last executing test programs: 2m28.732799846s ago: executing program 0 (id=766): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x100000, 0x4) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000400), &(0x7f0000000440)=0x30) 2m28.637668319s ago: executing program 0 (id=772): perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x8, 0xa0423, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x8, 0x7f}, 0x2012, 0x0, 0x80002, 0x5, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2e, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000106}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) 2m28.526780323s ago: executing program 0 (id=782): openat$autofs(0xffffffffffffff9c, 0x0, 0x40, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f00000005c0)={[{@nodioread_nolock}, {@noblock_validity}, {@data_err_ignore}, {@delalloc}, {@nodiscard}, {@stripe={'stripe', 0x3d, 0x4}}, {@noauto_da_alloc}]}, 0x6, 0x61f, &(0x7f0000000b00)="$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") mkdir(&(0x7f0000000300)='./bus\x00', 0x0) 2m27.986668252s ago: executing program 0 (id=796): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@dioread_lock}, {@barrier}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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") chdir(&(0x7f0000000240)='./file0\x00') mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f00000003c0)='.\x00', &(0x7f0000000000)='ext4\x00', 0x0, 0x0) 2m27.613607774s ago: executing program 0 (id=811): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x2800088, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x95, 0x2b8, &(0x7f0000000340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) sendfile(r0, r0, 0x0, 0xe3aa6ea) 2m27.356788073s ago: executing program 0 (id=825): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd702000dcdf251a0000004c00228004000080041800803400008008000100ff0000000800070001010000080004004725ffff08000300000000000000070007000000080003000500000004000080030000800400008006002100"], 0x68}, 0x1, 0x0, 0x0, 0x4008145}, 0x8000) 2m27.315079925s ago: executing program 32 (id=825): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd702000dcdf251a0000004c00228004000080041800803400008008000100ff0000000800070001010000080004004725ffff08000300000000000000070007000000080003000500000004000080030000800400008006002100"], 0x68}, 0x1, 0x0, 0x0, 0x4008145}, 0x8000) 2m1.676270399s ago: executing program 2 (id=1803): syz_usbip_server_init(0x1) syz_usbip_server_init(0x1) syz_usbip_server_init(0x2) 2m0.978762122s ago: executing program 2 (id=1825): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'ipvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0xffef, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054) 2m0.902641196s ago: executing program 2 (id=1828): syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x800001c, @multicast1}, {0x0, 0x17c1, 0x8}}}}}, 0x0) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={0x0, 0x2000, 0x1000, 0x5, 0x6}, 0x20) 2m0.861672947s ago: executing program 2 (id=1830): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x48a, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@data_err_ignore}, {@usrjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@noblock_validity}]}, 0x1, 0x44e, &(0x7f0000000900)="$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") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0) 2m0.653896734s ago: executing program 2 (id=1834): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x60, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x4800000, @remote}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040000}, 0x80) 2m0.407763943s ago: executing program 2 (id=1845): r0 = socket(0xa, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x14, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000180)="a7", 0x1a000, 0x4c898, &(0x7f0000000040)={0xa, 0x4e24, 0x7, @loopback, 0xc60}, 0x1c) 2m0.379230553s ago: executing program 33 (id=1845): r0 = socket(0xa, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x14, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000180)="a7", 0x1a000, 0x4c898, &(0x7f0000000040)={0xa, 0x4e24, 0x7, @loopback, 0xc60}, 0x1c) 1m16.225963691s ago: executing program 4 (id=3344): sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000bc0)={0x1b0, 0x0, 0x2, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_EXPECT_NAT={0x154, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xac, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x1a}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x36}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x401}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x68, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x28}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x18}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x2b}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xc, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_NAT_TUPLE={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}]}, @CTA_EXPECT_NAT={0x3c, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x4}, @CTA_EXPECT_NAT_TUPLE={0x1c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_NAT={0x4}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x40}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x69}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400}) 1m16.167063972s ago: executing program 4 (id=3346): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x5, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) rt_sigpending(0x0, 0x0) 1m15.764039556s ago: executing program 4 (id=3354): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000000a499d0000000000000000020000010900010073797a310000000008000240000000030400060014000000110001"], 0x54}}, 0x0) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000200)={0x0, 0x2b, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000010a0101000000000000080002"], 0x14}, 0x1, 0x0, 0x0, 0x400c895}, 0x24000800) recvmsg(r0, &(0x7f0000000600)={0x0, 0x8, 0x0}, 0x0) 1m15.689576309s ago: executing program 4 (id=3357): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000002040)=[{0x200000000006, 0x20, 0xff, 0x7ffc0002}]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() 1m15.612776532s ago: executing program 4 (id=3360): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x24000, 0x0) 1m15.540490514s ago: executing program 4 (id=3361): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 1m0.389777195s ago: executing program 34 (id=3361): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 48.976159577s ago: executing program 3 (id=4081): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000020646c2500000000002020207b1ad8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1809000000ffffff00000000000000008510000002000000850000000f0000009500"], 0x0, 0xfffffdff, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc) 48.937139838s ago: executing program 3 (id=4082): r0 = socket(0x28, 0x801, 0x0) connect$vsock_stream(r0, &(0x7f0000000880)={0x28, 0x0, 0x0, @local}, 0x10) shutdown(r0, 0x2) sendto$packet(r0, 0x0, 0x0, 0x4, 0x0, 0x0) 48.863097201s ago: executing program 3 (id=4083): perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7f, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=@base={0x9, 0x17, 0xa, 0x40, 0x42, 0x1, 0x5}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f00000017c0), 0x0}, 0x20) 48.101134477s ago: executing program 3 (id=4089): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0) r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xf773, "0020742010000099b330ce000000000000000000000000000000000000feff00"}) 48.089938857s ago: executing program 3 (id=4091): sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0x401, 0x70bd2a, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0x4982, 0x701ca}, [@IFLA_LINKINFO={0x28, 0x37, 0x0, 0x1, @veth={{0x9}, {0x10, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x10000, 0x48124}}}}}}, @IFLA_PROTO_DOWN={0x5, 0x27, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0xc10}, 0x8000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) 48.034857529s ago: executing program 3 (id=4093): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x15, &(0x7f0000000400)={0x11, 0x88a8, r2, 0x1, 0x0, 0x6, @multicast}, 0x6e) 33.300584636s ago: executing program 5 (id=4433): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280)={[{@errors_remount}, {@usrquota}, {@minixdf}, {@nombcache}]}, 0x1, 0x51a, &(0x7f0000000f00)="$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") r0 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20) fallocate(r0, 0x0, 0x4000000, 0x1001f0) fallocate(r0, 0x3, 0xf00, 0x10000) 33.104245063s ago: executing program 5 (id=4441): perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x7, 0x34328, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x2}, 0x10026, 0x10003, 0xfffffff8, 0x3, 0x100008, 0x20005, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1, 0x3, 0x6, 0xb}, 0x50) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1) 33.018580376s ago: executing program 35 (id=4093): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x15, &(0x7f0000000400)={0x11, 0x88a8, r2, 0x1, 0x0, 0x6, @multicast}, 0x6e) 32.963684598s ago: executing program 5 (id=4447): r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x50, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x0, 0x0, 0x0, 0x0, 0xa2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x8}, 0x51, 0x0, 0x0, 0x0, 0x6e5, 0x8}, 0x0, 0xffffffffffffffff, r0, 0x8) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x208, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, r0, 0x0) close(0x3) 32.910743079s ago: executing program 5 (id=4448): r0 = socket(0x10, 0x803, 0x0) write(r0, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b1ffec0e90101c7bb0000b00000000000", 0x26) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000d9bffc), 0x4) sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@gettaction={0x18, 0x32, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@action_gd=@TCA_ACT_TAB={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8040) 32.87403877s ago: executing program 5 (id=4450): sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0x401, 0x70bd2a, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0x4982, 0x701ca}, [@IFLA_LINKINFO={0x28, 0x37, 0x0, 0x1, @veth={{0x9}, {0x10, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x10000, 0x48124}}}}}}, @IFLA_PROTO_DOWN={0x5, 0x27, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0xc10}, 0x8000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1) 32.794109553s ago: executing program 5 (id=4454): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x68, &(0x7f0000000040)=0x1, 0x4) 17.769071609s ago: executing program 36 (id=4454): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x68, &(0x7f0000000040)=0x1, 0x4) 1.44644652s ago: executing program 9 (id=5358): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85) 1.366884593s ago: executing program 6 (id=5363): sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000bc0)={0x1dc, 0x0, 0x2, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_EXPECT_NAT={0x154, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xac, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x1a}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x36}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x401}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x68, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x28}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x18}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x2b}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xc, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_NAT_TUPLE={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}]}, @CTA_EXPECT_NAT={0x74, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_EXPECT_NAT_TUPLE={0x58, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x36}}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x69}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400}) 1.294224005s ago: executing program 6 (id=5367): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x7, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000600)=0x82, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x22, 0x0, 0x0) 1.206284428s ago: executing program 6 (id=5371): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000000000), 0x4) sendmsg$inet(r1, &(0x7f0000002d40)={0x0, 0x0, &(0x7f0000002980)=[{&(0x7f0000000040)='P', 0xfe1b}], 0x1}, 0x0) recvmsg$unix(r0, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x0) 1.144378431s ago: executing program 6 (id=5374): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r2, 0x4734}}, 0x10) 1.111819182s ago: executing program 6 (id=5378): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) sendto(0xffffffffffffffff, 0x0, 0x0, 0x4000010, 0x0, 0x0) 1.060131274s ago: executing program 1 (id=5379): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x20081, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={0x0, 0x8}, 0x2, 0x0, 0x10ffe, 0x0, 0x2, 0x80000011, 0x1, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x9) r0 = msgget$private(0x0, 0x3ac) msgrcv(r0, &(0x7f00000000c0)={0x0, ""/252}, 0x104, 0xced6b2bc496a26e6, 0x0) msgsnd(r0, &(0x7f00000010c0)={0x2}, 0x8, 0x0) 946.506248ms ago: executing program 1 (id=5382): sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x34, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x20, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4050) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000037400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080007002609093a140006"], 0x78}, 0x1, 0xffffffff00000003}, 0x0) 871.09451ms ago: executing program 1 (id=5386): mount(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x81032, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001000010400000000feffffff00000000", @ANYRES32=0x0, @ANYBLOB="10100000200800001c0012800e00010069703665727370616e0000000800028004001200080003"], 0x4c}, 0x1, 0x0, 0x0, 0x8080}, 0xd0) sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0) 739.152875ms ago: executing program 1 (id=5389): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xe, 0x4, 0x4, 0x1, 0x0, 0x1, 0xfffffffc}, 0x50) perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xcb, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000800000004000000bb7f1a004d00feff000000009500000000"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x93, &(0x7f00000005c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r0}, &(0x7f0000000280)}, 0x20) 723.889486ms ago: executing program 6 (id=5390): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x3, 0x11, &(0x7f0000000940)=ANY=[@ANYBLOB="18020000ffffffff00000000024000008500000053000000b7080000000000007b8af8ff00000000b7080000fdffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000000600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6cab2ea5}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000040)="40d174b28bf781c274386d178550", 