last executing test programs: 3.575537584s ago: executing program 0 (id=4257): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000500)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0xf241f1a146326c4, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x4580, 0x3ff, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) uname(&(0x7f0000000080)=""/161) syz_io_uring_submit(0x0, 0x0, 0x0, &(0x7f0000000000)) io_uring_enter(0xffffffffffffffff, 0x627, 0x4c1, 0x43, 0x0, 0x30) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/if_inet6\x00') pread64(r3, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000) fcntl$setlease(r1, 0x400, 0x0) r4 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000001080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, [@call={0x85, 0x0, 0x0, 0x7}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {}, {0x85, 0x0, 0x0, 0xa7}}]}, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r6}, 0xc) dup2(r4, r1) mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000000000/0x3000)=nil) vmsplice(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000400)}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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") syz_emit_ethernet(0x10e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000286dd60fc414a00d83c0020010000000000000000000000000001fe8000000000000000000000000000aa6203000000000000c91000000000000000000000000000000001"], 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB], 0x48) rt_tgsigqueueinfo(0x0, 0x0, 0x8, &(0x7f0000000480)={0x2b, 0x0, 0xfffffffb}) 1.54303283s ago: executing program 4 (id=4286): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYBLOB="6092034e5823f645654f6e8edfc3b8e1a948efb0d4b9a9d4c30f5dacb3c1a7ea2587d59165777f070017c2921e793ec5a1384e143b57bb832f14bb43afdef6cb4ed4960b6c732be46a927cdd8c57f93ee6c15401df91ebcbe4f9989843313ea9f243d4dc3d276b966b898100a620b69b543033b9b7bcd9069b9248fbdff46c4a49f094a61938776ce1a1d0f0c84cb7a84bf0b1e2ce5f38f95e11d5b1977ead80625337f66dc391089ab8573d008a4bd03f6f9f01406db632558ed25be4beecd844ac00e52f95c5dc96a1e4a25c80d56aebf6cb33914d6bc72a40bf2fc94efed2f941cf3e"], 0xf9, 0x1213, &(0x7f0000000600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r1, &(0x7f00000004c0)='./bus/file0\x00', 0x2) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000000)='./bus/file0\x00', 0x2) 1.385529215s ago: executing program 4 (id=4288): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) 1.23402807s ago: executing program 4 (id=4289): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) bind$x25(r1, &(0x7f0000000080), 0x12) bind$x25(r2, &(0x7f0000000180), 0x12) close_range(r0, 0xffffffffffffffff, 0x0) 1.189905121s ago: executing program 4 (id=4290): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, r0) setpgid(0x0, r0) tkill(r0, 0x7) wait4(r0, 0x0, 0x0, 0x0) getpriority(0x0, r0) 1.123485074s ago: executing program 4 (id=4291): r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="4c000000100039042abd70000000000000000000", @ANYRES32=r1, @ANYBLOB="01180200031100002c0012800e00010069703665727370616e0000001800028008001500a8bc0d00040012"], 