for inactive port 0 [ 306.172564][ T35] usb 5-1: enqueue for inactive port 0 [ 306.185206][ T35] usb 5-1: enqueue for inactive port 0 [ 306.259252][ T35] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 306.426910][T11788] netlink: 60 bytes leftover after parsing attributes in process `syz.1.16708'. [ 306.838725][T11808] loop2: detected capacity change from 0 to 512 [ 306.854605][T11808] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 306.939660][T11808] EXT4-fs (loop2): 1 truncate cleaned up [ 306.945947][T11808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 307.061238][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.451425][T11865] loop2: detected capacity change from 0 to 512 [ 307.512428][T11865] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -13 [ 307.547113][T11865] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #13: comm syz.2.16733: iget: bad i_size value: 12154757448730 [ 307.613155][T11865] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 307.613376][T11865] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.16733: couldn't read orphan inode 13 (err -117) [ 307.634486][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 307.634503][ C0] EXT4-fs (loop2): initial error at time 2000000071: ext4_orphan_get:1391: inode 13 [ 307.634529][ C0] EXT4-fs (loop2): last error at time 2000000071: ext4_orphan_get:1391: inode 13 [ 307.662426][T11865] loop2: lost filesystem error report for type 5 error -117 [ 307.662966][T11865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 307.723227][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.817477][T11912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16746'. [ 307.841027][T11912] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16746'. [ 307.861115][T11917] ipip0: entered promiscuous mode [ 307.874299][T11925] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16746'. [ 307.888063][T11926] loop4: detected capacity change from 0 to 512 [ 307.894633][T11925] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16746'. [ 307.940895][T11933] loop1: detected capacity change from 0 to 512 [ 307.969052][T11933] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 308.001150][T11933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.008885][T11946] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 308.013768][ T28] kauditd_printk_skb: 23 callbacks suppressed [ 308.013851][ T28] audit: type=1400 audit(2000000072.278:348113): avc: denied { load_policy } for pid=11945 comm="syz.0.16755" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 308.050236][T11946] SELinux: failed to load policy [ 308.055474][T11933] ext4 filesystem being mounted at /3470/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 308.096197][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.164752][T11961] netlink: 204 bytes leftover after parsing attributes in process `syz.1.16759'. [ 308.363403][T11991] netlink: 'syz.0.16769': attribute type 11 has an invalid length. [ 308.490125][T12015] netlink: 'syz.1.16776': attribute type 3 has an invalid length. [ 308.516828][T12015] netlink: 'syz.1.16776': attribute type 1 has an invalid length. [ 308.881271][T12066] loop1: detected capacity change from 0 to 736 [ 308.890846][ T28] audit: type=1400 audit(2000000073.101:348114): avc: denied { bind } for pid=12062 comm="syz.0.16794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 309.241754][T12110] loop2: detected capacity change from 0 to 512 [ 309.316248][T12110] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 309.409120][T12110] System zones: 0-2, 18-18, 34-35 [ 309.486310][T12140] loop4: detected capacity change from 0 to 128 [ 309.506204][T12140] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 309.529216][T12140] ext4 filesystem being mounted at /3379/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.559356][T12110] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 309.573922][T12110] ext4 filesystem being mounted at /3266/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.624496][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.636248][ T3321] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 309.914865][T12171] loop4: detected capacity change from 0 to 736 [ 309.965057][ T28] audit: type=1400 audit(2000000074.111:348115): avc: denied { remount } for pid=12170 comm="syz.4.16825" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 310.093473][T12188] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.16830: invalid indirect mapped block 256 (level 2) [ 310.121333][T12188] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 310.123099][T12188] EXT4-fs (loop4): 2 truncates cleaned up [ 310.132256][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 310.132277][ C1] EXT4-fs (loop4): initial error at time 2000000074: ext4_free_branches:1023: inode 11 [ 310.132324][ C1] EXT4-fs (loop4): last error at time 2000000074: ext4_free_branches:1023: inode 11 [ 310.271236][T12188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.309602][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.318277][ T28] audit: type=1400 audit(2000000074.429:348116): avc: denied { append } for pid=12184 comm="syz.4.16830" name="file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 311.262588][ T28] audit: type=1400 audit(2000000075.327:348117): avc: denied { ioctl } for pid=12252 comm="syz.2.16849" path="socket:[119871]" dev="sockfs" ino=119871 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 311.428491][T12261] set_capacity_and_notify: 1 callbacks suppressed [ 311.428506][T12261] loop2: detected capacity change from 0 to 128 [ 311.518501][T12273] loop1: detected capacity change from 0 to 512 [ 311.528106][T12276] __nla_validate_parse: 6 callbacks suppressed [ 311.528124][T12276] netlink: 24 bytes leftover after parsing attributes in process `syz.0.16856'. [ 311.531162][T12271] netlink: 12 bytes leftover after parsing attributes in process `syz.2.16855'. [ 311.556637][T12280] netlink: 44 bytes leftover after parsing attributes in process `syz.4.16857'. [ 311.613653][T12291] netlink: 'syz.1.16859': attribute type 4 has an invalid length. [ 311.640399][T12296] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16862'. [ 311.645293][T12291] netlink: 17 bytes leftover after parsing attributes in process `syz.1.16859'. [ 311.677946][T12296] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16862'. [ 311.696429][T12296] netlink: 'syz.0.16862': attribute type 13 has an invalid length. [ 311.770090][T12296] netlink: 'syz.0.16862': attribute type 14 has an invalid length. [ 311.914318][T12324] netlink: 52 bytes leftover after parsing attributes in process `syz.1.16872'. [ 311.929591][T12324] netlink: 48 bytes leftover after parsing attributes in process `syz.1.16872'. [ 311.967666][ T28] audit: type=1400 audit(2000000075.991:348118): avc: denied { write } for pid=12322 comm="syz.2.16871" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 312.095329][T12358] netlink: 20 bytes leftover after parsing attributes in process `syz.4.16880'. [ 312.118098][T12344] loop2: detected capacity change from 0 to 8192 [ 312.206319][T12382] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 312.351255][ T28] audit: type=1400 audit(2000000076.347:348119): avc: denied { write } for pid=12436 comm="syz.1.16894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 312.410099][T12446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16897'. [ 312.441911][T12446] netlink: 'syz.0.16897': attribute type 13 has an invalid length. [ 312.458593][T12446] netlink: 'syz.0.16897': attribute type 12 has an invalid length. [ 312.494447][T12463] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 312.526227][T12463] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 312.541805][ T28] audit: type=1326 audit(2000000076.534:348120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12470 comm="syz.1.16905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f1a05c799 code=0x7ffc0000 [ 312.566671][T12463] netlink: 'syz.0.16903': attribute type 3 has an invalid length. [ 312.585411][ T28] audit: type=1326 audit(2000000076.553:348121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12470 comm="syz.1.16905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f1a05c799 code=0x7ffc0000 [ 312.604009][T12471] loop2: detected capacity change from 0 to 512 [ 312.609591][ T28] audit: type=1326 audit(2000000076.553:348122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12470 comm="syz.1.16905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f1a05c799 code=0x7ffc0000 [ 312.652463][T12471] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c018, mo2=0002] [ 312.662072][T12471] System zones: 1-20 [ 312.669507][T12471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 312.699298][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.821449][T12499] bond0: option min_links: invalid value (18446744073709530014) [ 312.829169][T12499] bond0: option min_links: allowed values 0 - 2147483647 [ 312.937198][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 313.298186][T12536] loop1: detected capacity change from 0 to 512 [ 313.370588][T12536] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.16921: invalid indirect mapped block 256 (level 2) [ 313.390862][T12536] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 313.396503][T12536] EXT4-fs (loop1): 2 truncates cleaned up [ 313.405745][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 313.405790][ C0] EXT4-fs (loop1): initial error at time 2000000077: ext4_free_branches:1023: inode 11 [ 313.405826][ C0] EXT4-fs (loop1): last error at time 2000000077: ext4_free_branches:1023: inode 11 [ 313.440331][T12536] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 313.473069][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.563890][T12578] loop1: detected capacity change from 0 to 1024 [ 313.642936][T12578] EXT4-fs: Ignoring removed orlov option [ 313.658682][T12578] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 313.677067][T12578] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 313.692473][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 313.692487][ T28] audit: type=1400 audit(2000000077.591:348129): avc: denied { rename } for pid=12577 comm="syz.1.16927" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 313.816194][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.891558][T12606] netlink: 'syz.2.16937': attribute type 13 has an invalid length. [ 313.891576][T12606] netlink: 'syz.2.16937': attribute type 14 has an invalid length. [ 314.094651][T12633] IPVS: Error connecting to the multicast addr [ 314.381758][ T28] audit: type=1400 audit(2000000078.246:348130): avc: denied { write } for pid=12648 comm="syz.1.16950" path="socket:[119606]" dev="sockfs" ino=119606 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 314.575498][T12618] loop2: detected capacity change from 0 to 1024 [ 314.607194][T12618] EXT4-fs: Ignoring removed orlov option [ 314.653591][T12618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 314.700491][T12618] EXT4-fs error (device loop2): ext4_free_inode:354: comm syz.2.16939: bit already cleared for inode 13 [ 314.819324][T12673] loop4: detected capacity change from 0 to 256 [ 314.847548][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.740393][T12783] loop1: detected capacity change from 0 to 128 [ 315.770832][ T28] audit: type=1326 audit(2000000079.546:348131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 315.809267][ T28] audit: type=1326 audit(2000000079.546:348132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 315.887705][ T28] audit: type=1326 audit(2000000079.574:348133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb8f030cfce code=0x7ffc0000 [ 315.945728][ T28] audit: type=1326 audit(2000000079.574:348134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 316.007439][ T28] audit: type=1326 audit(2000000079.574:348135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 316.036481][ T28] audit: type=1326 audit(2000000079.583:348136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 316.060913][ T28] audit: type=1326 audit(2000000079.583:348137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 316.155036][ T28] audit: type=1326 audit(2000000079.583:348138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12785 