0x0, 0x1200801, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 711.524956ms ago: executing program 8 (id=5391): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff) sendmsg$SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fddbd725020000000900010073797a3200000000140002"], 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800) sendmsg$SMC_PNETID_FLUSH(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010028bd70fefbdbdf2504"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x800) 618.644869ms ago: executing program 8 (id=5393): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)={0x78, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x32}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x14, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @remote}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}]}]}, 0x78}}, 0x0) 585.09049ms ago: executing program 8 (id=5395): r0 = socket(0x10, 0x803, 0x0) unshare(0x22020600) sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x14, 0x0, 0x400, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x200088c4}, 0x20040000) connect$netlink(r0, &(0x7f0000000880)=@kern={0x10, 0x0, 0x0, 0x100}, 0xc) 552.811991ms ago: executing program 1 (id=5396): r0 = perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0xb5, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x81c) 469.774254ms ago: executing program 1 (id=5398): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) readahead(0xffffffffffffffff, 0xffffffff, 0x7f) 439.673655ms ago: executing program 9 (id=5400): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x5, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0xda, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000088000000240000007f00000001"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0xca, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000700)={r0, 0x0, &(0x7f0000000900)=""/101}, 0x20) 422.835596ms ago: executing program 8 (id=5401): ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', 0x0}) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x240008c1, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="11000000040000000400000022"], 0x50) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r0, &(0x7f0000000140), &(0x7f0000000080)=@udp}, 0x20) 338.215458ms ago: executing program 9 (id=5403): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x22, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={0x0, 0xe}, 0x2195dc4ef7ab6e02, 0x0, 0x0, 0x0, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000005d00)=[{{&(0x7f0000002100)={0xa, 0x4e22, 0x17, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x7}, 0x1c, &(0x7f0000002640)=[{&(0x7f0000002140)='7', 0x1}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000001180)=0x1, 0x4) 338.156168ms ago: executing program 8 (id=5404): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0x25) 303.730349ms ago: executing program 8 (id=5406): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4805}, 0x20000050) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800014000000000080002400000000014000000110001"], 0x68}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x5, 0x0, 0x0, {0x2}}, @NFT_MSG_NEWFLOWTABLE={0x30, 0x16, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x6c}}, 0x0) 292.32932ms ago: executing program 7 (id=5407): unshare(0x8000280) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) ioctl$EXT4_IOC_MIGRATE(r1, 0xff07) 208.816733ms ago: executing program 7 (id=5408): pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) close(r1) eventfd(0x20000000) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x2204803, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 126.735026ms ago: executing program 9 (id=5409): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x14, 0x30, 0x871a15abc695f30d, 0x5, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4008015}, 0x80) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x8001}, &(0x7f0000000000)=0x8) 121.203286ms ago: executing program 7 (id=5410): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000540)="0000000000040000c41a719e0a09", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 66.667898ms ago: executing program 9 (id=5411): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x70bd26, 0x1, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x1, 0x0, 0xffe, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c844}, 0x20000110) 66.253598ms ago: executing program 7 (id=5412): r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="240000001800010000000000fedbdf251d01060008000900", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00v'], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 39.124879ms ago: executing program 7 (id=5413): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e) getsockopt(r1, 0x111, 0x1, 0x0, &(0x7f0000000080)=0x5c) 16.55211ms ago: executing program 9 (id=5414): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x3, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x5, 0xe, 0x0, &(0x7f0000000380)="2eb33d2ab87cded491710d000000", 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x3c) 0s ago: executing program 7 (id=5415): sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)={0xe8, 0x0, 0x2, 0x201, 0x0, 0x0, {0x7, 0x0, 0x2}, [@CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x34e6}, @CTA_EXPECT_NAT={0x4}, @CTA_EXPECT_NAT={0xc8, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @multicast1}}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @rand_addr=0x64010101}}}]}, @CTA_EXPECT_NAT_TUPLE={0x4}, @CTA_EXPECT_NAT_TUPLE={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}]}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x69}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400}) kernel console output (not intermixed with test programs): [T10547] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 114.731188][T10699] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 114.741633][T10547] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 114.751152][T10699] EXT4-fs (loop5): changing journal_checksum during remount not supported; ignoring [ 114.784091][T10699] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 114.813634][T10547] team0: Port device team_slave_0 added [ 114.831635][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.847564][T10547] team0: Port device team_slave_1 added [ 114.908527][T10547] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 114.927768][T10547] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 114.969460][T10547] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 114.994654][T10547] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 115.002600][T10547] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 115.030227][T10547] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 115.078256][ T12] IPVS: stop unused estimator thread 0... [ 115.127315][T10547] hsr_slave_0: entered promiscuous mode [ 115.135177][T10547] hsr_slave_1: entered promiscuous mode [ 115.141245][T10547] debugfs: 'hsr0' already exists in 'hsr' [ 115.169160][T10547] Cannot create hsr debugfs directory [ 115.359284][T10749] loop3: detected capacity change from 0 to 128 [ 115.426696][T10749] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 115.466727][T10749] ext4 filesystem being mounted at /632/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 115.594752][ T3312] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 115.964832][T10547] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 116.026107][T10547] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 116.027178][T10826] __nla_validate_parse: 7 callbacks suppressed [ 116.027265][T10826] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3129'. [ 116.062104][T10547] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 116.114328][T10547] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 116.131008][T10832] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 116.138316][T10832] IPv6: NLM_F_CREATE should be set when creating new route [ 116.145744][T10832] IPv6: NLM_F_CREATE should be set when creating new route [ 116.152995][T10832] IPv6: NLM_F_CREATE should be set when creating new route [ 116.386264][T10863] loop6: detected capacity change from 0 to 1024 [ 116.408330][T10547] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.427185][T10863] EXT4-fs: inline encryption not supported [ 116.451047][T10547] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.478319][ T1881] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.485488][ T1881] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.536647][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.543827][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.553179][T10863] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.655708][T10547] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 116.757294][T10547] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.075476][T10547] veth0_vlan: entered promiscuous mode [ 117.096165][T10547] veth1_vlan: entered promiscuous mode [ 117.149761][T10547] veth0_macvtap: entered promiscuous mode [ 117.177149][T10547] veth1_macvtap: entered promiscuous mode [ 117.217110][T10547] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 117.234740][T10863] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.3139: Allocating blocks 497-513 which overlap fs metadata [ 117.250579][T10547] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.274674][T10863] EXT4-fs (loop6): pa ffff888108271380: logic 368, phys. 369, len 9 [ 117.282891][T10863] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1 [ 117.293003][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.322299][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.362772][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.385105][T10938] loop3: detected capacity change from 0 to 4096 [ 117.392045][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.471072][T10938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.667726][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.753608][T10968] syz.5.3158 (10968) used greatest stack depth: 8520 bytes left [ 117.807196][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.858360][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 117.858376][ T28] audit: type=1400 audit(2000000007.159:952): avc: denied { read } for pid=10977 comm="syz.6.3162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 117.907286][T10981] loop3: detected capacity change from 0 to 512 [ 117.969480][T10988] loop6: detected capacity change from 0 to 512 [ 117.991058][T10981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.035113][ T28] audit: type=1400 audit(2000000007.339:953): avc: denied { accept } for pid=10985 comm="syz.4.3164" lport=37292 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 118.073350][T10988] EXT4-fs: Ignoring removed oldalloc option [ 118.115994][T10981] ext4 filesystem being mounted at /641/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 118.127599][T10988] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 118.194396][T10988] EXT4-fs (loop6): 1 truncate cleaned up [ 118.211931][T10988] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.275246][T10996] EXT4-fs error (device loop3): ext4_generic_delete_entry:2666: inode #12: block 32: comm syz.3.3160: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=8, size=2048 fake=0 [ 118.305812][ T28] audit: type=1400 audit(2000000007.579:954): avc: denied { unlink } for pid=10980 comm="syz.3.3160" name="file1" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 118.353080][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.414363][ T28] audit: type=1326 audit(2000000007.709:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11000 comm="syz.4.3172" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa75ed5c819 code=0x0 [ 118.496868][T10996] EXT4-fs (loop3): Remounting filesystem read-only [ 118.581352][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.751006][T11035] loop3: detected capacity change from 0 to 512 [ 118.865225][T11041] netlink: 4556 bytes leftover after parsing attributes in process `syz.5.3188'. [ 118.966347][T11047] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3191'. [ 119.030973][T11045] loop3: detected capacity change from 0 to 8192 [ 119.032908][T11049] vhci_hcd vhci_hcd.4: invalid port number 9 [ 119.071511][T11045] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 119.082364][T11049] vhci_hcd vhci_hcd.4: default hub control req: 6012 v0001 i0009 l0 [ 119.277889][T11064] loop6: detected capacity change from 0 to 2048 [ 119.286928][ T28] audit: type=1326 audit(2000000008.589:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.320653][ T28] audit: type=1326 audit(2000000008.589:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.369883][T11064] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.398820][T11073] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11073 comm=syz.4.3202 [ 119.411748][ T28] audit: type=1326 audit(2000000008.599:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.437014][ T28] audit: type=1326 audit(2000000008.599:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.461918][ T28] audit: type=1326 audit(2000000008.599:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.487444][ T28] audit: type=1326 audit(2000000008.599:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11063 comm="syz.3.