0x4c}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=@newlink={0x50, 0x10, 0x401, 0x70bd28, 0x3, {0x0, 0x0, 0x0, r1, 0x0, 0x1c05}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LINK={0x8, 0x1, r1}, @IFLA_GRE_ERSPAN_INDEX={0x8, 0x15, 0xa4cc6}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x12) 1.092044425s ago: executing program 4 (id=4292): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) 667.666059ms ago: executing program 3 (id=4301): r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x6}, 0x2002, 0x32, 0x43a1bd56, 0x6, 0x9, 0x6, 0x6, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) 620.62427ms ago: executing program 0 (id=4302): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r1, &(0x7f0000001040)={0x27, 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000000200000000001900", 0x3c}, 0x60) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r2, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x1, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x1000000000003b}, 0x60) 608.145561ms ago: executing program 0 (id=4303): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', 0x0}) sendto$packet(r1, &(0x7f0000000240)="09485aa428", 0x5, 0x100400c1, &(0x7f0000000200)={0x11, 0x8100, r2, 0x1, 0x87, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14) 582.719682ms ago: executing program 3 (id=4305): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYBLOB="6092034e5823f645654f6e8edfc3b8e1a948efb0d4b9a9d4c30f5dacb3c1a7ea2587d59165777f070017c2921e793ec5a1384e143b57bb832f14bb43afdef6cb4ed4960b6c732be46a927cdd8c57f93ee6c15401df91ebcbe4f9989843313ea9f243d4dc3d276b966b898100a620b69b543033b9b7bcd9069b9248fbdff46c4a49f094a61938776ce1a1d0f0c84cb7a84bf0b1e2ce5f38f95e11d5b1977ead80625337f66dc391089ab8573d008a4bd03f6f9f01406db632558ed25be4beecd844ac00e52f95c5dc96a1e4a25c80d56aebf6cb33914d6bc72a40bf2fc94efed2f941cf3e"], 0xf9, 0x1213, &(0x7f0000000600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) getdents64(r0, &(0x7f0000000180)=""/42, 0x2a) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000f80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) 559.593442ms ago: executing program 2 (id=4306): creat(0x0, 0x0) socket$rds(0x15, 0x5, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)=ANY=[@ANYBLOB="2000000018001101ffffffff000000000a710000ff00ff06"], 0x20}}, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x4) syz_open_procfs$pagemap(0x0, 0x0) 559.348432ms ago: executing program 0 (id=4307): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x3}, 0x106200, 0x10004, 0x20da, 0x1, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000170900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2000c450) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a48000000060a010400000000000000000a0000050900020073797a32000000001c000480180001800d00010073796e70726f787900c72b00040002800900010073797a310000000014000000110001"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0xe0}}, 0x0) close(r0) 498.356724ms ago: executing program 2 (id=4309): r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x2, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x2800088, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x95, 0x2b8, &(0x7f0000000340)="$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") renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0) 458.864565ms ago: executing program 0 (id=4311): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r2, r1, 0x25, 0x4, @val=@tcx}, 0x1c) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f0000000480)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000680)={r3, r4, 0x4, r2}, 0x10) 438.570176ms ago: executing program 3 (id=4312): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0x100000001, 0xdd5}, 0x0, 0x0, 0x10000, 0x2, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x1) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) close(0x3) 397.583627ms ago: executing program 0 (id=4314): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000001c0)='./file0\x00', 0x800000, &(0x7f00000006c0)=ANY=[@ANYBLOB="616c6c6f775f7574696d653d30303030303030303030303030303030303136323134372c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c696f636861727365743d6d61637475726b6973682c6e6f6e756d7461696c3d302c696f636861727365743d6b6f69382d72752c757466383d312c696f636861727365743d757466382c6572726f72733d636f6e74696e75652c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c757365667265652c73686f72746e616d653d77696e6e742c005a086502454ede48cd0c582ac337a877be0c36a8e60d572dbe625e0680a225abe4d4fc79e83de86dce78be26dba8f6ff0abfb9c2fba30a14b3b206ad905e994c27e6d4fc5d74f88b749758f85a07efcf3e17bd78aad46a325ec58b65332fe45ac5db6e722db0a32946415f0b3403d53ad233d1fe2593f1d4fe07041a0091b2f43c1e87fa638a217f4108c00d47c229ae1229250e"], 0x1, 0x373, &(0x7f0000000340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) write(r1, &(0x7f0000004200)='t', 0x1) sendfile(r1, r0, 0x0, 0x3ffff) sendfile(r1, r0, 0x0, 0x7ffff000) 384.903388ms ago: executing program 1 (id=4315): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000e9ffff470000002c41000095000000000000002ba7e1d30c04aa8b3382022ce2a1d97411a0f6b599e83f24a3aa81d36bb7019c13bd23212fb56f040026fbfefc4a056bdc17487902317142fac7e7be168c1886d0d4d94f2f4eb45c652fbc1626cca2a28d67893547db51ee988e6e06c8cedf7ceb9fc40400ae5e4aa74c92c6a51cbf9b0a4def23d410f6accd3641130bfc4e90a6341865c3f5ab3e89cf6c662ed4148d3b3e22278d00031e5388ee5c867de2c6211d6ececb0c18ce7400dae15cb7947c491b8bea3fd2f73902ebcfcf4982277d9800011b405bbf7b02433a9bcd715f5888b2007f000000001c000000010000000000000600000000309329170ee5b567e70f000006a10f58fa645335000000000000000a0000000031000000000000001208e75a89faffbfb11b7dc6ea31001e846c12423a169f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d617de7a6520655a80d0900f4d433623c850af895abba14f6fbd7fbad1f98e26ad4deaf1a4f294b2a431ab9142f3a06d54740a4bc5e3abd378af7c9676a08e774c48785f895b4ec8d11410500000000000000f6027bf48cabecead649f96ea24d32872c494160cb7f46ce680eeb80157eb23f9902519ac655fa73103170cbc496d7122034b85e7e87a2db762cbb253fbd76b9117c1a11d18aa2040c5f0c289906000000000000005ffe94ff799a