comm="syz.4.16991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 316.205840][T12832] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 316.319648][T12848] loop1: detected capacity change from 0 to 1024 [ 316.383006][T12848] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 316.505541][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 316.731881][T12896] EXT4-fs (loop4): inodes count not valid: 32 vs 27 [ 316.793882][T12912] program syz.2.17030 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 316.906354][T12926] set_capacity_and_notify: 1 callbacks suppressed [ 316.906367][T12926] loop4: detected capacity change from 0 to 1024 [ 316.937128][T12926] EXT4-fs: Ignoring removed orlov option [ 316.952551][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 316.960754][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 316.968461][T12926] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 316.987030][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.003518][T12926] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.019162][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.033404][ T118] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 317.047721][ T118] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.053939][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.096134][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.108557][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.116044][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.143328][ T118] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 317.156104][ T118] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.166781][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.174929][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.186261][ T35] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 317.205202][ T35] hid-generic 0000:0000:0004.0001: hidraw0: HID v0.03 Device [syz0] on syz1 [ 317.225589][T12899] chnl_net:caif_netlink_parms(): no params data found [ 317.287036][ T118] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 317.294413][T13010] fido_id[13010]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 317.332254][ T118] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.392316][T13067] sg_read: process 6988 (syz.4.17048) changed security contexts after opening file descriptor, this is not allowed. [ 317.458266][T12899] bridge0: port 1(bridge_slave_0) entered blocking state [ 317.480571][T12899] bridge0: port 1(bridge_slave_0) entered disabled state [ 317.487865][T12899] bridge_slave_0: entered allmulticast mode [ 317.494549][T12899] bridge_slave_0: entered promiscuous mode [ 317.538467][ T118] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 317.578333][ T118] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.619794][T12899] bridge0: port 2(bridge_slave_1) entered blocking state [ 317.627011][T12899] bridge0: port 2(bridge_slave_1) entered disabled state [ 317.634412][T12899] bridge_slave_1: entered allmulticast mode [ 317.646561][T12899] bridge_slave_1: entered promiscuous mode [ 317.688026][T12899] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 317.708031][T12899] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 317.728204][T13138] SELinux: policydb version -371912770 does not match my version range 15-35 [ 317.769358][T13138] SELinux: failed to load policy [ 317.795743][T12899] team0: Port device team_slave_0 added [ 317.817851][T12899] team0: Port device team_slave_1 added [ 317.834490][T13139] loop2: detected capacity change from 0 to 4096 [ 317.852174][T13181] loop4: detected capacity change from 0 to 512 [ 317.860372][ T118] batman_adv: batadv0: Interface deactivated: gretap3 [ 317.913969][T13139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.938521][T13181] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 317.981279][T13198] __nla_validate_parse: 9 callbacks suppressed [ 317.981296][T13198] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17069'. [ 318.007770][T13181] EXT4-fs (loop4): 1 truncate cleaned up [ 318.015792][T13181] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 318.039720][T13139] EXT4-fs error (device loop2): ext4_get_first_dir_block:3547: inode #12: block 80: comm syz.2.17059: bad entry in directory: directory entry overrun - offset=12, inode=6, rec_len=4096, size=4096 fake=0 [ 318.077565][ T118] batman_adv: batadv0: Removing interface: gretap3 [ 318.088482][T13139] EXT4-fs error (device loop2): ext4_get_first_dir_block:3550: inode #12: comm syz.2.17059: directory missing '..' [ 318.110016][T13210] netlink: 152 bytes leftover after parsing attributes in process `syz.1.17072'. [ 318.151880][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.166727][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.254288][T13229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17074'. [ 318.540525][ T118] bond1 (unregistering): Released all slaves [ 318.548714][ T118] bond2 (unregistering): Released all slaves [ 318.557135][ T118] bond0 (unregistering): Released all slaves [ 318.565127][ T118] bond3 (unregistering): Released all slaves [ 318.573355][ T118] bond4 (unregistering): Released all slaves [ 318.581050][ T118] bond5 (unregistering): Released all slaves [ 318.589434][ T118] bond6 (unregistering): Released all slaves [ 318.597917][ T118] bond7 (unregistering): Released all slaves [ 318.606536][ T118] bond8 (unregistering): Released all slaves [ 318.614620][ T118] bond9 (unregistering): Released all slaves [ 318.622583][ T118] bond10 (unregistering): Released all slaves [ 318.630721][ T118] bond11 (unregistering): Released all slaves [ 318.638414][ T118] bond12 (unregistering): Released all slaves [ 318.657918][T12899] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 318.665138][T12899] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 318.691978][T12899] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 318.705723][T12899] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 318.729254][T12899] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 318.798173][T12899] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 318.935715][T12899] hsr_slave_0: entered promiscuous mode [ 318.941888][T12899] hsr_slave_1: entered promiscuous mode [ 318.949070][T12899] debugfs: 'hsr0' already exists in 'hsr' [ 318.954793][T12899] Cannot create hsr debugfs directory [ 319.047395][T12899] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 319.056839][T12899] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 319.066202][T12899] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 319.076135][T12899] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 319.121597][T12899] 8021q: adding VLAN 0 to HW filter on device bond0 [ 319.140475][T12899] 8021q: adding VLAN 0 to HW filter on device team0 [ 319.150205][ T422] bridge0: port 1(bridge_slave_0) entered blocking state [ 319.157375][ T422] bridge0: port 1(bridge_slave_0) entered forwarding state [ 319.170392][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 319.177464][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 319.187691][ T118] IPVS: stop unused estimator thread 0... [ 319.249653][T12899] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 319.363412][T12899] veth0_vlan: entered promiscuous mode [ 319.371301][T12899] veth1_vlan: entered promiscuous mode [ 319.386834][T12899] veth0_macvtap: entered promiscuous mode [ 319.394960][T12899] veth1_macvtap: entered promiscuous mode [ 319.405130][T12899] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 319.415718][T12899] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 319.425911][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.435036][ T422] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.444764][ T422] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.454025][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 319.471561][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 319.471575][ T28] audit: type=1400 audit(2000000083.007:348146): avc: denied { mounton } for pid=12899 comm="syz-executor" path="/root/syzkaller.XcJbPv/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 319.502680][ T28] audit: type=1400 audit(2000000083.007:348147): avc: denied { mount } for pid=12899 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 319.526081][ T28] audit: type=1400 audit(2000000083.007:348148): avc: denied { mounton } for pid=12899 comm="syz-executor" path="/root/syzkaller.XcJbPv/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 319.562016][ T28] audit: type=1400 audit(2000000083.007:348149): avc: denied { mounton } for pid=12899 comm="syz-executor" path="/root/syzkaller.XcJbPv/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=121924 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 319.607819][ T28] audit: type=1400 audit(2000000083.044:348150): avc: denied { mounton } for pid=12899 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=538 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 319.680315][T13504] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 319.689002][T13504] SELinux: failed to load policy [ 319.766519][ T28] audit: type=1400 audit(2000000083.044:348151): avc: denied { mount } for pid=12899 comm="syz-executor" name="/" dev="gadgetfs" ino=3853 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 319.939140][ T28] audit: type=1400 audit(2000000083.418:348152): avc: denied { watch } for pid=13526 comm="syz.2.17115" path="/proc/6809/fd" dev="proc" ino=122001 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 320.209990][T13556] loop2: detected capacity change from 0 to 128 [ 320.242678][ T28] audit: type=1400 audit(2000000083.727:348153): avc: denied { mounton } for pid=13555 comm="syz.2.17123" path="mnt:[4026532381]" dev="nsfs" ino=4026532381 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 320.286435][T13565] team_slave_0: entered promiscuous mode [ 320.292339][T13565] team_slave_1: entered promiscuous mode [ 320.299338][T13565] macsec1: entered promiscuous mode [ 320.305678][T13556] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 320.325131][ T28] audit: type=1400 audit(2000000083.774:348154): avc: denied { mount } for pid=13560 comm="syz.4.17125" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 320.335526][T13565] team0: entered promiscuous mode [ 320.366919][T13556] ext4 filesystem being mounted at mnt:[4026532381] supports timestamps until 2038-01-19 (0x7fffffff) [ 320.367173][ T28] audit: type=1400 audit(2000000083.774:348155): avc: denied { remount } for pid=13560 comm="syz.4.17125" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 320.382127][T13574] loop4: detected capacity change from 0 to 512 [ 320.407564][T13565] macsec1: entered allmulticast mode [ 320.416009][T13565] team0: entered allmulticast mode [ 320.431613][T13556] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 320.440737][T13565] team_slave_0: entered allmulticast mode [ 320.459943][T13565] team_slave_1: entered allmulticast mode [ 320.490549][T13565] team0: Device macsec1 is already an upper device of the team interface [ 320.504833][T13574] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 320.530641][T13565] team0: left allmulticast mode [ 320.541890][T13565] team_slave_0: left allmulticast mode [ 320.559508][T13565] team_slave_1: left allmulticast mode [ 320.559535][T13565] team0: left promiscuous mode [ 320.559840][T13565] team_slave_0: left promiscuous mode [ 320.559859][T13565] team_slave_1: left promiscuous mode [ 320.562749][T13574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.562924][T13574] ext4 filesystem being mounted at /3447/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 320.639205][T13598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17133'. [ 320.639230][T13598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17133'. [ 320.639243][T13598] netlink: 84 bytes leftover after parsing attributes in process `syz.1.17133'. [ 320.639260][T13598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17133'. [ 320.717660][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.894042][T13624] bridge0: port 1(ipvlan3) entered blocking state [ 320.895158][T13624] bridge0: port 1(ipvlan3) entered disabled state [ 320.895299][T13624] ipvlan3: entered allmulticast mode [ 320.895750][T13624] ipvlan3: left allmulticast mode [ 321.532844][T13743] netlink: 48 