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafc017c819 code=0x7ffc0000 [ 119.600243][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.721732][T11095] loop3: detected capacity change from 0 to 136 [ 119.870803][T11109] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3218'. [ 120.367199][T11168] netlink: 160 bytes leftover after parsing attributes in process `syz.4.3247'. [ 120.423972][T11171] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 120.436694][T11171] pim6reg0: linktype set to 768 [ 120.706252][T11210] netlink: 277 bytes leftover after parsing attributes in process `syz.5.3267'. [ 121.431755][T11247] loop4: detected capacity change from 0 to 1024 [ 121.464857][T11247] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.522173][T11247] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 121.585276][ T1881] EXT4-fs error (device loop4): ext4_map_blocks:818: inode #15: comm kworker/u8:8: lblock 0 mapped to illegal pblock 0 (length 1) [ 121.606430][ T1881] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 121.619628][ T1881] EXT4-fs (loop4): This should not happen!! Data will be lost [ 121.619628][ T1881] [ 121.630840][T10547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 122.013884][T11311] can0: slcan on ptm0. [ 122.054427][T11310] can0 (unregistered): slcan off ptm0. [ 122.360561][T11339] netlink: 48 bytes leftover after parsing attributes in process `syz.5.3312'. [ 122.568562][T11359] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3322'. [ 122.600111][T11359] netlink: 200 bytes leftover after parsing attributes in process `syz.4.3322'. [ 122.777915][T11381] loop5: detected capacity change from 0 to 1024 [ 122.802034][T11381] EXT4-fs: inline encryption not supported [ 122.835859][T11381] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.188819][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 123.188836][ T28] audit: type=1400 audit(2000000012.489:972): avc: denied { mount } for pid=11418 comm="syz.1.3350" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 123.269359][T11381] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4222: comm syz.5.3333: Allocating blocks 497-513 which overlap fs metadata [ 123.324274][T11381] EXT4-fs (loop5): pa ffff8881082712a0: logic 368, phys. 369, len 9 [ 123.332422][T11381] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1 [ 123.444476][T11428] program syz.1.3353 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 123.501667][T11433] netlink: 212 bytes leftover after parsing attributes in process `syz.1.3356'. [ 123.518845][ T28] audit: type=1400 audit(2000000012.819:973): avc: denied { read } for pid=11434 comm="syz.4.3354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 123.571381][ T28] audit: type=1326 audit(2000000012.859:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.604461][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.664152][ T28] audit: type=1326 audit(2000000012.859:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.726920][ T28] audit: type=1326 audit(2000000012.869:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.785318][ T28] audit: type=1326 audit(2000000012.869:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.844020][ T28] audit: type=1326 audit(2000000012.869:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.904366][ T28] audit: type=1326 audit(2000000012.889:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 123.958159][ T28] audit: type=1326 audit(2000000012.889:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 124.004302][T11462] loop6: detected capacity change from 0 to 128 [ 124.013808][ T28] audit: type=1326 audit(2000000012.889:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11436 comm="syz.4.3357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75ed5c819 code=0x7ffc0000 [ 124.046890][T11462] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 124.076934][T11462] ext4 filesystem being mounted at /315/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 124.115900][T11462] EXT4-fs warning (device loop6): __ext4_ioctl:1558: Setting inode version is not supported with metadata_csum enabled. [ 124.149733][T11461] loop3: detected capacity change from 0 to 8192 [ 124.193654][ T7782] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 124.254982][T11471] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=11471 comm=syz.6.3374 [ 124.557510][T11498] delete_channel: no stack [ 124.750313][T11524] loop3: detected capacity change from 0 to 256 [ 124.754028][T11520] netlink: 212 bytes leftover after parsing attributes in process `syz.5.3396'. [ 124.946543][T11537] loop6: detected capacity change from 0 to 512 [ 124.958051][T11539] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 124.972798][T11537] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 125.004937][T11537] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.3404: Invalid inode bitmap blk 4 in block_group 0 [ 125.035595][T11537] loop6: lost filesystem error report for type 5 error -117 [ 125.036299][T11537] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.059224][T11546] loop5: detected capacity change from 0 to 128 [ 125.073429][T11537] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 125.134403][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.256860][T11560] ipvlan2: entered promiscuous mode [ 125.294936][T11560] ipvlan2: entered allmulticast mode [ 125.300330][T11560] team0: entered allmulticast mode [ 125.307297][T11560] team_slave_0: entered allmulticast mode [ 125.316994][T11560] team_slave_1: entered allmulticast mode [ 125.325782][T11560] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 125.334237][T11560] team0: Device ipvlan2 is already an upper device of the team interface [ 126.702763][T11626] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3445'. [ 126.928013][T11641] loop5: detected capacity change from 0 to 512 [ 126.932444][T11643] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3453'. [ 127.124231][T11651] pim6reg1: tun_chr_ioctl cmd 1074025678 [ 127.129918][T11651] pim6reg1: group set to 0 [ 127.224402][T11664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3462'. [ 127.368274][T11682] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 127.386968][T11682] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 127.475805][T11691] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 127.511179][T11691] vhci_hcd vhci_hcd.1: invalid port number 96 [ 127.523626][T11691] vhci_hcd vhci_hcd.1: default hub control req: 1f0a vfffa i0060 l0 [ 127.539333][T11696] IPv6: NLM_F_CREATE should be specified when creating new route [ 127.558678][T11697] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 127.558678][T11697] The task syz.1.3474 (11697) triggered the difference, watch for misbehavior. [ 127.580812][T11696] netlink: 'syz.5.3477': attribute type 1 has an invalid length. [ 127.595448][T11700] netlink: 'syz.3.3479': attribute type 83 has an invalid length. [ 127.655103][T11705] ªªªªªª: renamed from vlan0 [ 128.587600][T11752] netlink: 47 bytes leftover after parsing attributes in process `syz.5.3501'. [ 128.622250][T11751] SELinux: failed to load policy [ 128.728743][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 128.728757][ T28] audit: type=1400 audit(2000000018.029:1014): avc: denied { name_bind } for pid=11759 comm="syz.1.3506" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 128.829441][T11770] tipc: Enabling of bearer rejected, failed to enable media [ 128.939999][ T28] audit: type=1400 audit(2000000018.239:1015): avc: denied { unmount } for pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 128.971040][T11784] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3518'. [ 128.998465][T11788] GUP no longer grows the stack in syz.1.3517 (11788): 200000009000-20000000a000 (200000005000) [ 129.016556][T11788] CPU: 1 UID: 0 PID: 11788 Comm: syz.1.3517 Tainted: G W syzkaller #0 PREEMPT(full) [ 129.016599][T11788] Tainted: [W]=WARN [ 129.016609][T11788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 129.016627][T11788] Call Trace: [ 129.016634][T11788] [ 129.016644][T11788] __dump_stack+0x1d/0x30 [ 129.016730][T11788] dump_stack_lvl+0x95/0xd0 [ 129.016841][T11788] dump_stack+0x15/0x1b [ 129.016868][T11788] __get_user_pages+0x195b/0x1ea0 [ 129.016916][T11788] ? __mt_destroy+0xce/0xe0 [ 129.016953][T11788] __gup_longterm_locked+0x8d7/0xe30 [ 129.017011][T11788] ? __rcu_read_unlock+0x33/0x70 [ 129.017039][T11788] ? try_get_folio+0x369/0x3b0 [ 129.017122][T11788] ? try_grab_folio_fast+0xdc/0x370 [ 129.017149][T11788] gup_fast_fallback+0x1f3/0x13c0 [ 129.017257][T11788] get_user_pages_fast+0x5f/0x90 [ 129.017301][T11788] __iov_iter_get_pages_alloc+0x24e/0x6f0 [ 129.017492][T11788] iov_iter_get_pages2+0x5e/0xa0 [ 129.017554][T11788] __se_sys_vmsplice+0x541/0xfd0 [ 129.017652][T11788] __x64_sys_vmsplice+0x55/0x70 [ 129.017674][T11788] x64_sys_call+0x28e9/0x3020 [ 129.017772][T11788] do_syscall_64+0x12c/0x370 [ 129.017798][T11788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.017834][T11788] RIP: 0033:0x7ff3aa41c819 [ 129.017850][T11788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 129.017868][T11788] RSP: 002b:00007ff3a8e77028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 129.017964][T11788] RAX: ffffffffffffffda RBX: 00007ff3aa695fa0 RCX: 00007ff3aa41c819 [ 129.017977][T11788] RDX: 0000000000000002 RSI: 0000200000000280 RDI: 0000000000000004 [ 129.017990][T11788] RBP: 00007ff3aa4b2c91 R08: 0000000000000000 R09: 0000000000000000 [ 129.018002][T11788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.018014][T11788] R13: 00007ff3aa696038 R14: 00007ff3aa695fa0 R15: 00007ffea24e1408 [ 129.018033][T11788] [ 129.394696][T11810] loop3: detected capacity change from 0 to 1024 [ 129.401460][T11810] EXT4-fs: Ignoring removed bh option [ 129.418023][T11810] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 129.451470][T11810] EXT4-fs error (device loop3): ext4_read_inline_dir:1486: inode #12: block 7: comm syz.3.3530: path /706/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0 [ 129.504016][T11808] Falling back ldisc for ttyS3. [ 129.523547][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.797582][T11850] erspan0: entered promiscuous mode [ 129.847045][T11857] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3551'. [ 129.880055][T11859] tipc: Enabling of bearer rejected, failed to enable media [ 129.954468][T11865] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.3555'. [ 130.164077][T11885] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3564'. [ 130.192961][T11883] SELinux: failed to load policy [ 130.195434][T11885] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3564'. [ 130.220434][T11888] netlink: 'syz.6.3566': attribute type 12 has an invalid length. [ 130.228560][T11885] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3564'. [ 130.653937][T11911] netlink: 830 bytes leftover after parsing attributes in process `syz.1.3577'. [ 131.396506][T11947] rdma_op ffff88811ff69980 conn xmit_rdma 0000000000000000 [ 131.529996][ T28] audit: type=1400 audit(2000000020.829:1016): avc: denied { attach_queue } for pid=11958 comm="syz.1.3600" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 131.629090][T11962] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3601'. [ 131.763467][ T28] audit: type=1326 audit(2000000021.069:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 131.811925][ T28] audit: type=1326 audit(2000000021.099:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 131.859030][ T28] audit: type=1326 audit(2000000021.099:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 131.886053][ T28] audit: type=1326 audit(2000000021.099:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 131.928849][T11974] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 131.944366][T11974] SELinux: failed to load policy [ 131.969389][ T28] audit: type=1326 audit(2000000021.099:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 132.030315][ T28] audit: type=1326 audit(2000000021.099:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 132.058420][T11978] team0: Device gtp0 is of different type [ 132.065595][ T28] audit: type=1326 audit(2000000021.099:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11970 comm="syz.6.3606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 132.665900][T12022] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3630'. [ 132.860959][T12039] dvmrp6: entered allmulticast mode [ 132.919558][T12045] loop3: detected capacity change from 0 to 1024 [ 132.931803][T12045] EXT4-fs: Ignoring removed nobh option [ 132.954086][T12045] EXT4-fs: Ignoring removed bh option [ 132.966025][T12045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 133.007379][T12045] EXT4-fs error (device loop3): mb_free_blocks:2047: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt. [ 133.074730][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.253672][T12067] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 133.810412][T12099] __nla_validate_parse: 2 callbacks suppressed [ 133.810430][T12099] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3663'. [ 133.842819][T12099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3663'. [ 134.072120][T12117] loop5: detected capacity change from 0 to 128 [ 134.080038][T12116] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3669'. [ 134.309960][T12134] netlink: 'syz.6.3679': attribute type 9 has an invalid length. [ 134.681715][T12149] sctp: [Deprecated]: syz.1.3687 (pid 12149) Use of struct sctp_assoc_value in delayed_ack socket option. [ 134.681715][T12149] Use struct sctp_sack_info instead [ 134.919783][T12162] program syz.5.3693 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 135.315205][T12178] loop5: detected capacity change from 0 to 512 [ 135.372623][T12178] EXT4-fs (loop5): 1 orphan inode deleted [ 135.379002][T12178] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.393723][ T1881] __quota_error: 24 callbacks suppressed [ 135.393757][ T1881] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 135.432744][ T1881] EXT4-fs error (device loop5): ext4_release_dquot:7037: comm kworker/u8:8: Failed to release dquot type 1 [ 135.444383][T12178] ext4 filesystem being mounted at /560/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 135.486072][T12178] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 135.517944][T12178] EXT4-fs error (device loop5): ext4_get_parent:1836: inode #14: comm syz.5.3700: iget: bogus i_mode (0) [ 135.603093][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.992475][ T28] audit: type=1326 audit(2000000025.289:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.053447][ T28] audit: type=1326 audit(2000000025.289:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.075583][T12217] loop6: detected capacity change from 0 to 512 [ 136.088278][ T28] audit: type=1326 audit(2000000025.289:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.122594][T12217] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 136.131251][ T28] audit: type=1326 audit(2000000025.289:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.152809][T12217] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 136.185886][ T28] audit: type=1326 audit(2000000025.289:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efecdc9d04e code=0x7ffc0000 [ 136.187267][T12217] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 136.211736][ T28] audit: type=1326 audit(2000000025.289:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.242522][ T28] audit: type=1326 audit(2000000025.289:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.266267][ T28] audit: type=1326 audit(2000000025.289:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.266305][ T28] audit: type=1326 audit(2000000025.289:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12209 comm="syz.6.