11d9b219c00c369a12bf8685b862d0dbdd956cbda1bae489bcef5ae59136aaadc59609f4d42617c0e6066938b521a0f2e2467a6c435ad5b800262a5da053ced5e95394e500000072737638ac44fb61310e2df511c60b3c88113996a81fb64bce5eb95ce91738640ff7ae6ed6b62086e699955926934389cdf9bcffff3ffd86fe9ce05268bf8a3958f2206cdc7095682c14f10be1075832956762b2dcc6251e7b74cb1da627e332765511c58215bf84d263e8778e6e8ffe4ea50b076446f35efffc806b340658342d2d9e1ef68c6ef3e98407d2fcefb34a0000380f00000000895ddbb76122bf222e4da37177fe833e4fcaa67997e92a206ebd085bd9f90008d3fdd528efe6c1dca17f45ba5e8bd311a40030f9ffce75ffff996a80153a0077bb43f8a63dd390d18f0239b41da1a52383a4c6768ca1bb66b8fb3c5000f6f246fd20356a60769b461b6cdf133de073b1df08ae09268b0073bb97d88d741a5546e76caf4b6b1387ff37ec13d262dae0260be74cdf7bb6d3107597430ef5bbd476bb9d69b2aef9f3cb644b4bf01ccf16d40720939daf2af469bdfb361b9c015dd026fd0fffe3c66f5c343afb78a7cfd852f3e05c089887d7df2ff4f9982030019421af6b78ff9c444a17091875cfe4eab0e7f50eb69c860b1613a6b4f5af04f9c635d8d646c89f8b85f820ce7464c731deba39f9ff7b815f7b0acba754c01ed8bf1bba0010a8c6a2b966d861f9dd547abf2e9b23e5607f00f80b58fd76e4bc46c84799aa792cdaeb6cfb858e577dacff607ba513250e13ae696cd6ed7d318190a93b9ee07927efca6b8d1f5980994690bbe002db5146439d906a0d4aef065214b15666cdca81091b69acee2c7ce0821fc19e0891f0b53469f935c5ac420100010000000000fb53faf4420638489e6a1c696d8c414a87b60000000000080000b6be1557951854c01dbc2d061827ae6349a045b780893771524a424335b9fc34616ee9f09141057262530b7c2f7c9b969938779736ece7b470078ac0b1b4b528000000009866e9994ca9096672ec9f3800c2fc35ba6516e542624c47bdba76a816c3a3dd6c3fa87a3ec91df199a9af91a7babf2b8d0e7b77e6dfb4bbc9817847b705000000a1000000000000ab8353f3800f045b90b0eaab6d731199c9447eabbc8c740183aff5389742e47de5000000826a570d143107006b9419c2b6353fcf2ae3366ebdb7f1000000000000333c00e6addbf4c71ffad6bfb5babb49109f92a5a52042c425190a6e3f1a8a3abfe6059da9c952cf35c98ce7616355493d280f2d0be99e18fd0900c769e7eb4edc1c03a33676590bd2047229e0237c1e34641848531712ff09e89fb062a3e66f4fced0ae679733830039cb61ea0691f0b4e0b33194404e643243c3841e1e7fe301f7f47a7f89512d92e83624e3de705bdfbfd0e5e381398e9d5428a00cc8a6d097d97e6ac8bd09b1a5577920a650114a522c1e2dcdc4f606fcbcee91770a9fada34d38cd7976a9228a0a0dd8661be8162e966aac26bea4c11458cd6ce22ddf7054cdd0a60ef3ec000000000000000800425cb75dc7ec92e9a5d29f9c99697d2a98ae0a9f35e4196c3faeb7a60a0290bf897846f6f0f1c163d6075119169d55d10da9ad0e4b2c636d200000009baaf94e2b2c48e70d8453f832eecfb1de2a3f38a5c986de9e37737dac74db251d5e9ea2b8ed39e91a7a17d01b49f7aaff7c4c73c3484bdcab362838ed940035b239a3646ef55b9f210ae14466b3acef9f8b28fb938a237e2e068ae4a6bce4407b54cc14614c2cdf877f00000000c4c2566179b9043a48da00000000003f000000cf23144e6c16b9235552aed83b6428f34d88c258a9ad16386bba51b60838fb11bc193a206b5a25b7233b222e4e68e0d1e88f26b9a45b6c29469530a37ea92aaf421cdcc1f594ecfaff9a79b56f8b38038002d29b3193cea9cd0a0ef4f58fa48f61071f548d411353965615c24c1860fd0dfae0f4cdf8c8f8645a289a79f9b919b674f0325d81eacaa8399324a304885da01733bb7917ec5e52718eb05f9c1ffd69f834150e9100c215968e8fb31c83526e6f66897569e28d01ca6135a2acca398c1415e0f9b58b63ee9dc33608ba7e5c4bdf3f37"], 0x0}, 