bytes leftover after parsing attributes in process `syz.2.17177'. [ 321.557575][T13747] loop1: detected capacity change from 0 to 512 [ 321.594849][T13747] EXT4-fs: Ignoring removed mblk_io_submit option [ 321.602986][T13747] EXT4-fs: Ignoring removed nobh option [ 321.616808][T13755] loop4: detected capacity change from 0 to 512 [ 321.642666][T13747] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 321.696099][T13755] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 321.709254][T13747] ext4 filesystem being mounted at /3581/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 321.724917][T13755] System zones: 0-2, 18-18, 34-35 [ 321.746237][T13755] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 321.747542][T13778] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 321.758791][T13755] ext4 filesystem being mounted at /3454/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 321.768842][T13747] EXT4-fs error (device loop1): ext4_find_dest_de:2050: inode #2: block 3: comm syz.1.17178: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 321.797886][T13778] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 321.812516][T13781] EXT4-fs error (device loop1): ext4_find_dest_de:2050: inode #2: block 3: comm syz.1.17178: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 321.867258][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 321.896094][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.111457][T13840] loop1: detected capacity change from 0 to 512 [ 322.124648][T13840] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.17203: inode has both inline data and extents flags [ 322.138593][T13840] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 322.138733][T13840] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.17203: couldn't read orphan inode 15 (err -117) [ 322.147993][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 322.148017][ C0] EXT4-fs (loop1): initial error at time 2000000085: ext4_orphan_get:1391: inode 15 [ 322.148053][ C0] EXT4-fs (loop1): last error at time 2000000085: ext4_orphan_get:1391: inode 15 [ 322.162458][T13842] loop5: detected capacity change from 0 to 8192 [ 322.168371][T13840] loop1: lost filesystem error report for type 5 error -117 [ 322.193933][T13840] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000070000 r/w without journal. Quota mode: writeback. [ 322.278803][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000070000. [ 322.373592][ T422] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 322.387565][ T422] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 322.410628][ T422] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 322.420389][ T422] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 322.514905][T13892] loop2: detected capacity change from 0 to 736 [ 322.767734][T13955] loop5: detected capacity change from 0 to 736 [ 322.804888][T13965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17238'. [ 322.865309][T13975] netlink: 16 bytes leftover after parsing attributes in process `syz.5.17242'. [ 322.877453][T13981] loop1: detected capacity change from 0 to 256 [ 322.988857][T14011] loop5: detected capacity change from 0 to 512 [ 322.999731][T14012] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 323.013236][T14011] EXT4-fs warning (device loop5): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 323.024996][T14011] EXT4-fs warning (device loop5): dx_probe:849: Enable large directory feature to access it [ 323.035525][T14011] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.17251: Corrupt directory, running e2fsck is recommended [ 323.065856][T14011] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 323.074308][T14011] EXT4-fs error (device loop5): ext4_iget_extra_inode:5025: inode #15: comm syz.5.17251: corrupted in-inode xattr: invalid ea_ino [ 323.088613][T14011] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 323.089162][T14011] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.17251: couldn't read orphan inode 15 (err -117) [ 323.093088][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 323.116778][ C0] EXT4-fs (loop5): initial error at time 2000000086: ext4_iget_extra_inode:5025: inode 15 [ 323.119799][T14027] vlan3: entered allmulticast mode [ 323.126699][ C0] EXT4-fs (loop5): last error at time 2000000086: ext4_iget_extra_inode:5025: inode 15 [ 323.135398][T14011] loop5: lost filesystem error report for type 5 error -117 [ 323.150640][T14011] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 323.177087][T14011] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #2: comm syz.5.17251: corrupted xattr block 255: invalid header [ 323.240654][T14011] SELinux: (dev loop5, type ext4) getxattr errno 117 [ 323.252351][T14011] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.294618][T14058] netlink: 'syz.4.17267': attribute type 1 has an invalid length. [ 323.311933][T14049] loop2: detected capacity change from 0 to 512 [ 323.344461][T14011] __nla_validate_parse: 4 callbacks suppressed [ 323.344490][T14011] netlink: 36 bytes leftover after parsing attributes in process `syz.5.17251'. [ 323.377537][T14049] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 323.446517][ T40] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 323.485583][T14092] netlink: 24 bytes leftover after parsing attributes in process `syz.2.17277'. [ 323.560388][T14115] loop4: detected capacity change from 0 to 512 [ 323.611745][T14115] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 323.619611][T14126] netlink: 68 bytes leftover after parsing attributes in process `syz.5.17285'. [ 323.644850][T14115] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.17284: bad orphan inode 16 [ 323.672034][T14115] loop4: lost filesystem error report for type 5 error -117 [ 323.672220][T14115] ext4_test_bit(bit=15, block=4) = 0 [ 323.684937][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 323.684957][ C0] EXT4-fs (loop4): initial error at time 2000000086: ext4_orphan_get:1417 [ 323.684985][ C0] EXT4-fs (loop4): last error at time 2000000086: ext4_orphan_get:1417 [ 323.709366][T14115] EXT4-fs (loop4): 1 orphan inode deleted [ 323.716614][T14115] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 323.731855][T14115] EXT4-fs error (device loop4): __ext4_new_inode:1073: comm syz.4.17284: reserved inode found cleared - inode=9 [ 323.766433][T14144] loop5: detected capacity change from 0 to 1024 [ 323.774354][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.804404][T14144] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 323.875774][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.982802][T14194] netlink: 83992 bytes leftover after parsing attributes in process `syz.5.17306'. [ 324.024490][T14194] netlink: zone id is out of range [ 324.034746][T14199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17311'. [ 324.044969][T14194] netlink: zone id is out of range [ 324.069304][T14199] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17311'. [ 324.081504][T14194] netlink: set zone limit has 8 unknown bytes [ 324.110571][T14199] netlink: 'syz.2.17311': attribute type 13 has an invalid length. [ 324.126630][T14199] netlink: 'syz.2.17311': attribute type 12 has an invalid length. [ 324.186453][T14221] loop4: detected capacity change from 0 to 512 [ 324.209203][T14221] EXT4-fs: Ignoring removed nomblk_io_submit option [ 324.237506][T14221] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 324.258408][T14221] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 324.286949][T14221] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.17318: Allocating blocks 41-42 which overlap fs metadata [ 324.360897][T14221] loop4: lost filesystem error report for type 5 error -117 [ 324.361088][T14221] EXT4-fs (loop4): Remounting filesystem read-only [ 324.368523][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 324.368539][ C1] EXT4-fs (loop4): initial error at time 2000000087: ext4_mb_mark_diskspace_used:4222 [ 324.368577][ C1] EXT4-fs (loop4): last error at time 2000000087: ext4_mb_mark_diskspace_used:4222 [ 324.474847][T14221] EXT4-fs (loop4): 1 truncate cleaned up [ 324.491455][T14221] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 324.545947][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.592511][T14260] netlink: 'syz.4.17328': attribute type 1 has an invalid length. [ 325.000618][T14315] loop5: detected capacity change from 0 to 4096 [ 325.013389][T14315] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 325.061649][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.314684][T14355] veth1_to_team: entered promiscuous mode [ 325.331858][T14355] veth1_to_team: left promiscuous mode [ 325.415913][T14366] loop1: detected capacity change from 0 to 512 [ 325.438859][T14366] EXT4-fs: Ignoring removed bh option [ 325.449165][T14366] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 325.473030][T14366] EXT4-fs (loop1): 1 truncate cleaned up [ 325.494097][T14366] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 325.538670][T14381] FAT-fs (loop4): Directory bread(block 32) failed [ 325.562728][T14381] FAT-fs (loop4): Directory bread(block 33) failed [ 325.578824][T14381] FAT-fs (loop4): Directory bread(block 34) failed [ 325.585582][T14381] FAT-fs (loop4): Directory bread(block 35) failed [ 325.586145][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.592307][T14381] FAT-fs (loop4): Directory bread(block 36) failed [ 325.592324][T14381] FAT-fs (loop4): Directory bread(block 37) failed [ 325.592343][T14381] FAT-fs (loop4): Directory bread(block 38) failed [ 325.621903][T14381] FAT-fs (loop4): Directory bread(block 39) failed [ 325.628887][T14381] FAT-fs (loop4): Directory bread(block 40) failed [ 325.635504][T14381] FAT-fs (loop4): Directory bread(block 41) failed [ 325.661944][ T28] kauditd_printk_skb: 47 callbacks suppressed [ 325.661981][ T28] audit: type=1400 audit(2000000088.797:348199): avc: denied { create } for pid=14394 comm="syz.2.17370" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rawip_socket permissive=1 [ 325.693350][T14397] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17369'. [ 325.705983][T14397] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17369'. [ 325.718519][T14397] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17369'. [ 325.797239][T14381] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 325.806213][T14381] FAT-fs (loop4): Filesystem has been set read-only [ 325.849341][T14423] netlink: 24 bytes leftover after parsing attributes in process `syz.0.17379'. [ 325.931970][ T28] audit: type=1400 audit(2000000089.050:348200): avc: denied { bind } for pid=14444 comm="syz.4.17387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 325.971919][T14445] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 326.006641][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.190704][ T35] kernel write not supported for file /input/event2 (pid: 35 comm: kworker/1:1) [ 326.603316][T14579] sch_tbf: burst 0 is lower than device lo mtu (81) ! [ 326.623777][T14584] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14584 comm=syz.1.17429 [ 326.961757][T14641] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 327.046757][T14641] ext4 filesystem being mounted at /3509/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 327.107869][T14658] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 327.176462][ T28] audit: type=1326 audit(2000000090.209:348201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14668 comm="syz.0.17467" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f45390fc799 code=0x0 [ 327.180794][T14658] ext4 filesystem being mounted at /3394/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 327.245027][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.342774][T14658] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 327.383174][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.416248][T14696] ext4 filesystem being mounted at /3512/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 327.498075][ T28] audit: type=1400 audit(2000000090.518:348202): avc: denied { getopt } for pid=14710 comm="syz.4.17469" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 327.674233][ T28] audit: type=1326 audit(2000000090.668:348203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 327.713590][ T28] audit: type=1326 