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efecdcdc819 code=0x7ffc0000 [ 136.275238][T12217] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 136.329875][T12217] System zones: 0-2, 18-18, 34-35 [ 136.336032][T12217] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.370577][T12217] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3716: bg 0: block 353: padding at end of block bitmap is not set [ 136.441669][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.554028][T12240] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3725'. [ 136.866492][T12269] loop5: detected capacity change from 0 to 4096 [ 136.900212][T12274] netlink: 68 bytes leftover after parsing attributes in process `syz.3.3741'. [ 136.929726][T12274] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3741'. [ 137.760554][T12321] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3763'. [ 137.771675][T12321] netlink: 'syz.1.3763': attribute type 6 has an invalid length. [ 137.781638][T12321] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3763'. [ 137.844214][T12325] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3765'. [ 137.874383][T12325] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3765'. [ 138.321748][T12355] loop5: detected capacity change from 0 to 128 [ 138.457409][T12359] loop3: detected capacity change from 0 to 512 [ 138.506493][T12359] EXT4-fs (loop3): 1 truncate cleaned up [ 138.525139][T12359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.567997][T12359] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3780: bg 0: block 465: padding at end of block bitmap is not set [ 138.620246][T12359] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 138.634090][T12359] EXT4-fs (loop3): This should not happen!! Data will be lost [ 138.634090][T12359] [ 138.645242][T12359] EXT4-fs (loop3): Total free blocks count 0 [ 138.651269][T12359] EXT4-fs (loop3): Free/Dirty block details [ 138.658626][T12359] EXT4-fs (loop3): free_blocks=0 [ 138.665029][T12367] loop5: detected capacity change from 0 to 512 [ 138.684925][T12359] EXT4-fs (loop3): dirty_blocks=2 [ 138.704817][T12367] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.3784: inode has both inline data and extents flags [ 138.734042][T12359] EXT4-fs (loop3): Block reservation details [ 138.740183][T12359] EXT4-fs (loop3): i_reserved_data_blocks=2 [ 138.746948][T12367] fserror_report: 1 callbacks suppressed [ 138.746964][T12367] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 138.753904][T12367] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.3784: couldn't read orphan inode 15 (err -117) [ 138.763094][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 138.763120][ C1] EXT4-fs (loop5): initial error at time 2000000028: ext4_orphan_get:1391: inode 15 [ 138.763159][ C1] EXT4-fs (loop5): last error at time 2000000028: ext4_orphan_get:1391: inode 15 [ 138.804279][T12367] loop5: lost filesystem error report for type 5 error -117 [ 138.813389][T12367] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.888691][T12367] SELinux: Context system_u:object_r:cron_spool_t:s0 is not valid (left unmapped). [ 138.899578][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.949142][T12382] __nla_validate_parse: 2 callbacks suppressed [ 138.949162][T12382] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3790'. [ 138.974287][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.132356][T12403] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3796'. [ 139.148837][ T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.164180][T12403] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3796'. [ 139.186071][T12406] netlink: 'syz.3.3797': attribute type 1 has an invalid length. [ 139.201686][T12408] delete_channel: no stack [ 139.227354][ T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.242804][T12414] loop5: detected capacity change from 0 to 128 [ 139.267173][T12414] EXT4-fs: Ignoring removed nobh option [ 139.288895][T12414] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 139.309113][ T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.323007][T12414] ext4 filesystem being mounted at /586/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 139.400328][ T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.402572][ T5304] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 139.478823][T12381] chnl_net:caif_netlink_parms(): no params data found [ 139.564575][T12440] xt_hashlimit: size too large, truncated to 1048576 [ 139.593862][ T36] bridge_slave_1: left allmulticast mode [ 139.609648][ T36] bridge_slave_1: left promiscuous mode [ 139.626779][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.766250][ T36] bridge_slave_0: left allmulticast mode [ 139.771913][ T36] bridge_slave_0: left promiscuous mode [ 139.805843][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 139.929467][T12464] loop6: detected capacity change from 0 to 512 [ 139.940120][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 139.964218][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 139.974180][T12464] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 139.990700][ T36] bond0 (unregistering): Released all slaves [ 140.007357][T12464] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters [ 140.025051][T12464] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.3813: Failed to acquire dquot type 1 [ 140.035213][T12381] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.043905][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 140.043924][ C0] EXT4-fs (loop6): initial error at time 2000000029: ext4_mb_generate_buddy:1315 [ 140.043942][ C0] EXT4-fs (loop6): last error at time 2000000029: ext4_mb_generate_buddy:1315 [ 140.077302][T12464] loop6: lost filesystem error report for type 5 error -28 [ 140.079219][T12464] EXT4-fs (loop6): 1 truncate cleaned up [ 140.092999][T12381] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.098349][T12464] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 140.116063][T12381] bridge_slave_0: entered allmulticast mode [ 140.135527][T12464] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 140.139005][T12381] bridge_slave_0: entered promiscuous mode [ 140.165335][T12476] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3819'. [ 140.170330][T12381] bridge0: port 2(bridge_slave_1) entered blocking state [ 140.181509][T12381] bridge0: port 2(bridge_slave_1) entered disabled state [ 140.200168][T12476] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3819'. [ 140.218228][T12381] bridge_slave_1: entered allmulticast mode [ 140.223569][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.229222][T12381] bridge_slave_1: entered promiscuous mode [ 140.284344][ T36] hsr_slave_0: left promiscuous mode [ 140.304306][ T36] hsr_slave_1: left promiscuous mode [ 140.316957][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 140.332279][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 140.348492][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 140.357733][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 140.388414][ T36] veth1_macvtap: left promiscuous mode [ 140.401818][ T36] veth0_macvtap: left promiscuous mode [ 140.418368][ T36] veth1_vlan: left promiscuous mode [ 140.433573][ T36] veth0_vlan: left promiscuous mode [ 140.603033][ T36] team0 (unregistering): Port device team_slave_1 removed [ 140.621584][ T36] team0 (unregistering): Port device team_slave_0 removed [ 140.701485][T12381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 140.747953][T12508] netlink: 'syz.5.3827': attribute type 25 has an invalid length. [ 140.757352][T12508] netlink: 'syz.5.3827': attribute type 28 has an invalid length. [ 140.778571][T12381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 140.869351][T12524] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.876559][T12524] bridge0: port 1(bridge_slave_0) entered forwarding state [ 140.898646][T12381] team0: Port device team_slave_0 added [ 140.908196][T12381] team0: Port device team_slave_1 added [ 140.956659][T12381] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 140.968430][T12535] loop5: detected capacity change from 0 to 1024 [ 140.978562][T12381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 141.009177][T12535] EXT4-fs: Ignoring removed bh option [ 141.018562][T12535] EXT4-fs (loop5): stripe (18) is not aligned with cluster size (16), stripe is disabled [ 141.030276][T12381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 141.054594][T12535] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 141.088979][T12381] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 141.115499][T12535] EXT4-fs error (device loop5): __ext4_new_inode:1073: comm syz.5.3837: reserved inode found cleared - inode=18 [ 141.141685][T12381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 141.176031][T12535] EXT4-fs (loop5): Remounting filesystem read-only [ 141.185128][T12552] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3841'. [ 141.208859][T12381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 141.231863][T12555] tap0: tun_chr_ioctl cmd 2147767506 [ 141.250528][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.303368][T12381] hsr_slave_0: entered promiscuous mode [ 141.325454][T12381] hsr_slave_1: entered promiscuous mode [ 141.343167][T12381] debugfs: 'hsr0' already exists in 'hsr' [ 141.364239][T12381] Cannot create hsr debugfs directory [ 141.653448][T12381] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 141.676103][T12381] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 141.703430][T12381] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 141.722945][T12381] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 141.807984][T12381] 8021q: adding VLAN 0 to HW filter on device bond0 [ 141.831490][T12381] 8021q: adding VLAN 0 to HW filter on device team0 [ 141.845160][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.852265][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.884288][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.891452][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.936192][T12381] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 141.946719][T12381] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 142.093918][T12381] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 142.311786][T12626] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=12626 comm=syz.6.3857 [ 142.493731][T12632] netlink: 'syz.1.3859': attribute type 21 has an invalid length. [ 142.711403][T12381] veth0_vlan: entered promiscuous mode [ 142.724086][T12381] veth1_vlan: entered promiscuous mode [ 142.777370][T12381] veth0_macvtap: entered promiscuous mode [ 142.797955][T12381] veth1_macvtap: entered promiscuous mode [ 142.839046][T12381] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 142.871997][T12381] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 142.880948][T12661] lo: entered allmulticast mode [ 142.901641][ T1881] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.922331][ T114] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.944298][ T114] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.964573][ T114] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.100429][T12678] batman_adv: batadv0: Adding interface: macvtap1 [ 143.124328][T12678] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 143.151614][T12678] batman_adv: batadv0: Interface activated: macvtap1 [ 143.238590][T12692] loop3: detected capacity change from 0 to 256 [ 143.430850][T12706] loop3: detected capacity change from 0 to 256 [ 143.493708][T12706] FAT-fs (loop3): Directory bread(block 64) failed [ 143.509549][T12706] FAT-fs (loop3): Directory bread(block 65) failed [ 143.528533][T12712] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3890'. [ 143.532025][T12706] FAT-fs (loop3): Directory bread(block 66) failed [ 143.548743][T12712] netlink: 'syz.5.3890': attribute type 18 has an invalid length. [ 143.555156][T12706] FAT-fs (loop3): Directory bread(block 67) failed [ 143.564499][T12706] FAT-fs (loop3): Directory bread(block 68) failed [ 143.571097][T12706] FAT-fs (loop3): Directory bread(block 69) failed [ 143.579138][T12712] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3890'. [ 143.580482][T12706] FAT-fs (loop3): Directory bread(block 70) failed [ 143.598326][T12706] FAT-fs (loop3): Directory bread(block 71) failed [ 143.606653][T12706] FAT-fs (loop3): Directory bread(block 72) failed [ 143.614764][T12706] FAT-fs (loop3): Directory bread(block 73) failed [ 143.637123][T12706] syz.3.3887: attempt to access beyond end of device [ 143.637123][T12706] loop3: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 143.928512][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 143.949317][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 143.966927][T12742] netlink: 68 bytes leftover after parsing attributes in process `syz.6.3903'. [ 144.007538][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 144.026762][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 144.057648][ T3421] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 144.066710][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 144.077964][T12739] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3902'. [ 144.098285][ T3421] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 144.113927][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 144.113942][ T28] audit: type=1400 audit(2000000033.419:1067): avc: denied { append } for pid=12753 comm="syz.3.3908" name="file0" dev="tmpfs" ino=4160 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 144.386951][T12770] bond0: entered promiscuous mode [ 144.417211][T12770] bond_slave_0: entered promiscuous mode [ 144.444217][T12770] bond_slave_1: entered promiscuous mode [ 144.482012][T12770] batadv0: entered promiscuous mode [ 144.501055][T12770] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network [ 144.528859][T12770] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network [ 144.569809][T12770] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 144.593997][T12770] bond0: left promiscuous mode [ 144.607800][T12770] bond_slave_0: left promiscuous mode [ 144.654126][T12770] bond_slave_1: left promiscuous mode [ 144.682155][T12770] batadv0: left promiscuous mode [ 144.904165][T12795] sctp: [Deprecated]: syz.6.3925 (pid 12795) Use of struct sctp_assoc_value in delayed_ack socket option. [ 144.904165][T12795] Use struct sctp_sack_info instead [ 144.990319][ T3388] IPVS: starting estimator thread 0... [ 145.020787][T12810] xt_hashlimit: size too large, truncated to 1048576 [ 145.084383][T12818] loop6: detected capacity change from 0 to 256 [ 145.090963][ T28] audit: type=1326 audit(2000000034.389:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.093414][T12806] IPVS: using max 2304 ests per chain, 115200 per kthread [ 145.124487][ T28] audit: type=1326 audit(2000000034.389:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.149128][ T28] audit: type=1326 audit(2000000034.429:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.173398][ T28] audit: type=1326 audit(2000000034.429:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.197295][ T28] audit: type=1326 audit(2000000034.429:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.236608][ T28] audit: type=1326 audit(2000000034.429:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.261820][ T28] audit: type=1326 audit(2000000034.429:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.286874][ T28] audit: type=1326 audit(2000000034.429:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.311695][ T28] audit: type=1326 audit(2000000034.429:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12815 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa41c819 code=0x7ffc0000 [ 145.716433][T12864] netlink: 16222 