0x94) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f480, 0x0, 0x399}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x5b, 0x0, 0x0, 0x5, 0x60000000, 0x0, 0xffffff44, 0x0, 0x0, 0x2, 0x0, 0x8}, 0xffffffffffffffb9) io_uring_enter(r0, 0x8ae, 0x6931, 0x17, 0x0, 0x0) 372.811588ms ago: executing program 2 (id=4316): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40901, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) bind$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0xf5, 0x0, 0x1, 0x5, 0x6, @local}, 0x14) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000240)=ANY=[], 0xfdef) 371.276308ms ago: executing program 1 (id=4317): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x3, @remote, 0x3}, r1, 0x7}}, 0x48) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000740)={0xffffffffffffffff}, 0x2, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r3, 0x10, 0x0, @in={0x2, 0x4e23, @empty}}}, 0x90) 329.72322ms ago: executing program 3 (id=4318): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 317.84015ms ago: executing program 1 (id=4319): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@fowner_eq}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fsname={'fsname', 0x3d, '.'}}, {@subj_type={'subj_type', 0x3d, '/)/-:$//('}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ") chdir(&(0x7f0000000040)='./file0\x00') r0 = open(&(0x7f0000000140)='.\x00', 0x0, 0x112) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) getdents(r0, 0x0, 0x0) 252.860242ms ago: executing program 1 (id=4320): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x80a, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c0002800800070003"], 0x3c}}, 0x0) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0) 252.007882ms ago: executing program 2 (id=4321): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0xb], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x8004, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000) 165.342655ms ago: executing program 3 (id=4322): sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@ipv6_newrule={0x44, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xa}, [@FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'macsec0\x00'}, @FRA_SRC={0x14, 0x2, @local}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x40002, &(0x7f0000000180)) ptrace$cont(0x21, r0, 0x80000001, 0x4) 114.349607ms ago: executing program 2 (id=4323): r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/mcfilter6\x00') r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000580)=""/118, 0x76}, {&(0x7f0000000d00)=""/93, 0x5d}], 0x2, 0x9, 0x100) inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000271) 92.058747ms ago: executing program 1 (id=4324): r0 = socket$netlink(0x10, 0x3, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) perf_event_open(&(0x7f0000000900)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x8}, 0x14, 0x0, 0x11004, 0x0, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0xb) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000001d00070f000200000000000007000000", @ANYRES32=r1], 0x24}, 0x1, 