audit(2000000090.677:348204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3a8703cfce code=0x7ffc0000 [ 327.738195][ T28] audit: type=1326 audit(2000000090.677:348205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 327.762241][ T28] audit: type=1326 audit(2000000090.677:348206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 327.787626][ T28] audit: type=1326 audit(2000000090.677:348207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 327.811765][ T28] audit: type=1326 audit(2000000090.677:348208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.2.17479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 327.880776][T14765] netlink: 'syz.2.17486': attribute type 13 has an invalid length. [ 327.909170][T14769] set_capacity_and_notify: 6 callbacks suppressed [ 327.909257][T14769] loop1: detected capacity change from 0 to 128 [ 327.922413][T14770] netlink: 'syz.2.17489': attribute type 2 has an invalid length. [ 328.021716][T14789] netlink: 'syz.4.17493': attribute type 46 has an invalid length. [ 328.930903][T14891] can0: slcan on ptm0. [ 328.973943][T14899] netlink: 'syz.5.17534': attribute type 3 has an invalid length. [ 329.037208][T14886] can0 (unregistered): slcan off ptm0. [ 329.043420][T14924] program syz.0.17539 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 329.118999][T14944] loop1: detected capacity change from 0 to 512 [ 329.122905][T14948] program syz.0.17539 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 329.161641][T14957] loop5: detected capacity change from 0 to 512 [ 329.177510][T14944] ext4 filesystem being mounted at /3668/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 329.223757][T14957] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 329.270156][T14957] EXT4-fs (loop5): 1 truncate cleaned up [ 329.363688][T14989] __nla_validate_parse: 9 callbacks suppressed [ 329.363703][T14989] netlink: 176 bytes leftover after parsing attributes in process `syz.2.17551'. [ 329.463569][T15013] loop2: detected capacity change from 0 to 1024 [ 329.480557][T15013] EXT4-fs: Ignoring removed orlov option [ 329.493250][T15013] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 329.514993][T15021] loop5: detected capacity change from 0 to 128 [ 329.627430][T15041] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17567'. [ 329.759598][T15063] loop5: detected capacity change from 0 to 2048 [ 329.820868][T15063] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 329.846539][T15063] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.17574: bg 0: block 345: padding at end of block bitmap is not set [ 329.913990][T15063] EXT4-fs (loop5): Remounting filesystem read-only [ 330.331214][T15175] loop2: detected capacity change from 0 to 512 [ 330.357671][T15182] netlink: 20 bytes leftover after parsing attributes in process `syz.5.17612'. [ 330.367864][T15175] EXT4-fs: Ignoring removed mblk_io_submit option [ 330.386167][T15185] netlink: 16 bytes leftover after parsing attributes in process `syz.1.17613'. [ 330.386291][T15175] EXT4-fs: Ignoring removed nobh option [ 330.434741][T15175] ext4 filesystem being mounted at /3437/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 330.496701][T15175] EXT4-fs error (device loop2): ext4_find_dest_de:2050: inode #2: block 3: comm syz.2.17610: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 330.566458][T15235] EXT4-fs error (device loop2): ext4_find_dest_de:2050: inode #2: block 3: comm syz.2.17610: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 330.589598][T15244] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17625'. [ 330.599634][T15244] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17625'. [ 330.619704][T15244] netlink: 84 bytes leftover after parsing attributes in process `syz.5.17625'. [ 330.648872][T15244] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17625'. [ 330.793360][T15292] loop2: detected capacity change from 0 to 128 [ 330.802756][T15292] ext4 filesystem being mounted at /3440/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 330.965439][T15327] loop5: detected capacity change from 0 to 1024 [ 330.974356][T15327] EXT4-fs: Ignoring removed bh option [ 331.098773][T15365] loop2: detected capacity change from 0 to 512 [ 331.104081][T15370] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0 [ 331.156786][T15365] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.17660: inode has both inline data and extents flags [ 331.185312][T15386] netlink: 'syz.4.17666': attribute type 24 has an invalid length. [ 331.191664][T15365] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 331.196512][T15365] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.17660: couldn't read orphan inode 15 (err -117) [ 331.196568][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 331.224053][ C0] EXT4-fs (loop2): initial error at time 2000000093: ext4_orphan_get:1391: inode 15 [ 331.233470][ C0] EXT4-fs (loop2): last error at time 2000000093: ext4_orphan_get:1391: inode 15 [ 331.243678][T15365] loop2: lost filesystem error report for type 5 error -117 [ 331.399495][T15429] ext4 filesystem being mounted at /3697/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 331.460514][T15450] netlink: 16 bytes leftover after parsing attributes in process `syz.2.17682'. [ 331.513533][T15464] EXT4-fs: Ignoring removed orlov option [ 331.548523][T15464] EXT4-fs (loop4): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 331.566721][T15480] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17690'. [ 331.652626][T15503] netlink: 'syz.1.17703': attribute type 1 has an invalid length. [ 332.201728][T15646] hub 8-0:1.0: USB hub found [ 332.221249][T15646] hub 8-0:1.0: 8 ports detected [ 332.390259][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 332.390272][ T28] audit: type=1326 audit(2000000095.092:348245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.430409][ T28] audit: type=1326 audit(2000000095.102:348246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.455795][ T28] audit: type=1326 audit(2000000095.130:348247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.485940][ T28] audit: type=1326 audit(2000000095.130:348248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.543171][ T28] audit: type=1326 audit(2000000095.130:348249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.600481][ T28] audit: type=1326 audit(2000000095.130:348250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.625160][ T28] audit: type=1326 audit(2000000095.130:348251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.665566][ T28] audit: type=1326 audit(2000000095.130:348252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.689688][ T28] audit: type=1326 audit(2000000095.214:348253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15703 comm="syz.0.17745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 332.713500][ T28] audit: type=1400 audit(2000000095.373:348254): avc: denied { getopt } for pid=15742 comm="syz.5.17757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 332.877246][T15786] netlink: 'syz.1.17771': attribute type 3 has an invalid length. [ 332.898603][T15786] netlink: 'syz.1.17771': attribute type 3 has an invalid length. [ 332.981348][T15810] netlink: 'syz.0.17779': attribute type 1 has an invalid length. [ 333.164781][T15856] netlink: 'syz.4.17793': attribute type 3 has an invalid length. [ 333.216836][T15865] xt_ecn: cannot match TCP bits for non-tcp packets [ 333.459633][T15936] netlink: zone id is out of range [ 333.494240][T15936] netlink: zone id is out of range [ 333.556490][T15936] netlink: set zone limit has 8 unknown bytes [ 333.636373][T15968] set_capacity_and_notify: 5 callbacks suppressed [ 333.636387][T15968] loop2: detected capacity change from 0 to 512 [ 333.655887][T15968] EXT4-fs: Ignoring removed nomblk_io_submit option [ 333.689949][T15968] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 333.698474][T15968] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 333.727908][T15968] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4222: comm syz.2.17826: Allocating blocks 41-42 which overlap fs metadata [ 333.753357][T15968] loop2: lost filesystem error report for type 5 error -117 [ 333.753500][T15968] EXT4-fs (loop2): Remounting filesystem read-only [ 333.767506][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 333.767524][ C0] EXT4-fs (loop2): initial error at time 2000000352: ext4_mb_mark_diskspace_used:4222 [ 333.767553][ C0] EXT4-fs (loop2): last error at time 2000000352: ext4_mb_mark_diskspace_used:4222 [ 333.805356][T15968] EXT4-fs (loop2): 1 truncate cleaned up [ 333.899197][T16010] loop5: detected capacity change from 0 to 256 [ 334.213115][T16093] usb usb7: usbfs: process 16093 (syz.5.17865) did not claim interface 0 before use [ 334.515188][T16164] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 334.727393][T16202] __nla_validate_parse: 12 callbacks suppressed [ 334.727424][T16202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17907'. [ 334.756828][T16202] macvlan3: entered promiscuous mode [ 334.762447][T16202] macvlan3: entered allmulticast mode [ 334.770571][T16202] veth0_virt_wifi: entered allmulticast mode [ 335.046787][T16276] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16276 comm=syz.5.17928 [ 335.140254][T16299] loop1: detected capacity change from 0 to 512 [ 335.148182][T16293] loop4: detected capacity change from 0 to 1024 [ 335.184499][T16293] EXT4-fs: inline encryption not supported [ 335.191053][T16293] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 335.214136][T16299] ext4 filesystem being mounted at /3758/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 335.261829][T16293] EXT4-fs error (device loop4): ext4_free_blocks:6724: comm syz.4.17933: Freeing blocks not in datazone - block = 0, count = 4096 [ 335.279504][T16293] loop4: lost filesystem error report for type 5 error -117 [ 335.280383][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 335.294138][ C1] EXT4-fs (loop4): initial error at time 2000000353: ext4_free_blocks:6724 [ 335.302774][ C1] EXT4-fs (loop4): last error at time 2000000353: ext4_free_blocks:6724 [ 335.311571][T16293] EXT4-fs (loop4): Remounting filesystem read-only [ 335.318333][T16293] EXT4-fs (loop4): 1 orphan inode deleted [ 335.324555][ T118] EXT4-fs (loop4): Quota write (off=2048, len=1024) cancelled because transaction is not started [ 335.343514][ T118] EXT4-fs (loop4): Quota write (off=2048, len=1024) cancelled because transaction is not started [ 335.354800][ T118] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 335.430862][T16353] netlink: 32 bytes leftover after parsing attributes in process `syz.5.17946'. [ 335.464017][T16353] netlink: 88 bytes leftover after parsing attributes in process `syz.5.17946'. [ 335.491303][T16370] can0: slcan on ttyS3. [ 335.548353][T16370] can0 (unregistered): slcan off ttyS3. [ 335.568041][T16388] xt_CT: You must specify a L4 protocol and not use inversions on it [ 335.579141][T16394] loop5: detected capacity change from 0 to 128 [ 335.715000][T16431] netlink: 32 bytes leftover after parsing attributes in process `syz.4.17966'. [ 335.803373][T16453] loop5: detected capacity change from 0 to 512 [ 335.853130][T16453] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 335.962163][T16487] netlink: 52 bytes leftover after parsing attributes in process `syz.5.17979'. [ 335.962179][T16487] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17979'. [ 335.962198][T16487] netlink: 52 bytes leftover after parsing attributes in process `syz.5.17979'. [ 335.962209][T16487] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17979'. [ 335.962244][T16487] netlink: 52 bytes leftover after parsing attributes in process `syz.5.17979'. [ 336.820507][T16524] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17989'. [ 336.830330][T16524] netlink: 'syz.5.17989': attribute type 13 has an invalid length. [ 336.902542][T16547] loop4: detected capacity change from 0 to 256 [ 336.912048][T16547] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 336.927595][T16547] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 337.132644][T16574] loop4: detected capacity change from 0 to 1024 [ 337.155277][T16574] EXT4-fs: Ignoring removed orlov option [ 337.163773][T16574] EXT4-fs (loop4): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 337.166876][T16583] loop2: detected capacity change from 0 to 512 [ 337.195201][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.18006: iget: bad extra_isize 90 (inode size 256) [ 337.209420][T16574] EXT4-fs mount: 36 callbacks suppressed [ 337.209496][T16574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 337.223441][T16583] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 337.235481][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.18006: error while reading EA inode 11 err=-117 [ 337.244666][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 337.244686][ C1] EXT4-fs (loop2): initial error at time 2000000355: ext4_xattr_inode_iget:441: inode 11 [ 337.244705][ C1] EXT4-fs (loop2): last error at time 2000000355: ext4_xattr_inode_iget:441: inode 11 [ 337.283110][T16583] loop2: lost filesystem error report for type 5 error -117 [ 337.284183][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.18006: iget: bad extra_isize 90 (inode size 256) [ 337.305041][T16583] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 337.305269][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.18006: error while reading EA inode 11 err=-117 [ 337.305858][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.315713][T16583] loop2: lost filesystem error report for type 5 error -117 [ 337.337083][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.18006: iget: bad extra_isize 90 (inode size 256) [ 337.358242][T16583] loop2: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 337.359216][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.18006: error while reading EA inode 18 err=-117 [ 337.376408][T16605] loop4: detected capacity change from 0 to 512 [ 337.387260][T16583] loop2: lost filesystem error report for type 5 error -117 [ 337.388669][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.18006: iget: bad extra_isize 90 (inode size 256) [ 337.413020][T16605] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 337.423667][T16583] loop2: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 337.423931][T16583] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.18006: error while reading EA inode 18 err=-117 [ 337.448394][T16583] loop2: lost filesystem error report for type 5 error -117 [ 337.448610][T16583] EXT4-fs (loop2): 1 orphan inode deleted [ 337.461157][T16614] EXT4-fs: Ignoring removed orlov option [ 337.471037][T16605] EXT4-fs (loop4): 1 truncate cleaned up [ 337.477580][T16605] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 337.479153][T16583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.490603][ T3639] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 337.522901][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.542164][T16614] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.611707][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.632874][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.747412][T16647] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.772297][T16647] ext4 filesystem being mounted at /3502/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 337.784363][ T28] kauditd_printk_skb: 50 callbacks suppressed [ 337.784377][ T28] audit: type=1400 audit(2000000356.137:348296): avc: denied { setopt } for pid=16661 comm="syz.0.18025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 337.832229][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.857875][ T28] audit: type=1326 audit(2000000356.212:348297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 337.887504][ T28] audit: type=1326 audit(2000000356.230:348298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 337.916157][ T28] audit: type=1326 audit(2000000356.230:348299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 337.938243][T16682] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 337.977382][T16682] FAT-fs (loop1): Filesystem has been set read-only [ 337.985274][T16679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.997054][ T28] audit: type=1326 audit(2000000356.230:348300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 338.024357][T16679] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.18030: missing EA_INODE flag [ 338.040633][ T28] audit: type=1326 audit(2000000356.230:348301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 338.064924][ T28] audit: type=1326 audit(2000000356.230:348302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16674 comm="syz.4.18031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8f034c799 code=0x7ffc0000 [ 338.092330][T16679] EXT4-fs (loop5): Remounting filesystem read-only [ 338.129706][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.191875][T16724] xt_hashlimit: overflow, try lower: 3/0 [ 338.523710][T16801] EXT4-fs: Ignoring removed mblk_io_submit option [ 338.541219][T16801] EXT4-fs: Ignoring removed nobh option [ 338.575843][T16801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 338.591856][T16801] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 338.649938][T16801] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 3: comm syz.5.18066: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 338.691031][ T28] audit: type=1400 audit(2000000356.988:348303): avc: denied { write } for pid=16838 comm="syz.1.18086" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 338.715398][T16833] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 338.727822][T16842] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 3: comm syz.5.18066: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0 [ 338.746796][T16833] ext4 filesystem being mounted at /3648/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 338.818602][ T3321] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 338.834156][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.870912][T16868] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz1' [ 338.889951][ T28] audit: type=1400 audit(2000000357.166:348304): avc: denied { watch watch_reads } for pid=16876 comm="syz.5.18083" path="/syzcgroup/cpu/syz5/cgroup.procs" dev="cgroup" ino=445 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1 [ 339.063745][T16918] set_capacity_and_notify: 6 callbacks suppressed [ 339.063763][T16918] loop4: detected capacity change from 0 to 2048 [ 339.095312][T16925] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 339.099284][T16918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 339.103648][T16925] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 339.122338][T16925] vhci_hcd vhci_hcd.4: default hub control req: 0016 v0014 i0000 l0 [ 339.133670][T16918] ext4 filesystem being mounted at /3652/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 339.163669][T16918] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.18104: bg 0: block 345: padding at end of block bitmap is not set [ 339.182536][T16930] program syz.2.18106 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 339.197567][T16918] EXT4-fs (loop4): Remounting filesystem read-only [ 339.215684][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 339.254100][T16943] program syz.2.18106 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 339.322393][T16964] loop4: detected capacity change from 0 to 128 [ 339.389561][ T28] audit: type=1400 audit(2000000357.643:348305): avc: denied { write } for pid=16975 comm="syz.4.18122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 339.557892][T17015] loop4: detected capacity change from 0 to 512 [ 339.607170][T17015] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.18136: inode has both inline data and extents flags [ 339.623472][T17015] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 339.623615][T17015] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.18136: couldn't read orphan inode 15 (err -117) [ 339.632856][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 339.632876][ C0] EXT4-fs (loop4): initial error at time 2000000357: ext4_orphan_get:1391: inode 15 [ 339.632915][ C0] EXT4-fs (loop4): last error at time 2000000357: ext4_orphan_get:1391: inode 15 [ 339.673583][T17015] loop4: lost filesystem error report for type 5 error -117 [ 339.677571][T17015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000070000 r/w without journal. Quota mode: writeback. [ 339.708127][T17034] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 339.729060][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000070000. [ 340.000571][T17127] loop5: detected capacity change from 0 to 512 [ 340.152882][T17166] loop1: detected capacity change from 0 to 1024 [ 340.162611][T17166] EXT4-fs: Ignoring removed orlov option [ 340.182769][T17166] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 340.224601][T17166] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.304603][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.338100][T17209] netlink: 'syz.5.18190': attribute type 24 has an invalid length. [ 340.406399][T17228] loop5: detected capacity change from 0 to 512 [ 340.436959][T17228] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 340.459259][T17240] loop4: detected capacity change from 0 to 512 [ 340.474524][T17228] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.18193: bad orphan inode 16 [ 340.497229][T17228] loop5: lost filesystem error report for type 5 error -117 [ 340.497832][T17228] ext4_test_bit(bit=15, block=4) = 0 [ 340.510639][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 340.510663][ C1] EXT4-fs (loop5): initial error at time 2000000358: ext4_orphan_get:1417 [ 340.510682][ C1] EXT4-fs (loop5): last error at time 2000000358: ext4_orphan_get:1417 [ 340.534702][T17228] EXT4-fs (loop5): 1 orphan inode deleted [ 340.551617][T17228] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.570193][T17240] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 340.583811][T17240] ext4 filesystem being mounted at /3673/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 340.612407][T17228] EXT4-fs error (device loop5): __ext4_new_inode:1073: comm syz.5.18193: reserved inode found cleared - inode=9 [ 340.614604][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.664484][T17270] __nla_validate_parse: 6 callbacks suppressed [ 340.664501][T17270] netlink: 56 bytes leftover after parsing attributes in process `syz.2.18207'. [ 340.692480][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.925195][T17326] loop2: detected capacity change from 0 to 4096 [ 340.942522][T17326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 340.987722][T17337] netlink: 'syz.0.18228': attribute type 21 has an invalid length. [ 340.996036][T17337] netlink: 132 bytes leftover after parsing attributes in process `syz.0.18228'. [ 341.005504][T17337] netlink: 'syz.0.18228': attribute type 1 has an invalid length. [ 341.019271][T17356] random: crng reseeded on system resumption [ 341.049138][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.160043][T17403] netlink: 'syz.2.18241': attribute type 3 has an invalid length. [ 341.385652][T17474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.18259'. [ 341.408171][T17474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.18259'. [ 341.423478][T17474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.18259'. [ 341.674568][T17528] netlink: 24 bytes leftover after parsing attributes in process `syz.4.18277'. [ 342.078736][T17623] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 342.307470][T17663] loop2: detected capacity change from 0 to 128 [ 342.381241][T17683] xt_ecn: cannot match TCP bits for non-tcp packets [ 342.593344][T17741] loop4: detected capacity change from 0 to 512 [ 342.622044][T17741] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 342.651419][T17741] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it [ 342.676212][T17741] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.18352: Corrupt directory, running e2fsck is recommended [ 342.708495][T17741] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 342.724490][T17741] EXT4-fs error (device loop4): ext4_iget_extra_inode:5025: inode #15: comm syz.4.18352: corrupted in-inode xattr: invalid ea_ino [ 342.724537][T17758] rock: directory entry would overflow storage [ 342.724546][T17758] rock: sig=0x3b10, size=4, remaining=3 [ 342.738666][T17741] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 342.753107][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 342.768792][ C0] EXT4-fs (loop4): initial error at time 