bytes leftover after parsing attributes in process `syz.1.3956'. [ 145.766105][T12869] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3958'. [ 145.767138][T12871] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3959'. [ 145.811620][T12875] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3961'. [ 145.848429][T12879] loop3: detected capacity change from 0 to 512 [ 145.876472][T12879] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 145.888831][T12879] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.3963: Invalid inode bitmap blk 4 in block_group 0 [ 145.913074][T12885] loop6: detected capacity change from 0 to 128 [ 145.921359][T12879] loop3: lost filesystem error report for type 5 error -117 [ 145.922140][T12879] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.937533][T12885] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 145.997354][T12885] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 146.009477][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.604697][T12952] netlink: 68 bytes leftover after parsing attributes in process `syz.5.3998'. [ 147.338733][T12989] program syz.5.4012 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 147.795235][T13004] xt_hashlimit: size too large, truncated to 1048576 [ 148.406142][T13046] tmpfs: Bad value for 'nr_inodes' [ 148.944396][T13068] loop6: detected capacity change from 0 to 512 [ 148.977495][T13068] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 148.999855][T13068] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.4047: bad orphan inode 131083 [ 149.022668][T13068] loop6: lost filesystem error report for type 5 error -117 [ 149.023280][T13068] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 149.125127][ T28] kauditd_printk_skb: 2316 callbacks suppressed [ 149.125147][ T28] audit: type=1326 audit(2000000038.429:3393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 149.196674][ T28] audit: type=1326 audit(2000000038.469:3394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.220637][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.230287][ T28] audit: type=1326 audit(2000000038.469:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.254478][ T28] audit: type=1326 audit(2000000038.469:3396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 149.288168][ T28] audit: type=1326 audit(2000000038.469:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 149.322372][T13090] netlink: 100 bytes leftover after parsing attributes in process `syz.6.4056'. [ 149.387219][ T28] audit: type=1326 audit(2000000038.469:3398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.455125][ T28] audit: type=1326 audit(2000000038.469:3399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 149.518543][ T28] audit: type=1326 audit(2000000038.469:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.542948][ T28] audit: type=1326 audit(2000000038.469:3401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.550329][T13104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4064'. [ 149.626699][ T28] audit: type=1326 audit(2000000038.469:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13015 comm="syz.5.4024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f72c31fdb99 code=0x7ffc0000 [ 149.862476][T13123] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4073'. [ 149.872437][T13122] loop3: detected capacity change from 0 to 128 [ 149.926343][T13121] syz.3.4072: attempt to access beyond end of device [ 149.926343][T13121] loop3: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 151.310411][T13181] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4099'. [ 151.401298][T13186] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4101'. [ 152.300279][T13262] loop5: detected capacity change from 0 to 512 [ 152.347547][T13262] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.362938][T13262] ext4 filesystem being mounted at /628/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 152.409493][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.507187][T13269] loop5: detected capacity change from 0 to 512 [ 152.545425][T13269] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.594630][T13269] ext4 filesystem being mounted at /630/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.692479][T13280] loop6: detected capacity change from 0 to 512 [ 152.693519][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.706331][T13280] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 152.728133][T13280] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4132: Invalid inode bitmap blk 4 in block_group 0 [ 152.771471][T13280] loop6: lost filesystem error report for type 5 error -117 [ 152.771967][T13280] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.877762][T13280] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 152.956988][T13304] loop5: detected capacity change from 0 to 512 [ 153.004939][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.038902][T13304] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 153.097607][T13304] ext4 filesystem being mounted at /633/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.114035][T13316] loop6: detected capacity change from 0 to 512 [ 153.187243][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 153.333006][T13341] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4148'. [ 153.622159][T13370] netlink: 'syz.6.4161': attribute type 1 has an invalid length. [ 153.756757][T13384] tipc: Started in network mode [ 153.789070][T13384] tipc: Node identity aaaaaaaaaa38, cluster identity 4711 [ 153.831425][T13384] tipc: Enabled bearer , priority 0 [ 153.906750][T13389] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4169'. [ 154.087354][T13404] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4175'. [ 154.114473][T13404] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4175'. [ 154.208487][T13414] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4178'. [ 154.286830][T13420] loop5: detected capacity change from 0 to 256 [ 154.425108][ T28] kauditd_printk_skb: 2117 callbacks suppressed [ 154.425124][ T28] audit: type=1400 audit(2000000043.729:5520): avc: denied { mount } for pid=13432 comm="syz.5.4184" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 154.501494][ T28] audit: type=1400 audit(2000000043.729:5521): avc: denied { nlmsg_write } for pid=13434 comm="syz.1.4185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 154.573385][ T28] audit: type=1400 audit(2000000043.729:5522): avc: denied { audit_write } for pid=13434 comm="syz.1.4185" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 154.633791][ T28] audit: type=1107 audit(2000000043.729:5523): pid=13434 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 154.696998][T13449] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4191'. [ 154.914420][T13458] loop6: detected capacity change from 0 to 512 [ 154.942724][ T23] tipc: Node number set to 9611946 [ 155.254878][T13465] syz.6.4195: attempt to access beyond end of device [ 155.254878][T13465] loop6: rw=0, sector=432, nr_sectors = 128 limit=512 [ 155.345783][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.345783][ T69] loop6: rw=1, sector=560, nr_sectors = 3456 limit=512 [ 155.379942][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.379942][ T69] loop6: rw=1, sector=4016, nr_sectors = 2048 limit=512 [ 155.409603][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.409603][ T69] loop6: rw=1, sector=6064, nr_sectors = 2048 limit=512 [ 155.428213][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.428213][ T69] loop6: rw=1, sector=8112, nr_sectors = 2048 limit=512 [ 155.445908][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.445908][ T69] loop6: rw=1, sector=10160, nr_sectors = 2056 limit=512 [ 155.464919][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.464919][ T69] loop6: rw=1, sector=12216, nr_sectors = 3168 limit=512 [ 155.483725][ T69] kworker/u8:4: attempt to access beyond end of device [ 155.483725][ T69] loop6: rw=1, sector=15384, nr_sectors = 1080 limit=512 [ 156.030425][ T28] audit: type=1326 audit(2000000045.329:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.062635][T13504] program syz.6.4215 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 156.092020][ T28] audit: type=1326 audit(2000000045.329:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.153945][ T28] audit: type=1326 audit(2000000045.329:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.213091][ T28] audit: type=1326 audit(2000000045.329:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.272802][ T28] audit: type=1326 audit(2000000045.329:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.310648][ T28] audit: type=1326 audit(2000000045.329:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13495 comm="syz.7.4211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x50000 [ 156.454977][T13523] bridge0: port 3(syz_tun) entered blocking state [ 156.461703][T13523] bridge0: port 3(syz_tun) entered disabled state [ 156.512880][T13523] syz_tun: entered allmulticast mode [ 156.521411][T13526] loop5: detected capacity change from 0 to 512 [ 156.529411][T13523] syz_tun: entered promiscuous mode [ 156.544537][T13526] EXT4-fs (loop5): 1 truncate cleaned up [ 156.550756][T13526] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.553732][T13523] bridge0: port 3(syz_tun) entered blocking state [ 156.569337][T13523] bridge0: port 3(syz_tun) entered forwarding state [ 156.702387][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.776208][T13532] loop5: detected capacity change from 0 to 512 [ 156.824973][T13532] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 156.862987][T13532] ext4 filesystem being mounted at /652/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 157.043551][T13532] EXT4-fs error (device loop5): ext4_map_blocks:776: inode #2: block 18: comm syz.5.4225: lblock 23 mapped to illegal pblock 18 (length 1) [ 157.083663][T13532] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 3: comm syz.5.4225: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1 [ 157.149197][T13532] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 12: comm syz.5.4225: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 157.231557][T13532] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 13: comm syz.5.4225: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 157.307436][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.319575][T13560] netlink: 'syz.6.4238': attribute type 5 has an invalid length. [ 157.449939][T13572] macvlan0: entered promiscuous mode [ 157.467040][T13572] dummy0: entered promiscuous mode [ 157.491190][T13572] hsr1: Slave B (dummy0) is not up; please bring it up to get a fully working HSR network [ 157.519045][T13572] hsr1: entered promiscuous mode [ 157.532773][T13572] hsr1: entered allmulticast mode [ 157.548193][T13572] macvlan0: entered allmulticast mode [ 157.558828][T13572] veth1_vlan: entered allmulticast mode [ 157.574833][T13572] dummy0: entered allmulticast mode [ 157.647434][T13579] loop5: detected capacity change from 0 to 512 [ 157.964010][T13583] syz.5.4247: attempt to access beyond end of device [ 157.964010][T13583] loop5: rw=0, sector=432, nr_sectors = 128 limit=512 [ 158.131432][ T36] kworker/u8:2: attempt to access beyond end of device [ 158.131432][ T36] loop5: rw=1, sector=560, nr_sectors = 5400 limit=512 [ 158.331786][T13605] loop5: detected capacity change from 0 to 256 [ 158.342715][T13605] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 158.383875][T13605] FAT-fs (loop5): Directory bread(block 64) failed [ 158.391344][T13605] FAT-fs (loop5): Directory bread(block 65) failed [ 158.407555][T13605] FAT-fs (loop5): Directory bread(block 66) failed [ 158.428393][T13605] FAT-fs (loop5): Directory bread(block 67) failed [ 158.442216][T13605] FAT-fs (loop5): Directory bread(block 68) failed [ 158.483027][T13605] FAT-fs (loop5): Directory bread(block 69) failed [ 158.489846][T13605] FAT-fs (loop5): Directory bread(block 70) failed [ 158.497134][T13605] FAT-fs (loop5): Directory bread(block 71) failed [ 158.518799][T13605] FAT-fs (loop5): Directory bread(block 72) failed [ 158.528870][T13605] FAT-fs (loop5): Directory bread(block 73) failed [ 159.494334][ T28] kauditd_printk_skb: 9755 callbacks suppressed [ 159.494352][ T28] audit: type=1400 audit(2000000048.799:15285): avc: denied { shutdown } for pid=13628 comm="syz.5.4269" laddr=::1 lport=255 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 159.642406][T13635] SELinux: security_context_str_to_sid (measure) failed with errno=-22 [ 159.810147][T13643] IPv6: NLM_F_CREATE should be specified when creating new route [ 159.909337][T13651] team_slave_0: entered promiscuous mode [ 159.915067][T13651] team_slave_1: entered promiscuous mode [ 159.932995][T13655] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4282'. [ 159.944786][T13651] macvtap1: entered promiscuous mode [ 159.952748][T13651] team0: entered promiscuous mode [ 159.958997][T13651] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 160.016420][T13651] team0: Device macvtap1 is already an upper device of the team interface [ 160.030665][T13651] team0: left promiscuous mode [ 160.042977][T13651] team_slave_0: left promiscuous mode [ 160.048416][T13651] team_slave_1: left promiscuous mode [ 160.197296][T13671] wireguard0: entered promiscuous mode [ 160.212761][T13671] wireguard0: entered allmulticast mode [ 160.646035][ T28] audit: type=1400 audit(2000000049.949:15286): avc: denied { mount } for pid=13719 comm="syz.6.4313" name="/" dev="ramfs" ino=37792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 160.775524][T13729] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4318'. [ 160.792946][T13729] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4318'. [ 160.943152][ T28] audit: type=1326 audit(2000000050.249:15287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 160.990235][ T28] audit: type=1326 audit(2000000050.249:15288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.042749][ T28] audit: type=1326 audit(2000000050.249:15289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.094430][ T28] audit: type=1326 audit(2000000050.249:15290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.140473][ T28] audit: type=1326 audit(2000000050.279:15291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.170820][ T28] audit: type=1326 audit(2000000050.279:15292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.202492][ T28] audit: type=1326 audit(2000000050.279:15293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.227821][ T28] audit: type=1326 audit(2000000050.279:15294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13746 comm="syz.5.4326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72c325c819 code=0x7ffc0000 [ 161.263375][T13755] netlink: 'syz.7.4329': attribute type 2 has an invalid length. [ 161.271384][T13755] netlink: 164 bytes leftover after parsing attributes in process `syz.7.4329'. [ 161.778061][T13785] loop6: detected capacity change from 0 to 512 [ 161.786631][T13785] EXT4-fs: Ignoring removed oldalloc option [ 161.805134][T13785] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 161.817053][T13785] EXT4-fs (loop6): 1 truncate cleaned up [ 161.823738][T13785] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.867110][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.910245][T13794] loop5: detected capacity change from 0 to 512 [ 161.927315][T13794] EXT4-fs error (device loop5): ext4_init_orphan_info:583: comm syz.5.4346: inode #0: comm syz.5.4346: iget: illegal inode # [ 161.946331][T13794] loop5: lost filesystem error report for type 5 error -117 [ 161.952679][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 161.966451][ C1] EXT4-fs (loop5): initial error at time 2000000307: ext4_init_orphan_info:583 [ 161.975459][ C1] EXT4-fs (loop5): last error at time 2000000307: ext4_init_orphan_info:583 [ 161.984745][T13794] EXT4-fs (loop5): get orphan inode failed [ 161.990813][T13794] EXT4-fs (loop5): mount failed [ 162.226467][T13817] tap0: tun_chr_ioctl cmd 2147767521 [ 162.417120][T13831] loop6: detected capacity change from 0 to 1024 [ 162.476075][T13831] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.508891][T13831] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.4363: Allocating blocks 385-513 which overlap fs metadata [ 162.531524][T13831] EXT4-fs (loop6): pa ffff8881082712a0: logic 16, phys. 129, len 24 [ 162.541034][T13831] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 8 [ 162.601914][T13841] IPVS: Error connecting to the multicast addr [ 162.634018][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.384436][T13880] netlink: 204 bytes leftover after parsing attributes in process `syz.6.4382'. [ 163.949810][T13916] loop6: detected capacity change from 0 to 8192 [ 163.965031][T13916] bio_check_eod: 5 callbacks suppressed [ 163.965045][T13916] syz.6.4398: attempt to access beyond end of device [ 163.965045][T13916] loop6: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 164.007032][T13916] Buffer I/O error on dev loop6, logical block 57847, async page read [ 164.026598][T13916] syz.6.4398: attempt to access beyond end of device [ 164.026598][T13916] loop6: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 164.056164][T13916] Buffer I/O error on dev loop6, logical block 57847, async page read [ 164.073664][T13916] syz.6.4398: attempt to access beyond end of device [ 164.073664][T13916] loop6: rw=8388608, sector=57847, nr_sectors = 1 limit=8192 [ 164.089897][T13916] Buffer I/O error on dev loop6, logical block 57847, async page read [ 164.915239][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 164.915258][ T28] audit: type=1326 audit(2000000310.227:15307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 164.982178][ T28] audit: type=1326 audit(2000000310.257:15308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.030345][ T28] audit: type=1326 audit(2000000310.257:15309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.054262][ T28] audit: type=1326 audit(2000000310.257:15310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.078455][ T28] audit: type=1326 audit(2000000310.257:15311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.102293][ T28] audit: type=1326 audit(2000000310.257:15312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.181133][ T28] audit: type=1326 audit(2000000310.257:15313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.228420][ T28] audit: type=1326 audit(2000000310.257:15314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.280286][ T28] audit: type=1326 audit(2000000310.257:15315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.326389][ T28] audit: type=1326 audit(2000000310.257:15316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13936 comm="syz.7.4406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x7ffc0000 [ 165.401522][T13945] erspan0: entered promiscuous mode [ 165.847140][T13980] netlink: 'syz.7.4429': attribute type 3 has an invalid length. [ 165.918782][T13988] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4431'. [ 165.949831][T13988] netem: unknown loss type 13 [ 165.958174][T13991] loop5: detected capacity change from 0 to 512 [ 165.964530][T13988] netem: change failed [ 166.001015][T13991] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.062811][T13991] ext4 filesystem being mounted at /698/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 166.138802][ T5304] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.420110][T14038] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4452'. [ 166.461871][T14041] loop6: detected capacity change from 0 to 128 [ 166.490097][T14041] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fff0000) [ 166.500180][T14041] FAT-fs (loop6): Filesystem has been set read-only [ 166.765825][T14019] chnl_net:caif_netlink_parms(): no params data found [ 166.991371][ T36] bridge_slave_1: left allmulticast mode [ 167.007815][ T36] bridge_slave_1: left promiscuous mode [ 167.031275][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.053217][ T36] bridge_slave_0: left allmulticast mode [ 167.069539][ T36] bridge_slave_0: left promiscuous mode [ 167.082363][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.193573][ T36] geneve1 (unregistering): left allmulticast mode [ 167.265098][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 167.275105][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 167.286630][ T36] bond0 (unregistering): Released all slaves [ 167.294687][ T36] bond1 (unregistering): Released all slaves [ 167.304251][T14019] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.311382][T14019] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.318729][T14019] bridge_slave_0: entered allmulticast mode [ 167.325420][T14019] bridge_slave_0: entered promiscuous mode [ 167.336772][T14019] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.352759][T14019] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.369226][T14019] bridge_slave_1: entered allmulticast mode [ 167.393380][T14019] bridge_slave_1: entered promiscuous mode [ 167.413802][ T36] tipc: Left network mode [ 167.413809][T14090] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4473'. [ 167.463361][T14093] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4472'. [ 167.478975][T14093] netlink: 'syz.1.4472': attribute type 5 has an invalid length. [ 167.511871][ T36] hsr_slave_0: left promiscuous mode [ 167.527680][ T36] hsr_slave_1: left promiscuous mode [ 167.533679][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 167.535445][T14101] 9p: Bad value for 'rfdno' [ 167.545876][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.554236][ T36] batman_adv: batadv0: Interface deactivated: macvtap1 [ 167.561203][ T36] batman_adv: batadv0: Removing interface: macvtap1 [ 167.599728][ T36] pim6reg (unregistering): left allmulticast mode [ 167.692236][ T36] team0 (unregistering): Port device 72žÿ removed [ 167.721445][ T36] team0 (unregistering): Port device team_slave_0 removed [ 167.767991][T14019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 167.779307][T14019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 167.846104][T14019] team0: Port device team_slave_0 added [ 167.889495][T14019] team0: Port device team_slave_1 added [ 167.948061][T14019] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 167.974238][T14019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 168.025874][T14019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 168.047558][T14019] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 168.062859][T14019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 168.092782][T14019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.175481][T14019] hsr_slave_0: entered promiscuous mode [ 168.181742][T14019] hsr_slave_1: entered promiscuous mode [ 168.203167][T14019] debugfs: 'hsr0' already exists in 'hsr' [ 168.208938][T14019] Cannot create hsr debugfs directory [ 168.219359][ T36] IPVS: stop unused estimator thread 0... [ 168.285160][T14160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4490'. [ 168.545493][T14019] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 168.566028][T14019] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 168.600716][T14019] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 168.621480][T14019] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 168.744064][T14019] 8021q: adding VLAN 0 to HW filter on device bond0 [ 168.770259][T14019] 8021q: adding VLAN 0 to HW filter on device team0 [ 168.811008][ T114] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.818214][ T114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 168.858209][ T114] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.865397][ T114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 168.998149][T14236] bridge0: port 3(batadv1) entered blocking state [ 169.012848][T14236] bridge0: port 3(batadv1) entered disabled state [ 169.019406][T14236] batadv1: entered allmulticast mode [ 169.025642][T14236] batadv1: entered promiscuous mode [ 169.091144][T14019] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.317911][T14019] veth0_vlan: entered promiscuous mode [ 169.334884][T14019] veth1_vlan: entered promiscuous mode [ 169.363878][T14019] veth0_macvtap: entered promiscuous mode [ 169.379339][T14019] veth1_macvtap: entered promiscuous mode [ 169.403310][T14019] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 169.423413][T14019] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 169.444860][ T36] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.453891][ T36] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.464222][ T36] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.474122][ T36] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.502797][ T69] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 169.512167][ T69] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 169.850188][T14282] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4518'. [ 169.872784][T14282] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4518'. [ 170.175621][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 170.175638][ T28] audit: type=1400 audit(2000000315.487:15326): avc: denied { map } for pid=14297 comm="syz.1.4526" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 170.242782][ T28] audit: type=1400 audit(2000000315.487:15327): avc: denied { execute } for pid=14297 comm="syz.1.4526" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 170.359311][T14309] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4532'. [ 170.471934][T14320] isofs_fill_super: bread failed, dev=loop13, iso_blknum=16, block=32 [ 170.488271][T14321] loop8: detected capacity change from 0 to 164 [ 170.805051][T14345] tipc: Enabling of bearer rejected, media not registered [ 171.019675][T14368] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4559'. [ 171.052943][ T28] audit: type=1400 audit(2000000316.357:15328): avc: denied { audit_read } for pid=14369 comm="syz.7.4560" capability=37 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 171.541027][T14406] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 171.554548][T14406] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.561750][T14406] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.622350][T14408] loop6: detected capacity change from 0 to 512 [ 171.636679][T14408] EXT4-fs: Ignoring removed nobh option [ 171.665738][T14408] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 171.693832][T14408] EXT4-fs (loop6): 1 truncate cleaned up [ 171.704156][T14408] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.738418][T14408] Invalid option length (255) for dns_resolver key [ 171.807004][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.876829][T14410] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 171.886275][T14410] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 172.072788][ T36] batman_adv: batadv1: IGMP Querier appeared [ 172.078826][ T36] batman_adv: batadv1: MLD Querier appeared [ 172.439594][T14443] netlink: 'syz.8.4592': attribute type 3 has an invalid length. [ 172.610370][T14455] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 172.660072][T14459] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 172.753047][ T1034] kernel write not supported for file bpf-map (pid: 1034 comm: kworker/1:2) [ 172.779825][T14468] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4600'. [ 173.142301][T14485] sctp: [Deprecated]: syz.7.4612 (pid 14485) Use of int in max_burst socket option deprecated. [ 173.142301][T14485] Use struct sctp_assoc_value instead [ 173.344198][T14491] program syz.1.4615 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.508048][T14497] netlink: 56 bytes leftover after parsing attributes in process `syz.7.4618'. [ 173.795509][T14507] netlink: 'syz.7.4623': attribute type 13 has an invalid length. [ 173.813117][T14507] netlink: 24859 bytes leftover after parsing attributes in process `syz.7.4623'. [ 174.118387][T14531] veth1_to_bond: entered allmulticast mode [ 174.136138][T14530] veth1_to_bond: left allmulticast mode [ 174.476712][T14554] program syz.1.4645 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 174.493335][T14555] netlink: 27 bytes leftover after parsing attributes in process `syz.8.4646'. [ 175.928897][T14625] loop6: detected capacity change from 0 to 512 [ 175.946881][T14625] EXT4-fs (loop6): 1 orphan inode deleted [ 175.963823][T14625] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.975978][ T28] audit: type=1326 audit(2000000321.277:15329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.002915][ T28] audit: type=1326 audit(2000000321.277:15330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.026699][ T28] audit: type=1326 audit(2000000321.277:15331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.050705][ T28] audit: type=1326 audit(2000000321.357:15332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.074465][ T28] audit: type=1326 audit(2000000321.357:15333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14634 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f74fb15d04e code=0x7ffc0000 [ 176.098128][ T28] audit: type=1326 audit(2000000321.357:15334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.126825][ T28] audit: type=1326 audit(2000000321.437:15335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.171039][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.240952][ T28] audit: type=1326 audit(2000000321.537:15336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14634 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.349740][T14647] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14647 comm=syz.7.4685 [ 176.352732][ T28] audit: type=1326 audit(2000000321.547:15337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f74fb13db99 code=0x7ffc0000 [ 176.422674][ T28] audit: type=1326 audit(2000000321.547:15338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14630 comm="syz.8.4680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fb19c819 code=0x7ffc0000 [ 176.948621][T14671] loop6: detected capacity change from 0 to 1024 [ 177.010567][T14671] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 177.084482][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.487597][T14696] loop8: detected capacity change from 0 to 1024 [ 177.508568][T14698] vlan3: entered allmulticast mode [ 177.518153][T14696] EXT4-fs: Ignoring removed orlov option [ 177.534995][T14698] veth0_to_bond: entered allmulticast mode [ 177.568824][T14696] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.613588][T14701] random: crng reseeded on system resumption [ 177.861118][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.555661][T14761] 9p: Bad value for 'rfdno' [ 178.712754][T14777] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 178.757075][T14781] loop8: detected capacity change from 0 to 512 [ 178.789879][T14781] EXT4-fs (loop8): 1 truncate cleaned up [ 178.803214][T14781] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.820011][T14781] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4744: bg 0: block 465: padding at end of block bitmap is not set [ 178.835544][T14781] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 178.852675][T14781] EXT4-fs (loop8): This should not happen!! Data will be lost [ 178.852675][T14781] [ 178.873249][T14781] EXT4-fs (loop8): Total free blocks count 0 [ 178.892485][T14781] EXT4-fs (loop8): Free/Dirty block details [ 178.913864][T14781] EXT4-fs (loop8): free_blocks=0 [ 178.929821][T14781] EXT4-fs (loop8): dirty_blocks=66 [ 178.951159][T14781] EXT4-fs (loop8): Block reservation details [ 178.987328][T14781] EXT4-fs (loop8): i_reserved_data_blocks=66 [ 179.046810][ T114] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 29 with max blocks 39 with error 28 [ 179.125863][T14804] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4752'. [ 179.135187][T14800] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4754'. [ 179.395804][T14826] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4766'. [ 179.422825][T14826] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4766'. [ 179.498124][T14834] netlink: 136 bytes leftover after parsing attributes in process `syz.1.4768'. [ 180.351207][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.370804][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.395957][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.407966][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.416567][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.430453][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.438132][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.455104][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.468913][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.482690][ T3422] hid-generic 0000:0000:000E.0003: unknown main item tag 0x0 [ 180.498352][ T3422] hid-generic 0000:0000:000E.0003: hidraw0: HID v0.00 Device [syz0] on syz0 [ 180.545673][T14901] netlink: 7 bytes leftover after parsing attributes in process `syz.6.4787'. [ 180.578628][T14904] fido_id[14904]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 180.651639][T14910] xt_hashlimit: size too large, truncated to 1048576 [ 180.725556][T14919] netlink: 889 bytes leftover after parsing attributes in process `syz.7.4793'. [ 180.746625][T14923] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4794'. [ 180.880033][T14930] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 180.886590][T14930] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 181.551608][T14988] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14988 comm=syz.6.4814 [ 181.649685][T15011] loop6: detected capacity change from 0 to 1024 [ 181.673492][T15011] EXT4-fs: Ignoring removed bh option [ 181.681636][T15011] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 181.748195][T15011] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.806354][T15011] EXT4-fs (loop6): shut down requested (2) [ 181.813976][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 181.814052][ T28] audit: type=1400 audit(2000000327.127:15354): avc: denied { read } for pid=2983 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 181.842812][ T28] audit: type=1400 audit(2000000327.127:15355): avc: denied { search } for pid=2983 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 181.862843][T15011] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 181.865136][ T28] audit: type=1400 audit(2000000327.127:15356): avc: denied { search } for pid=2983 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 181.895552][ T28] audit: type=1400 audit(2000000327.127:15357): avc: denied { add_name } for pid=2983 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 181.917178][ T28] audit: type=1400 audit(2000000327.127:15358): avc: denied { create } for pid=2983 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 181.938205][T15011] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 181.947277][T15011] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 181.956700][ T28] audit: type=1400 audit(2000000327.127:15359): avc: denied { append open } for pid=2983 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 182.022002][T15029] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4835'. [ 182.031326][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.053213][ T28] audit: type=1400 audit(2000000327.127:15360): avc: denied { getattr } for pid=2983 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 182.076701][ T28] audit: type=1400 audit(2000000327.267:15361): avc: denied { open } for pid=15010 comm="syz.6.4822" path="/680/file1/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 182.118921][T14999] chnl_net:caif_netlink_parms(): no params data found [ 182.153068][ T28] audit: type=1400 audit(2000000327.457:15362): avc: denied { write } for pid=15034 comm="syz.6.4827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 182.228664][T14999] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.235932][T14999] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.243557][T14999] bridge_slave_0: entered allmulticast mode [ 182.250325][T14999] bridge_slave_0: entered promiscuous mode [ 182.257329][T14999] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.264682][T14999] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.271904][T14999] bridge_slave_1: entered allmulticast mode [ 182.278995][T14999] bridge_slave_1: entered promiscuous mode [ 182.298359][T14999] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 182.309129][T14999] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 182.353264][T14999] team0: Port device team_slave_0 added [ 182.359980][T14999] team0: Port device team_slave_1 added [ 182.393445][T14999] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 182.398681][ T28] audit: type=1400 audit(2000000327.707:15363): avc: denied { unmount } for pid=14019 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 182.403560][T14999] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 182.455748][T14999] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 182.467497][T14999] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 182.474710][T14999] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 182.534717][T14999] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 182.571553][T14999] hsr_slave_0: entered promiscuous mode [ 182.578970][T14999] hsr_slave_1: entered promiscuous mode [ 182.587511][T14999] debugfs: 'hsr0' already exists in 'hsr' [ 182.612139][T14999] Cannot create hsr debugfs directory [ 182.661213][T15078] loop6: detected capacity change from 0 to 512 [ 182.699201][ T10] IPVS: starting estimator thread 0... [ 182.705187][T15085] IPVS: lc: FWM 3 0x00000003 - no destination available [ 182.712354][T15078] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 182.735216][T15078] EXT4-fs (loop6): 1 truncate cleaned up [ 182.741354][T15078] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.812674][T15086] IPVS: using max 2256 ests per chain, 112800 per kthread [ 182.845284][T14999] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 182.857352][T14999] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 182.904684][T15102] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4857'. [ 182.915772][T15102] netlink: 'syz.7.4857': attribute type 20 has an invalid length. [ 182.928336][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.932808][T14999] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 182.954721][T14999] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 183.063917][T14999] 8021q: adding VLAN 0 to HW filter on device bond0 [ 183.080629][T14999] 8021q: adding VLAN 0 to HW filter on device team0 [ 183.095392][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.102508][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 183.121310][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.128533][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 183.272462][T14999] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 183.347309][ T1034] kernel read not supported for file /vcs (pid: 1034 comm: kworker/1:2) [ 183.479536][T14999] veth0_vlan: entered promiscuous mode [ 183.491722][T14999] veth1_vlan: entered promiscuous mode [ 183.512576][T14999] veth0_macvtap: entered promiscuous mode [ 183.531268][T14999] veth1_macvtap: entered promiscuous mode [ 183.554390][T14999] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.573935][T14999] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.588019][ T12] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.597412][ T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.607572][ T12] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.617193][ T12] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.706408][T15201] loop9: detected capacity change from 0 to 512 [ 183.738024][T15201] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 183.750858][T15201] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 183.790160][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.858475][T15219] loop6: detected capacity change from 0 to 256 [ 183.890115][T15219] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 183.949131][T15222] loop9: detected capacity change from 0 to 512 [ 183.980588][T15222] EXT4-fs: Ignoring removed nomblk_io_submit option [ 183.994052][T15222] EXT4-fs (loop9): 1 truncate cleaned up [ 184.000204][T15222] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.091855][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.179180][T15255] __nla_validate_parse: 6 callbacks suppressed [ 184.179233][T15255] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4917'. [ 184.314318][T15270] loop9: detected capacity change from 0 to 2048 [ 184.335088][T15270] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.604657][T15288] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4931'. [ 184.617366][T15288] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4931'. [ 184.642102][T15288] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4931'. [ 184.661507][T15288] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4931'. [ 184.680324][T15288] netlink: 'syz.7.4931': attribute type 6 has an invalid length. [ 184.744908][T15270] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4923: bg 0: block 234: padding at end of block bitmap is not set [ 184.760691][T15270] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 184.773345][T15270] EXT4-fs (loop9): This should not happen!! Data will be lost [ 184.773345][T15270] [ 184.783116][T15270] EXT4-fs (loop9): Total free blocks count 0 [ 184.789197][T15270] EXT4-fs (loop9): Free/Dirty block details [ 184.795216][T15270] EXT4-fs (loop9): free_blocks=0 [ 184.800254][T15270] EXT4-fs (loop9): dirty_blocks=8192 [ 184.805656][T15270] EXT4-fs (loop9): Block reservation details [ 184.811707][T15270] EXT4-fs (loop9): i_reserved_data_blocks=512 [ 184.969049][ T69] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 185.107844][T15317] loop8: detected capacity change from 0 to 2048 [ 185.139605][T15317] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.199452][T15317] EXT4-fs (loop8): shut down requested (0) [ 185.293266][T15343] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4958'. [ 185.302866][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.450219][T15361] loop8: detected capacity change from 0 to 512 [ 185.458588][T15361] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 185.475504][T15361] EXT4-fs (loop8): 1 orphan inode deleted [ 185.483169][T15361] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.507034][T15361] EXT4-fs (loop8): shut down requested (2) [ 185.513378][T15361] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 185.522279][T15361] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 185.543640][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.588075][T15364] netlink: 'syz.8.4966': attribute type 25 has an invalid length. [ 186.641162][T15411] loop8: detected capacity change from 0 to 256 [ 186.958038][T15421] netlink: 72 bytes leftover after parsing attributes in process `syz.8.4987'. [ 187.004983][T15425] loop8: detected capacity change from 0 to 512 [ 187.038124][T15425] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.050894][T15425] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.065284][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 187.065301][ T28] audit: type=1400 audit(2000000332.377:15378): avc: denied { map } for pid=15424 comm="syz.8.4993" path="/90/file1/file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 187.126014][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.145333][T15437] netlink: 71 bytes leftover after parsing attributes in process `syz.6.5000'. [ 187.213777][T15444] loop6: detected capacity change from 0 to 1024 [ 187.225102][T15445] loop8: detected capacity change from 0 to 512 [ 187.246335][T15445] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 187.255639][T15444] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.268285][T15444] ext4 filesystem being mounted at /725/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.285444][ T28] audit: type=1400 audit(2000000332.597:15379): avc: denied { execute } for pid=15441 comm="syz.6.5002" path="/725/file1/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 187.319222][T15445] EXT4-fs (loop8): 1 truncate cleaned up [ 187.334500][T15445] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 187.373476][ T114] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: comm kworker/u8:5: lblock 0 mapped to illegal pblock 0 (length 1) [ 187.387293][ T114] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 187.416740][ T114] EXT4-fs (loop6): This should not happen!! Data will be lost [ 187.416740][ T114] [ 187.441056][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 187.485755][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.612975][T15466] sctp: [Deprecated]: syz.6.5009 (pid 15466) Use of int in max_burst socket option. [ 187.612975][T15466] Use struct sctp_assoc_value instead [ 187.628853][T15468] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5010'. [ 