0x0, 0x0, 0x4008004}, 0x0) 17.8743ms ago: executing program 2 (id=4325): ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, &(0x7f0000000240)={{0x3, 0xe8b5c71a5eb6f040, 0x5, 0xb7a4, 0x1, 0xffff}, 0x341, [0xc, 0x40, 0xcd7, 0x4, 0x6, 0x0, 0x80000000, 0x7, 0x9, 0x7a18fde9, 0x9, 0xf12, 0x4, 0x3, 0x378, 0x9, 0x4, 0x0, 0x1, 0xffff06bd, 0x0, 0xf, 0x1a, 0xf2, 0x10, 0x9, 0x8, 0x10001, 0x401, 0x80000000, 0x401, 0x3ca5, 0x1, 0x0, 0xff, 0x40000004, 0x4, 0x3, 0x0, 0xaa80, 0x40000000, 0x80000000, 0x7fff, 0x7, 0x5, 0xa, 0x0, 0x10000, 0x405, 0x8, 0xffff, 0x91ba, 0x7, 0x9, 0x9, 0xb6, 0x24, 0xcb, 0x5, 0x7f, 0x5, 0x311, 0x66d1, 0xfffffffc, 0x9, 0xb6eb, 0xc74, 0x77, 0x1, 0xc0000000, 0x5cb5, 0xfffffffd, 0x401, 0xedf4, 0x4, 0x1000, 0x6, 0xfffffffe, 0x8001, 0xc1, 0x1, 0x8, 0x1, 0x32, 0x98, 0x7f, 0xffff, 0x401, 0x2, 0x2, 0x4680, 0x9a7f, 0xe665, 0x3c6e, 0x3, 0x7, 0x80, 0x4b, 0x9, 0x2, 0xb, 0x6, 0x4fa4, 0x80000000, 0x1, 0xb, 0x0, 0xfffffffa, 0x3, 0x8001, 0xfd, 0x101, 0x4, 0x0, 0xa, 0x1b, 0x202, 0x7ff, 0x9, 0x80000000, 0xffff, 0x9, 0x3, 0x6, 0x2, 0xffffff87, 0xe, 0xd, 0xf, 0x8, 0x9, 0x7, 0x6, 0x400, 0x8, 0xff2, 0x6, 0x0, 0x6, 0x0, 0x8, 0x1, 0x3, 0x664, 0x4, 0x9, 0x9, 0x2, 0x8, 0xfffffffd, 0xeb6, 0x0, 0x9, 0x10000, 0x1, 0x9, 0x9, 0xc6, 0x1, 0x4, 0x7ff, 0xe6, 0x6, 0x10001, 0x9, 0x68, 0x7, 0x201, 0x5, 0x3, 0x9a3f, 0x400000, 0x0, 0x80000067, 0xffffff7e, 0x7, 0x10000000, 0x10001, 0x7, 0x3, 0x10, 0x10a, 0xa, 0x40, 0x18, 0x80, 0xb5f8, 0x8bc, 0x3, 0x8000103, 0x5, 0xfffffffc, 0x4, 0x18000, 0x10, 0x1000, 0x288c, 0x1ffe, 0x73ee, 0x1, 0x5, 0x9, 0x7fffffff, 0x73, 0x6, 0x8, 0x6, 0x400, 0x40, 0x0, 0x0, 0x0, 0x546c, 0x981, 0x5aa, 0x7fff, 0x7, 0x4, 0x7, 0xc4c, 0x45e3, 0x5, 0x7, 0x3, 0x5, 0x3, 0x0, 0x1, 0x2, 0xffffffff, 0x4, 0x200000ce, 0xf, 0x0, 0x1, 0xa, 0x3, 0x0, 0x9, 0x9, 0x37c, 0x10001, 0x8, 0x1, 0x5, 0x2, 0x6, 0x4, 0x6, 0x1, 0x8, 0x6, 0xfffffffa, 0x5, 0x0, 0x9, 0x5, 0x2, 0x7, 0x3, 0xffffff1b, 0x9, 0x2, 0xd, 0x34ea, 0x10000, 0x0, 0x80002001, 0x8, 0x8000, 0x10004, 0x10, 0x8, 0x9, 0x5, 0x1, 0x6, 0x10001, 0x0, 0x5, 0x10000, 0x4, 0xffff, 0x2, 0x89, 0x2, 0x3, 0x1, 0x73, 0x3, 0x9, 0x4, 0x1, 0x9, 0x1, 0x8, 0x0, 0x81, 0x80000004, 0x9, 0x9, 0x0, 0x4, 0x10000004, 0x0, 0x1, 0xce5fb90f, 0x5, 0x4, 0x10001, 0xf, 0x9, 0x100, 0x44, 0x59b, 0x7, 0x8, 0x9, 0x3, 0x2, 0x4, 0x6, 0x0, 0x8, 0x40, 0xd3, 0x7, 0xffffffff, 0x89aa, 0x8, 0x0, 0xf0ce, 0x2, 0x1, 0x0, 0x2, 0xc6, 0x1000, 0x800001, 0x937, 0xa, 0x6, 0x3, 0xffffffff, 0x5, 0x9, 0x5, 0xffffffff, 0xbe, 0x1, 0x7, 0x0, 0xffffffff, 0x0, 0x3d6, 0x0, 0xae, 0x6, 0x1, 0xfffffeff, 0x4, 0x5, 0x7fff, 0x103, 0x7, 0x6, 0x709, 0x2, 0x49, 0x10, 0xfffffff7, 0xfffff772, 0x8, 0x80000000, 0x3, 0x7, 0xa9c, 0x9, 0x8, 0x1, 0x2, 0x8d, 0x1000, 0x69f, 0x1ff, 0x9, 0x10, 0x3, 0x10000, 0xffff0000, 0xf, 0x1, 0x3, 0xffffa9b4, 0x1, 0x4, 0x5, 0x9, 0x4b5f, 0x6, 0x7fffffff, 0xffffffff, 0x1, 0x80000000, 0xb, 0x0, 0x88d, 0x1, 0x7, 0x8, 0x1, 0x89, 0x6, 0x818a, 0x10, 0x8, 0x10, 0xfffffffc, 0xfffff001, 0xa, 0xfffffff7, 0x8000005, 0x4, 0xffd, 0x9, 0x10, 0xfffffffd, 0x4, 0xc2, 0x400, 0x4, 0x0, 0x80000000, 0xd, 0x2, 0x1, 0x0, 0x20000003, 0xb6, 0x101, 0x401, 0x2, 