2000000360: ext4_iget_extra_inode:5025: inode 15 [ 342.774706][T17741] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.18352: couldn't read orphan inode 15 (err -117) [ 342.778723][ C0] EXT4-fs (loop4): last error at time 2000000360: ext4_iget_extra_inode:5025: inode 15 [ 342.829179][T17741] loop4: lost filesystem error report for type 5 error -117 [ 342.829764][T17741] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 342.865705][T17741] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #2: comm syz.4.18352: corrupted xattr block 255: invalid header [ 342.879762][T17741] SELinux: (dev loop4, type ext4) getxattr errno 117 [ 342.887057][T17741] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.995600][T17741] netlink: 36 bytes leftover after parsing attributes in process `syz.4.18352'. [ 343.024706][T17814] netlink: 'syz.1.18375': attribute type 21 has an invalid length. [ 343.115888][T17835] netlink: 'syz.1.18381': attribute type 2 has an invalid length. [ 343.209622][ T6951] IPVS: starting estimator thread 0... [ 343.256231][ T28] kauditd_printk_skb: 25 callbacks suppressed [ 343.256245][ T28] audit: type=1326 audit(2000000361.263:348331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.269811][T17873] netlink: 'syz.0.18399': attribute type 2 has an invalid length. [ 343.293435][ T28] audit: type=1326 audit(2000000361.291:348332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.320016][ T28] audit: type=1326 audit(2000000361.310:348333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.324769][T17859] IPVS: using max 2544 ests per chain, 127200 per kthread [ 343.345467][ T28] audit: type=1326 audit(2000000361.310:348334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.376391][ T28] audit: type=1326 audit(2000000361.310:348335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.400625][ T28] audit: type=1326 audit(2000000361.366:348336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.425636][ T28] audit: type=1326 audit(2000000361.366:348337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.459440][ T28] audit: type=1326 audit(2000000361.366:348338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17867 comm="syz.2.18393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.533370][ T28] audit: type=1400 audit(2000000361.506:348339): avc: denied { setopt } for pid=17893 comm="syz.4.18402" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 343.566052][T17901] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18405'. [ 343.669038][ T28] audit: type=1326 audit(2000000361.637:348340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17912 comm="syz.2.18410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a8707c799 code=0x7ffc0000 [ 343.882652][T17972] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18429'. [ 343.998276][T18008] netlink: 24 bytes leftover after parsing attributes in process `syz.2.18442'. [ 344.045186][T18008] vlan4: entered allmulticast mode [ 344.045204][T18008] macsec0: entered allmulticast mode [ 344.132359][T18039] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 344.333574][T18073] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 344.363856][T18073] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 344.375142][T18077] bridge0: port 1(syz_tun) entered blocking state [ 344.386691][T18077] bridge0: port 1(syz_tun) entered disabled state [ 344.394555][T18077] syz_tun: entered allmulticast mode [ 344.400495][T18077] syz_tun: entered promiscuous mode [ 344.502441][T18098] set_capacity_and_notify: 3 callbacks suppressed [ 344.502456][T18098] loop4: detected capacity change from 0 to 512 [ 344.535034][T18098] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 344.563597][T18098] EXT4-fs (loop4): 1 truncate cleaned up [ 344.595743][T18098] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 344.608125][T18116] loop1: detected capacity change from 0 to 1024 [ 344.626595][T18116] EXT4-fs: Ignoring removed orlov option [ 344.633123][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.633341][T18116] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 344.661236][T18116] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 344.722225][T18141] IPVS: Unknown mcast interface: veth0_to_bond [ 344.735709][T18140] macvtap1: entered promiscuous mode [ 344.746970][T18140] syz_tun: entered promiscuous mode [ 344.757465][T18140] syz_tun: left promiscuous mode [ 344.783880][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.272502][T18286] bridge0: port 2(bridge_slave_1) entered disabled state [ 345.279939][T18286] bridge0: port 1(bridge_slave_0) entered disabled state [ 345.289864][T18288] loop1: detected capacity change from 0 to 256 [ 345.526285][T18350] loop5: detected capacity change from 0 to 512 [ 345.556461][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.18538: iget: bad extra_isize 90 (inode size 256) [ 345.591699][T18350] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 345.591890][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.18538: error while reading EA inode 11 err=-117 [ 345.601083][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 345.601120][ C0] EXT4-fs (loop5): initial error at time 2000000363: ext4_xattr_inode_iget:441: inode 11 [ 345.601153][ C0] EXT4-fs (loop5): last error at time 2000000363: ext4_xattr_inode_iget:441: inode 11 [ 345.721329][T18350] loop5: lost filesystem error report for type 5 error -117 [ 345.721632][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.18538: iget: bad extra_isize 90 (inode size 256) [ 345.773983][T18350] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 345.774229][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.18538: error while reading EA inode 11 err=-117 [ 345.809508][T18350] loop5: lost filesystem error report for type 5 error -117 [ 345.809747][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.18538: iget: bad extra_isize 90 (inode size 256) [ 345.831313][T18350] loop5: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 345.831463][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.18538: error while reading EA inode 18 err=-117 [ 345.859783][T18350] loop5: lost filesystem error report for type 5 error -117 [ 345.859959][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.18538: iget: bad extra_isize 90 (inode size 256) [ 345.884516][T18350] loop5: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 345.884700][T18350] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.18538: error while reading EA inode 18 err=-117 [ 345.898563][T18389] loop1: detected capacity change from 0 to 512 [ 345.908009][T18350] loop5: lost filesystem error report for type 5 error -117 [ 345.913055][T18350] EXT4-fs (loop5): 1 orphan inode deleted [ 345.936211][T18350] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.994542][T18389] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 346.017921][T18350] __nla_validate_parse: 4 callbacks suppressed [ 346.017938][T18350] netlink: 12 bytes leftover after parsing attributes in process `syz.5.18538'. [ 346.039893][T18403] loop4: detected capacity change from 0 to 764 [ 346.088205][T18389] EXT4-fs (loop1): 1 truncate cleaned up [ 346.097025][T18389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.158646][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.220204][T18421] loop4: detected capacity change from 0 to 256 [ 346.265766][T18421] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001) [ 346.288534][T18421] FAT-fs (loop4): Filesystem has been set read-only [ 346.317559][T18431] loop5: detected capacity change from 0 to 128 [ 346.336015][T18431] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 346.348889][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.372041][T18431] ext4 filesystem being mounted at /295/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 346.422018][T18448] loop1: detected capacity change from 0 to 1024 [ 346.430142][T18448] EXT4-fs: Ignoring removed orlov option [ 346.466186][T12899] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 346.503511][T18448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.658770][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.067995][T18550] loop1: detected capacity change from 0 to 2048 [ 347.083731][T18557] program syz.4.18605 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 347.131489][T18563] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0 [ 347.138724][T18568] program syz.4.18605 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 347.164165][T18550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 347.274933][T18550] ext4 filesystem being mounted at /3869/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 347.294292][T18550] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.18603: bg 0: block 345: padding at end of block bitmap is not set [ 347.335681][T18550] EXT4-fs (loop1): Remounting filesystem read-only [ 347.352514][T18590] netlink: 8 bytes leftover after parsing attributes in process `syz.5.18614'. [ 347.409645][T18595] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 347.417227][T18595] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 347.424619][T18595] vhci_hcd vhci_hcd.4: default hub control req: 0016 v0014 i0000 l0 [ 347.437123][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.534335][T18604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 347.555959][T18604] ext4 filesystem being mounted at /3870/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 347.622124][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.682959][T18446] kexec: Could not allocate control_code_buffer [ 347.923754][T18684] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.18648'. [ 347.945353][T18684] netlink: zone id is out of range [ 347.952666][T18690] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18641'. [ 347.975549][T18684] netlink: zone id is out of range [ 347.980776][T18684] netlink: zone id is out of range [ 348.044571][T18684] netlink: set zone limit has 8 unknown bytes [ 348.124745][T18714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 348.189578][T18714] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.18647: corrupted inode contents [ 348.224177][T18714] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #15: comm syz.1.18647: mark_inode_dirty error [ 348.236065][T18714] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.18647: corrupted inode contents [ 348.248725][T18714] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #15: comm syz.1.18647: mark_inode_dirty error [ 348.261682][T18714] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.18647: corrupted inode contents [ 348.295165][T18714] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #15: comm syz.1.18647: mark_inode_dirty error [ 348.321530][T18764] IPVS: Error connecting to the multicast addr [ 348.333690][T18750] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 348.348587][T18714] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.18647: corrupted inode contents [ 348.364775][T18750] EXT4-fs error (device loop4): ext4_map_blocks:776: inode #3: block 2: comm syz.4.18655: lblock 2 mapped to illegal pblock 2 (length 1) [ 348.385499][T18750] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 348.386324][T18714] EXT4-fs error (device loop1): ext4_truncate:4587: inode #15: comm syz.1.18647: mark_inode_dirty error [ 348.395525][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 348.395544][ C1] EXT4-fs (loop4): initial error at time 2000000366: ext4_map_blocks:776: inode 3: block 2 [ 348.395591][ C1] EXT4-fs (loop4): last error at time 2000000366: ext4_map_blocks:776: inode 3: block 2 [ 348.398909][T18750] EXT4-fs error (device loop4): ext4_map_blocks:776: inode #3: block 48: comm syz.4.18655: lblock 0 mapped to illegal pblock 48 (length 1) [ 348.448105][T18771] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 348.457987][T18714] EXT4-fs error (device loop1) in ext4_setattr:5983: Corrupt filesystem [ 348.468603][T18750] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 348.468694][T18750] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.18655: Failed to acquire dquot type 0 [ 348.470659][T18749] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #15: comm syz.1.18647: corrupted inode contents [ 348.489240][T18750] loop4: lost filesystem error report for type 5 error -117 [ 