187.646777][T15468] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5010'. [ 187.828416][T15494] loop8: detected capacity change from 0 to 128 [ 187.862365][T15494] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 187.883139][T15494] ext4 filesystem being mounted at /97/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 187.952674][T15494] EXT4-fs (loop8): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 188.013385][T14019] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 188.160594][T15529] sctp: [Deprecated]: syz.1.5040 (pid 15529) Use of struct sctp_assoc_value in delayed_ack socket option. [ 188.160594][T15529] Use struct sctp_sack_info instead [ 188.235330][T15542] xt_hashlimit: size too large, truncated to 1048576 [ 188.532663][ T28] audit: type=1400 audit(2000000333.837:15380): avc: denied { lock } for pid=15567 comm="syz.7.5056" path="socket:[44252]" dev="sockfs" ino=44252 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 188.902129][T15583] loop6: detected capacity change from 0 to 512 [ 188.925714][T15583] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.961784][T15583] ext4 filesystem being mounted at /735/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.055609][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.081769][ T28] audit: type=1326 audit(2000000334.387:15381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15595 comm="syz.7.5067" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdeb7cfc819 code=0x0 [ 189.138566][T15602] loop8: detected capacity change from 0 to 128 [ 189.161002][T15603] loop9: detected capacity change from 0 to 512 [ 189.174363][T15603] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 189.184973][T15602] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 189.194428][T15602] FAT-fs (loop8): Filesystem has been set read-only [ 189.201143][T15602] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 189.225830][T15603] EXT4-fs (loop9): orphan file too big: 4294967295 [ 189.242208][T15603] EXT4-fs (loop9): mount failed [ 189.283310][T15602] syz.8.5071: attempt to access beyond end of device [ 189.283310][T15602] loop8: rw=2049, sector=2065, nr_sectors = 8 limit=128 [ 189.612544][T15647] loop9: detected capacity change from 0 to 736 [ 189.629362][T15647] iso9660: Unknown parameter 'gi`' [ 190.196194][T15689] No such timeout policy "syz0" [ 190.469875][T15696] netlink: 'syz.6.5111': attribute type 83 has an invalid length. [ 190.642866][T15711] netlink: 'syz.6.5119': attribute type 21 has an invalid length. [ 190.686686][T15711] __nla_validate_parse: 7 callbacks suppressed [ 190.686732][T15711] netlink: 128 bytes leftover after parsing attributes in process `syz.6.5119'. [ 190.722105][T15711] netlink: 'syz.6.5119': attribute type 4 has an invalid length. [ 190.730524][T15711] netlink: 'syz.6.5119': attribute type 3 has an invalid length. [ 190.738949][T15711] netlink: 3 bytes leftover after parsing attributes in process `syz.6.5119'. [ 190.814474][T15715] loop8: detected capacity change from 0 to 8192 [ 191.081019][T15745] pimreg: entered allmulticast mode [ 191.116434][T15745] pimreg: left allmulticast mode [ 191.340450][T15770] netlink: 180 bytes leftover after parsing attributes in process `syz.8.5146'. [ 191.375532][T15778] loop9: detected capacity change from 0 to 512 [ 191.392608][T15778] EXT4-fs: Ignoring removed mblk_io_submit option [ 191.406281][T15778] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 191.431038][T15782] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5152'. [ 191.433111][T15780] netlink: 'syz.8.5151': attribute type 10 has an invalid length. [ 191.440725][T15782] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5152'. [ 191.459066][T15778] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.471840][T15778] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 191.499270][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.697327][T15802] EXT4-fs: Ignoring removed nomblk_io_submit option [ 191.714249][T15802] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.5160: iget: bad extended attribute block 262144 [ 191.735994][T15802] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 191.736230][T15802] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.5160: couldn't read orphan inode 15 (err -117) [ 191.745442][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 191.745467][ C0] EXT4-fs (loop6): initial error at time 2000000000: ext4_orphan_get:1391: inode 15 [ 191.745500][ C0] EXT4-fs (loop6): last error at time 2000000000: ext4_orphan_get:1391: inode 15 [ 191.784379][T15802] loop6: lost filesystem error report for type 5 error -117 [ 191.785021][T15802] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.820335][ T7782] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.914795][T15813] program syz.6.5164 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 192.077058][T15828] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5171'. [ 192.130353][T15832] blkio.reset_stats is deprecated [ 192.294521][T15845] set_capacity_and_notify: 1 callbacks suppressed [ 192.294556][T15845] loop9: detected capacity change from 0 to 512 [ 192.338656][T15845] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 192.405024][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.576205][T15859] netlink: 'syz.8.5183': attribute type 1 has an invalid length. [ 192.592900][T15859] netlink: 'syz.8.5183': attribute type 2 has an invalid length. [ 192.620881][T15859] netlink: 'syz.8.5183': attribute type 1 has an invalid length. [ 192.629041][T15859] netlink: 'syz.8.5183': attribute type 2 has an invalid length. [ 192.747832][T15872] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 192.788965][T15872] vhci_hcd vhci_hcd.2: invalid port number 96 [ 192.795390][T15872] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0 [ 192.984866][T15889] loop9: detected capacity change from 0 to 8192 [ 193.159840][T15906] netlink: 'syz.7.5202': attribute type 1 has an invalid length. [ 193.298565][T15925] netlink: 104 bytes leftover after parsing attributes in process `syz.7.5210'. [ 193.336398][T15915] loop6: detected capacity change from 0 to 8192 [ 193.500435][T15950] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5223'. [ 193.528307][T15950] netlink: 80 bytes leftover after parsing attributes in process `syz.9.5223'. [ 193.860262][T15981] loop8: detected capacity change from 0 to 512 [ 193.877694][T15981] EXT4-fs: Ignoring removed nomblk_io_submit option [ 193.911969][T15981] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #15: comm syz.8.5238: iget: bad extended attribute block 262144 [ 193.952654][T15981] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.952855][T15981] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.5238: couldn't read orphan inode 15 (err -117) [ 193.973917][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 193.973940][ C0] EXT4-fs (loop8): initial error at time 2000000002: ext4_orphan_get:1391: inode 15 [ 193.973974][ C0] EXT4-fs (loop8): last error at time 2000000002: ext4_orphan_get:1391: inode 15 [ 194.031353][T15991] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 194.033596][T15981] loop8: lost filesystem error report for type 5 error -117 [ 194.041764][T15981] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.466836][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.785169][T16031] tap0: tun_chr_ioctl cmd 1074025677 [ 194.790944][T16031] tap0: linktype set to 6 [ 194.859490][T16040] IPv6: NLM_F_REPLACE set, but no existing node found! [ 194.908085][T16049] loop9: detected capacity change from 0 to 256 [ 195.007607][T16062] program syz.9.5273 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 195.033949][T16064] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 195.039719][T16064] dvmrp1: linktype set to 769 [ 195.039721][T16066] loop8: detected capacity change from 0 to 512 [ 195.064922][T16066] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.079642][T16066] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 195.115033][T16066] EXT4-fs error (device loop8): ext4_lookup:1785: inode #15: comm syz.8.5276: iget: checksum invalid [ 195.126487][T16066] EXT4-fs warning (device loop8): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 195.153127][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.184505][T16070] loop6: detected capacity change from 0 to 2048 [ 195.206690][T16070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.520037][T16093] loop8: detected capacity change from 0 to 4096 [ 195.576401][T16093] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.653238][T14019] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.874212][T16120] loop8: detected capacity change from 0 to 256 [ 195.898459][T16070] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5277: bg 0: block 234: padding at end of block bitmap is not set [ 195.913276][T16070] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 195.932794][T16070] EXT4-fs (loop6): This should not happen!! Data will be lost [ 195.932794][T16070] [ 195.946818][ T28] audit: type=1400 audit(2000000004.590:15382): avc: denied { read } for pid=16121 comm="syz.9.5301" path="socket:[45883]" dev="sockfs" ino=45883 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 195.978213][T16070] EXT4-fs (loop6): Total free blocks count 0 [ 196.014916][T16070] EXT4-fs (loop6): Free/Dirty block details [ 196.060203][T16070] EXT4-fs (loop6): free_blocks=0 [ 196.070883][T16133] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5306'. [ 196.105403][T16070] EXT4-fs (loop6): dirty_blocks=8192 [ 196.110747][T16070] EXT4-fs (loop6): Block reservation details [ 196.151278][T16070] EXT4-fs (loop6): i_reserved_data_blocks=512 [ 196.175059][T16139] loop8: detected capacity change from 0 to 512 [ 196.197426][T16139] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.5309: invalid indirect mapped block 256 (level 2) [ 196.211999][T16139] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 196.212313][T16139] EXT4-fs (loop8): 2 truncates cleaned up [ 196.221524][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 196.221541][ C0] EXT4-fs (loop8): initial error at time 2000000004: ext4_free_branches:1023: inode 11 [ 196.221585][ C0] EXT4-fs (loop8): last error at time 2000000004: ext4_free_branches:1023: inode 11 [ 196.254477][T16139] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.321565][ T50] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 196.343423][T16149] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5313'. [ 196.566131][T16167] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.652400][T16172] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5324'. [ 196.709160][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.866023][T16185] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5328'. [ 197.054145][ T1881] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm kworker/u8:8: bg 0: block 5: invalid block bitmap [ 197.082837][ T1881] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 197.142653][ T1881] EXT4-fs (loop8): This should not happen!! Data will be lost [ 197.142653][ T1881] [ 197.159870][ T1881] EXT4-fs (loop8): Total free blocks count 0 [ 197.172021][ T1881] EXT4-fs (loop8): Free/Dirty block details [ 197.185156][ T1881] EXT4-fs (loop8): free_blocks=0 [ 197.190322][ T1881] EXT4-fs (loop8): dirty_blocks=13752 [ 197.196765][ T1881] EXT4-fs (loop8): Block reservation details [ 197.202993][ T1881] EXT4-fs (loop8): i_reserved_data_blocks=13752 [ 197.251297][ T1881] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28 [ 197.309736][T16201] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5337'. [ 197.375470][T16204] netlink: 96 bytes leftover after parsing attributes in process `syz.9.5338'. [ 197.418186][T16204] netlink: 96 bytes leftover after parsing attributes in process `syz.9.5338'. [ 197.496681][T16214] set_capacity_and_notify: 2 callbacks suppressed [ 197.496701][T16214] loop9: detected capacity change from 0 to 512 [ 197.543859][T16214] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 197.563207][T16214] EXT4-fs (loop9): 1 orphan inode deleted [ 197.569002][T16214] EXT4-fs (loop9): 1 truncate cleaned up [ 197.583891][T16214] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.616750][ T28] audit: type=1400 audit(2000000006.260:15383): avc: denied { add_name } for pid=16213 comm="syz.9.5342" name="file4" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 197.643139][T14999] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.795690][ T28] audit: type=1400 audit(2000000006.440:15384): avc: denied { mounton } for pid=16247 comm="syz.6.5357" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 198.053179][T16278] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=104 sclass=netlink_audit_socket pid=16278 comm=syz.8.5369 [ 198.152429][T16292] program syz.8.5376 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 198.310283][T16302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5382'. [ 198.378486][T16311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5386'. [ 198.405728][T16311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5386'. [ 198.473759][T16318] loop8: detected capacity change from 0 to 128 [ 198.687663][T16330] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16330 comm=syz.8.5395 [ 199.241518][ T3001] ================================================================== [ 199.249776][ T3001] BUG: KCSAN: data-race in d_make_discardable / path_lookupat [ 199.257293][ T3001] [ 199.259646][ T3001] write to 0xffff88812aea4c00 of 4 bytes by task 3305 on cpu 0: [ 199.267299][ T3001] d_make_discardable+0x4f/0xa0 [ 199.272197][ T3001] simple_unlink+0x68/0x80 [ 199.276638][ T3001] shmem_unlink+0x12d/0x140 [ 199.281199][ T3001] vfs_unlink+0x1c7/0x490 [ 199.285554][ T3001] filename_unlinkat+0x1e2/0x410 [ 199.290534][ T3001] __se_sys_unlink+0x2b/0xe0 [ 199.295160][ T3001] __x64_sys_unlink+0x1f/0x30 [ 199.299923][ T3001] x64_sys_call+0x2eb6/0x3020 [ 199.304639][ T3001] do_syscall_64+0x12c/0x370 [ 199.309263][ T3001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.315185][ T3001] [ 199.317530][ T3001] read to 0xffff88812aea4c00 of 4 bytes by task 3001 on cpu 1: [ 199.325103][ T3001] path_lookupat+0x1d8/0x500 [ 199.329739][ T3001] filename_lookup+0x190/0x390 [ 199.334564][ T3001] do_readlinkat+0x74/0x2f0 [ 199.339095][ T3001] __x64_sys_readlink+0x47/0x60 [ 199.343971][ T3001] x64_sys_call+0x2b51/0x3020 [ 199.348673][ T3001] do_syscall_64+0x12c/0x370 [ 199.353285][ T3001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.359196][ T3001] [ 199.361530][ T3001] value changed: 0x08300080 -> 0x00004080 [ 199.367266][ T3001] [ 199.369600][ T3001] Reported by Kernel Concurrency Sanitizer on: [ 199.375779][ T3001] CPU: 1 UID: 0 PID: 3001 Comm: udevd Tainted: G W syzkaller #0 PREEMPT(full) [ 199.386311][ T3001] Tainted: [W]=WARN [ 199.390122][ T3001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 199.400189][ T3001] ==================================================================