348.502008][T18750] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 348.520083][T18771] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.18661: bad orphan inode 16 [ 348.520121][T18750] loop4: lost filesystem error report for type 5 error -117 [ 348.520233][T18750] EXT4-fs error (device loop4): ext4_evict_inode:255: inode #11: comm syz.4.18655: mark_inode_dirty error [ 348.547785][T18771] loop2: lost filesystem error report for type 5 error -117 [ 348.549824][T18750] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 348.557278][T18750] EXT4-fs warning (device loop4): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 348.576789][T18750] EXT4-fs (loop4): 1 orphan inode deleted [ 348.582652][T18771] ext4_test_bit(bit=15, block=4) = 0 [ 348.582669][T18771] EXT4-fs (loop2): 1 orphan inode deleted [ 348.583126][T18771] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 348.589823][T18771] EXT4-fs error (device loop2): __ext4_new_inode:1073: comm syz.2.18661: reserved inode found cleared - inode=9 [ 348.622801][ T118] EXT4-fs error (device loop4): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1) [ 348.625141][T18750] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 348.648999][ T118] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 348.649175][ T118] __quota_error: 47 callbacks suppressed [ 348.649188][ T118] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 348.649206][ T118] EXT4-fs error (device loop4): ext4_release_dquot:7037: comm kworker/u8:5: Failed to release dquot type 0 [ 348.649253][ T118] loop4: lost filesystem error report for type 5 error -117 [ 348.685369][ T3312] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 348.686178][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.697434][ T3312] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 348.730577][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.749556][ T3312] EXT4-fs warning (device loop1): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 348.755130][ T3321] EXT4-fs error (device loop4): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 348.772583][ T3321] loop4: lost filesystem error report for type 5 error -117 [ 348.776312][ T3321] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 348.794499][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.814834][ T28] audit: type=1326 audit(2000000366.454:348386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 348.839315][ T3321] loop4: lost filesystem error report for type 5 error -117 [ 348.839630][ T3321] EXT4-fs error (device loop4): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error [ 348.869978][ T3321] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 348.870236][ T28] audit: type=1326 audit(2000000366.454:348387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 348.934530][T18802] netlink: 44 bytes leftover after parsing attributes in process `syz.1.18663'. [ 348.945948][ T28] audit: type=1326 audit(2000000366.454:348388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 348.975171][T18802] bridge0: left allmulticast mode [ 349.027917][ T28] audit: type=1326 audit(2000000366.464:348389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.070752][T18821] EXT4-fs: inline encryption not supported [ 349.081415][ T28] audit: type=1326 audit(2000000366.464:348390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.116048][T18829] SELinux: failed to load policy [ 349.122376][T18821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 349.171835][T18836] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 349.178379][ T28] audit: type=1326 audit(2000000366.464:348391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.205474][ T28] audit: type=1326 audit(2000000366.464:348392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.229513][ T28] audit: type=1326 audit(2000000366.492:348393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.255222][ T28] audit: type=1326 audit(2000000366.538:348394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18786 comm="syz.0.18669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f45390fc799 code=0x7ffc0000 [ 349.297141][T12899] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 349.396510][T18855] netlink: 'syz.1.18684': attribute type 3 has an invalid length. [ 349.602732][T18896] hub 8-0:1.0: USB hub found [ 349.610911][T18896] hub 8-0:1.0: 8 ports detected [ 349.707322][T18909] netlink: 44 bytes leftover after parsing attributes in process `syz.0.18705'. [ 349.769079][T18923] tipc: Enabling of bearer rejected, failed to enable media [ 349.776045][T18920] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.18709'. [ 349.787443][T18920] netlink: zone id is out of range [ 349.796150][T18920] netlink: zone id is out of range [ 349.813245][T18920] netlink: zone id is out of range [ 349.839128][T18920] netlink: set zone limit has 8 unknown bytes [ 349.893472][T18937] hub 8-0:1.0: USB hub found [ 349.901136][T18937] hub 8-0:1.0: 8 ports detected [ 349.911209][T18948] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 349.934592][T18952] set_capacity_and_notify: 7 callbacks suppressed [ 349.934615][T18952] loop4: detected capacity change from 0 to 512 [ 349.992413][T18952] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.008339][T18972] loop2: detected capacity change from 0 to 164 [ 350.016123][T18952] ext4 filesystem being mounted at /3777/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 350.083184][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.083520][T18983] netlink: 44 bytes leftover after parsing attributes in process `syz.2.18724'. [ 350.106277][T18983] bridge0: left allmulticast mode [ 350.189121][T19002] loop1: detected capacity change from 0 to 512 [ 350.206180][T19002] EXT4-fs: Ignoring removed i_version option [ 350.212228][T19002] EXT4-fs: Ignoring removed bh option [ 350.266928][T19002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.314297][T19002] ext4 filesystem being mounted at /3891/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 350.335673][T19035] loop4: detected capacity change from 0 to 1024 [ 350.400963][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.681113][T19112] loop4: detected capacity change from 0 to 512 [ 350.688662][T19110] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 350.720460][T19112] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 350.739995][T19112] EXT4-fs (loop4): orphan cleanup on readonly fs [ 350.747807][T19112] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #16: comm syz.4.18772: corrupted inode contents [ 350.768643][T19112] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 350.768872][T19112] EXT4-fs (loop4): Remounting filesystem read-only [ 350.778019][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 350.778042][ C1] EXT4-fs (loop4): initial error at time 2000000368: ext4_do_update_inode:5569: inode 16 [ 350.778076][ C1] EXT4-fs (loop4): last error at time 2000000368: ext4_do_update_inode:5569: inode 16 [ 350.810747][T19112] EXT4-fs (loop4): 1 truncate cleaned up [ 350.816663][ T50] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 350.837004][ T50] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 350.847857][ T50] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 350.860217][T19112] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 350.887233][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.159447][T19195] loop4: detected capacity change from 0 to 256 [ 351.405020][T19222] loop2: detected capacity change from 0 to 764 [ 351.416912][T19208] loop1: detected capacity change from 0 to 8192 [ 351.571789][T19251] loop2: detected capacity change from 0 to 1024 [ 351.650275][T19251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 351.678705][T19269] loop5: detected capacity change from 0 to 128 [ 351.683076][T19251] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.18814: missing EA_INODE flag [ 351.702403][T19251] EXT4-fs (loop2): Remounting filesystem read-only [ 351.764842][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.798651][T19292] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.000171][T19338] macvlan0: entered allmulticast mode [ 352.006130][T19338] veth0_virt_wifi: entered allmulticast mode [ 352.029517][T19343] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 352.175449][T19372] FAT-fs (loop5): Directory bread(block 414) failed [ 352.191136][T19372] FAT-fs (loop5): Directory bread(block 415) failed [ 352.231416][T19372] FAT-fs (loop5): Directory bread(block 416) failed [ 352.238982][T19372] FAT-fs (loop5): Directory bread(block 417) failed [ 352.245693][T19372] FAT-fs (loop5): Directory bread(block 418) failed [ 352.254834][T19372] FAT-fs (loop5): Directory bread(block 419) failed [ 352.261807][T19372] FAT-fs (loop5): Directory bread(block 420) failed [ 352.270032][T19372] FAT-fs (loop5): Directory bread(block 421) failed [ 352.281897][T19372] FAT-fs (loop5): Directory bread(block 414) failed [ 352.289818][T19372] FAT-fs (loop5): Directory bread(block 415) failed [ 352.332219][T19396] netlink: 52 bytes leftover after parsing attributes in process `syz.0.18858'. [ 352.354066][T19396] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18858'. [ 352.368779][T19396] netlink: 52 bytes leftover after parsing attributes in process `syz.0.18858'. [ 352.369656][ T6948] hid_parser_main: 90 callbacks suppressed [ 352.369673][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.379317][T19396] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18858'. [ 352.391795][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.401009][T19396] netlink: 52 bytes leftover after parsing attributes in process `syz.0.18858'. [ 352.432044][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.455770][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.471963][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.491453][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.499197][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.509443][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.516993][ T10] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1 [ 352.520462][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.544750][ T6948] hid-generic 0000:0000:0004.0002: unknown main item tag 0x0 [ 352.554372][ T6948] hid-generic 0000:0000:0004.0002: hidraw0: HID v0.03 Device [syz1] on syz0 [ 352.618661][T19441] netlink: 28 bytes leftover after parsing attributes in process `syz.4.18871'. [ 352.647828][T19446] C: renamed from team_slave_0 (while UP) [ 352.676477][T19446] netlink: 164 bytes leftover after parsing attributes in process `syz.5.18873'. [ 352.733173][T19470] netlink: 24 bytes leftover after parsing attributes in process `syz.1.18879'. [ 352.756404][T19470] vlan0: entered allmulticast mode [ 353.159641][T19569] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 353.178887][T19569] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 353.333227][T19601] netlink: 40 bytes leftover after parsing attributes in process `syz.4.18914'. [ 353.440429][T19630] xt_hashlimit: size too large, truncated to 1048576 [ 353.599353][T19651] skbuff: bad partial csum: csum=65535/127 headroom=146 headlen=65664 [ 353.623986][T19653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18929'. [ 353.724635][T19680] ISOFS: unable to read i-node block [ 353.730102][T19680] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 353.816809][T19699] netlink: 'syz.5.18945': attribute type 1 has an invalid length. [ 354.085209][ T3639] Bluetooth: hci0: command 0x1003 tx timeout [ 354.091271][T16328] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 354.189489][ T28] kauditd_printk_skb: 29 callbacks suppressed [ 354.189523][ T28] audit: type=1326 audit(2000000627.484:348418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.223162][ T28] audit: type=1326 audit(2000000627.484:348419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.248541][ T28] audit: type=1326 audit(2000000627.512:348420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.273136][ T28] audit: type=1326 audit(2000000627.512:348421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.298644][ T28] audit: type=1326 audit(2000000627.512:348422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.324093][ T28] audit: type=1326 audit(2000000627.512:348423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.351489][ T28] audit: type=1326 audit(2000000627.512:348424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.397004][ T28] audit: type=1326 audit(2000000627.512:348425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19763 comm="syz.5.18965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ab05bc799 code=0x7ffc0000 [ 354.432963][T19780] Cannot find del_set index 0 as target [ 354.691074][T19847] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 354.725467][T19847] EXT4-fs (loop2): 1 truncate cleaned up [ 354.736407][T19847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.812531][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.917426][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.18993: iget: bad extra_isize 90 (inode size 256) [ 354.951304][T19878] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 354.951484][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.18993: error while reading EA inode 11 err=-117 [ 354.972978][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 354.972996][ C0] EXT4-fs (loop4): initial error at time 2000000628: ext4_xattr_inode_iget:441: inode 11 [ 354.973023][ C0] EXT4-fs (loop4): last error at time 2000000628: ext4_xattr_inode_iget:441: inode 11 [ 354.999623][T19878] loop4: lost filesystem error report for type 5 error -117 [ 354.999877][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.18993: iget: bad extra_isize 90 (inode size 256) [ 355.037399][T19878] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 355.039278][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.18993: error while reading EA inode 11 err=-117 [ 355.062835][T19878] loop4: lost filesystem error report for type 5 error -117 [ 355.063021][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.18993: iget: bad extra_isize 90 (inode size 256) [ 355.104835][T19878] loop4: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 355.106168][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.18993: error while reading EA inode 18 err=-117 [ 355.133741][T19878] loop4: lost filesystem error report for type 5 error -117 [ 355.134039][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.18993: iget: bad extra_isize 90 (inode size 256) [ 355.156336][T19878] loop4: lost file I/O error report for ino 18 type 5 pos 0x0 len 0x0 error -117 [ 355.156512][T19878] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.18993: error while reading EA inode 18 err=-117 [ 355.182085][T19878] loop4: lost filesystem error report for type 5 error -117 [ 355.182827][T19878] EXT4-fs (loop4): 1 orphan inode deleted [ 355.369922][T19943] xt_CT: You must specify a L4 protocol and not use inversions on it [ 355.634902][ T35] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 355.669843][T20018] set_capacity_and_notify: 5 callbacks suppressed [ 355.669860][T20018] loop2: detected capacity change from 0 to 512 [ 355.716320][T20028] fido_id[20028]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 355.899168][ T28] audit: type=1400 audit(2000000629.084:348426): avc: denied { associate } for pid=20053 comm="syz.5.19045" name="memory.events" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 356.180165][T20125] loop1: detected capacity change from 0 to 256 [ 356.278709][T20148] tipc: Started in network mode [ 356.287716][T20148] tipc: Node identity fe800000000000000000000000000018, cluster identity 4711 [ 356.306882][T20148] tipc: Enabling of bearer rejected, failed to enable media [ 356.516676][ T28] audit: type=1326 audit(2000000629.664:348427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20185 comm="syz.1.19085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f1a05c799 code=0x7ffc0000 [ 356.577507][T20192] loop4: detected capacity change from 0 to 1024 [ 356.587977][T20193] loop2: detected capacity change from 0 to 512 [ 356.600138][T20192] EXT4-fs: inline encryption not supported [ 356.632911][T20193] ext4 filesystem being mounted at /3695/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 357.111946][T20282] loop5: detected capacity change from 0 to 512 [ 357.142536][T20264] loop4: detected capacity change from 0 to 8192 [ 357.162948][T20282] ext4 filesystem being mounted at /419/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.191600][T20309] loop1: detected capacity change from 0 to 1024 [ 357.202419][T20311] SELinux: failed to load policy [ 357.212647][T20309] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 357.234592][T20309] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #3: block 2: comm syz.1.19119: lblock 2 mapped to illegal pblock 2 (length 1) [ 357.258372][T20309] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 357.258564][T20309] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #3: block 48: comm syz.1.19119: lblock 0 mapped to illegal pblock 48 (length 1) [ 357.267988][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 357.268018][ C1] EXT4-fs (loop1): initial error at time 2000000630: ext4_map_blocks:776: inode 3: block 2 [ 357.268062][ C1] EXT4-fs (loop1): last error at time 2000000630: ext4_map_blocks:776: inode 3: block 2 [ 357.314938][T20309] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 357.319883][T20309] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.19119: Failed to acquire dquot type 0 [ 357.341292][T20309] loop1: lost filesystem error report for type 5 error -117 [ 357.341441][T20309] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 357.358719][T20309] loop1: lost filesystem error report for type 5 error -117 [ 357.358797][T20309] EXT4-fs error (device loop1): ext4_evict_inode:255: inode #11: comm syz.1.19119: mark_inode_dirty error [ 357.378408][T20309] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 357.378565][T20309] EXT4-fs warning (device loop1): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 357.398154][T20309] EXT4-fs (loop1): 1 orphan inode deleted [ 357.412669][ T30] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 357.456743][ T30] EXT4-fs error (device loop1): ext4_release_dquot:7037: comm kworker/u8:1: Failed to release dquot type 0 [ 357.479255][ T3312] EXT4-fs error (device loop1): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 357.495679][ T3312] loop1: lost filesystem error report for type 5 error -117 [ 357.495890][ T3312] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 357.523127][ T3312] loop1: lost filesystem error report for type 5 error -117 [ 357.523261][ T3312] EXT4-fs error (device loop1): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error [ 357.542910][ T3312] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 357.877944][T20363] loop1: detected capacity change from 0 to 512 [ 358.001562][T20377] netlink: 'syz.1.19139': attribute type 1 has an invalid length. [ 358.378865][T20436] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 358.393583][T20434] netlink: 'syz.2.19158': attribute type 21 has an invalid length. [ 358.456126][T20453] ieee802154 phy0 wpan0: encryption failed: -22 [ 358.556105][T20479] loop5: detected capacity change from 0 to 512 [ 358.587084][T20479] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 358.601569][T20479] EXT4-fs (loop5): orphan cleanup on readonly fs [ 358.609951][T20479] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #16: comm syz.5.19172: corrupted inode contents [ 358.622150][T20479] loop5: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 358.622359][T20479] EXT4-fs (loop5): Remounting filesystem read-only [ 358.631474][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 358.631489][ C1] EXT4-fs (loop5): initial error at time 2000000631: ext4_do_update_inode:5569: inode 16 [ 358.631513][ C1] EXT4-fs (loop5): last error at time 2000000631: ext4_do_update_inode:5569: inode 16 [ 358.664185][T20479] EXT4-fs (loop5): 1 truncate cleaned up [ 358.670413][ T50] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 358.680972][ T50] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 358.691608][ T50] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 358.923221][T20548] __nla_validate_parse: 7 callbacks suppressed [ 358.923239][T20548] netlink: 8 bytes leftover after parsing attributes in process `syz.5.19194'. [ 359.075903][ T6951] hid_parser_main: 92 callbacks suppressed [ 359.075922][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.105363][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.113193][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.121616][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.129078][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.137183][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.145247][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.152906][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.160498][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.168122][ T6951] hid-generic 0000:0000:0004.0004: unknown main item tag 0x0 [ 359.176873][ T6951] hid-generic 0000:0000:0004.0004: hidraw0: HID v0.03 Device [syz1] on syz0 [ 359.224720][T20609] fido_id[20609]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 359.240817][T20618] C: renamed from team_slave_0 [ 359.247401][T20618] netlink: 164 bytes leftover after parsing attributes in process `syz.1.19208'. [ 359.367646][T20641] loop5: detected capacity change from 0 to 128 [ 359.387435][T20652] macvlan0: entered allmulticast mode [ 359.398178][T20641] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 359.476059][T20666] FAT-fs (loop4): Directory bread(block 414) failed [ 359.485834][T20666] FAT-fs (loop4): Directory bread(block 415) failed [ 359.500024][T20666] FAT-fs (loop4): Directory bread(block 416) failed [ 359.506897][T20659] Symlink component flag not implemented [ 359.515351][T20659] Symlink component flag not implemented (116) [ 359.521888][T20666] FAT-fs (loop4): Directory bread(block 417) failed [ 359.541931][T20666] FAT-fs (loop4): Directory bread(block 418) failed [ 359.551490][T20666] FAT-fs (loop4): Directory bread(block 419) failed [ 359.558181][T20666] FAT-fs (loop4): Directory bread(block 420) failed [ 359.566109][T20666] FAT-fs (loop4): Directory bread(block 421) failed [ 359.590488][T20666] FAT-fs (loop4): Directory bread(block 414) failed [ 359.598454][T20666] FAT-fs (loop4): Directory bread(block 415) failed [ 360.002791][ T12] ================================================================== [ 360.010873][ T12] BUG: KCSAN: data-race in copy_folio_from_iter_atomic / fat16_ent_put [ 360.019099][ T12] [ 360.021416][ T12] write to 0xffff88810bea1e68 of 2 bytes by task 20701 on cpu 1: [ 360.029127][ T12] fat16_ent_put+0x28/0x60 [ 360.033549][ T12] fat_alloc_clusters+0x57b/0xc50 [ 360.038545][ T12] fat_get_block+0x258/0x5e0 [ 360.043111][ T12] __block_write_begin_int+0x400/0xf90 [ 360.048549][ T12] cont_write_begin+0x5fe/0x970 [ 360.053377][ T12] fat_write_begin+0x4f/0xe0 [ 360.057945][ T12] generic_perform_write+0x183/0x490 [ 360.063212][ T12] __generic_file_write_iter+0x9e/0x120 [ 360.068746][ T12] generic_file_write_iter+0x8d/0x310 [ 360.074097][ T12] vfs_write+0x5a6/0x9f0 [ 360.078320][ T12] ksys_write+0xdc/0x1a0 [ 360.082550][ T12] __x64_sys_write+0x40/0x50 [ 360.087185][ T12] x64_sys_call+0x27e1/0x3020 [ 360.091864][ T12] do_syscall_64+0x12c/0x370 [ 360.096431][ T12] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.102398][ T12] [ 360.104700][ T12] read to 0xffff88810bea1e00 of 512 bytes by task 12 on cpu 0: [ 360.112228][ T12] copy_folio_from_iter_atomic+0x75f/0x1170 [ 360.118104][ T12] generic_perform_write+0x2c1/0x490 [ 360.123367][ T12] shmem_file_write_iter+0xc5/0xf0 [ 360.128466][ T12] lo_rw_aio+0x67d/0x730 [ 360.132685][ T12] loop_process_work+0x56c/0xac0 [ 360.137633][ T12] loop_workfn+0x31/0x40 [ 360.141886][ T12] process_scheduled_works+0x4de/0x9e0 [ 360.147411][ T12] worker_thread+0x581/0x770 [ 360.151980][ T12] kthread+0x22a/0x280 [ 360.156028][ T12] ret_from_fork+0x150/0x360 [ 360.160615][ T12] ret_from_fork_asm+0x1a/0x30 [ 360.165379][ T12] [ 360.167681][ T12] Reported by Kernel Concurrency Sanitizer on: [ 360.173989][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G W syzkaller #0 PREEMPT(full) [ 360.184818][ T12] Tainted: [W]=WARN [ 360.188609][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 360.198651][ T12] Workqueue: loop5 loop_workfn [ 360.203405][ T12] ==================================================================