0x7, 0xc, 0x6623258, 0xf2, 0x741, 0xfffffffc, 0x9, 0xffffa0a6, 0xc, 0x11, 0x2, 0x8, 0x9, 0x1, 0x7f, 0x98, 0x9, 0xb, 0x800, 0x4, 0x9, 0x5, 0x7, 0x7, 0x8, 0xfe, 0x7f, 0x9, 0x4, 0x6, 0x20080000, 0x2, 0x8000, 0x0, 0x0, 0x1000, 0xb, 0x0, 0x7, 0x8000000, 0x0, 0xfff, 0x8101, 0x4, 0x0, 0x9, 0xc, 0x5, 0xffe, 0x100, 0xffff, 0x1, 0x401, 0xf0, 0x0, 0xfffff53d, 0x9, 0x2, 0x6, 0x0, 0x4, 0x4b15, 0x10000, 0x1, 0x6, 0x1, 0xd, 0x8, 0x4, 0xfffffe01, 0x1, 0x6, 0x0, 0x2, 0x10001, 0x1, 0x7, 0xe4ce, 0x5, 0x9, 0xffffc487, 0x204, 0x10002, 0x1000, 0x7, 0x6, 0x6, 0x8, 0xfffffe00, 0x1, 0x1, 0x0, 0xe, 0x2, 0x2, 0x4, 0x0, 0xb66d, 0x3, 0x1000, 0x1eb4bce6, 0x10, 0x8, 0x1, 0x5, 0x1, 0x5, 0x9, 0x1000, 0x7, 0x62f2f805, 0x5, 0x3, 0xffffffff, 0x2, 0x7f, 0x6, 0xd, 0x40, 0x5, 0x2, 0xa, 0x5, 0x6, 0x80000000, 0x25, 0x8, 0x7, 0x7, 0x1, 0x5, 0x9, 0x6709, 0x10001, 0x0, 0x80, 0x8, 0x6, 0x0, 0xa95a, 0x0, 0x5, 0x2, 0x2, 0x4, 0xfff9, 0x80000001, 0x5, 0x1, 0x9, 0x0, 0xb7, 0x3, 0xff, 0x9, 0x0, 0x80, 0xfea5, 0x7fff, 0x7, 0x7, 0x7, 0x7485, 0x197, 0x8, 0x0, 0x5, 0xf, 0x3, 0xe, 0x8, 0x1000, 0x3, 0x7, 0x382d, 0x459, 0xcad, 0x9, 0x0, 0x2, 0x119, 0x6, 0x20000a4, 0xe0, 0xfffffffb, 0x5, 0xffffffff, 0x2, 0x4007, 0xa05a, 0x0, 0x0, 0x0, 0x35, 0x8, 0x1, 0x2, 0x30, 0xb, 0x101, 0x2, 0x9, 0x3, 0x7, 0x8, 0x8, 0x1, 0x2, 0x4, 0x15294b70, 0x3, 0x3, 0x2, 0x1, 0xf, 0x9, 0x1, 0x80000000, 0x9, 0x8001, 0x5, 0x800081, 0x1, 0x2, 0x3fd, 0x1df, 0x6, 0x6, 0xfffffffa, 0x81, 0x9, 0x2, 0x9, 0x1, 0x9, 0x7, 0x2c1, 0x9e95, 0x0, 0xfffffedd, 0x30c8, 0x2, 0x38a0, 0x7b, 0x0, 0x8, 0x4, 0x6, 0x9, 0x0, 0x8, 0x5, 0x8, 0x1ff, 0x7fff, 0x3, 0x9, 0x8, 0x2b, 0x200006, 0x4, 0x7, 0x2, 0x4, 0xbfb, 0x7, 0x405, 0x6, 0x4, 0x91, 0x9, 0x8, 0x3, 0x6ae574d2, 0x6, 0xfffffe00, 0x1000, 0x5, 0x92, 0xffffffff, 0x7fffffff, 0xd7, 0x8001, 0x905, 0x3, 0x6, 0xfffffb31, 0xb, 0x4, 0x7, 0x8, 0x1, 0x6, 0x1, 0xff, 0x103, 0x10000004, 0x3, 0x6, 0x80000001, 0x0, 0x100a, 0x7fffffff, 0x7fff, 0x2, 0xfffffff8, 0x2, 0x9af, 0x10001, 0x8, 0x4, 0x8, 0x6, 0x7742348d, 0x5, 0x5, 0x1f, 0x40, 0x0, 0x6, 0xffffffff, 0x7, 0x7, 0x8, 0x17f, 0x6, 0x2, 0x1, 0x6, 0x14827783, 0xb, 0xe, 0x5, 0x1, 0xfe7, 0xfffffffc, 0x8, 0x7ff, 0x3e9, 0x0, 0x3, 0x2000, 0xa, 0x3, 0x9, 0x80000001, 0x81, 0x8, 0x14, 0x8, 0x9, 0x80, 0xd, 0xf28c, 0x7, 0x6, 0x4, 0x7fffffff, 0xffff, 0x7fffffff, 0xc9, 0x2, 0xfffffffe, 0x924, 0x499, 0x100, 0x1, 0x5, 0xffff351b, 0x7, 0xfffffffb, 0x3, 0x9, 0x2, 0x7, 0x4, 0x4, 0x4, 0xff, 0xee, 0x2, 0x4, 0x8, 0x9f, 0x7, 0x3, 0x9, 0xc9, 0x1, 0x1, 0x1, 0xfffffff7, 0x0, 0x6, 0x5, 0x6, 0x400, 0x51, 0x7, 0xefb, 0x200000b8, 0x1, 0x5, 0xfffffff7, 0x7, 0x7, 0x4, 0x6330, 0xff, 0x6, 0xea, 0xbb2d, 0xfff, 0x7, 0x6, 0x0, 0x6, 0xffff, 0xfffffffa, 0x3, 0x0, 0x1, 0x6, 0xfffffc00, 0x5, 0x7, 0x64c822e3, 0x9, 0x6, 0x80, 0x6, 0xfff, 0x0, 0xa7b, 0x62cc, 0xfffffff7, 0x7, 0x40, 0xa, 0x9b, 0x3, 0xe, 0xf01, 0x1, 0x3, 0x40, 0x3, 0x4, 0x5, 0x5, 0x7ff, 0x5, 0x8, 0x5, 0x3, 0x8, 0x2, 0x80000001, 0x54, 0x400, 0x1, 0x8, 0xa, 0x9, 0x10000c0, 0x3, 0x72, 0x80, 0x1000, 0x7, 0x800, 0x6, 0xd19, 0x3, 0x93c, 0x6, 0x20000000, 0x0, 0xe, 0x5, 0x3, 0xfffffffa, 0xa01, 0xf3, 0xffffff00, 0x8, 0xe, 0x3, 0x3ff, 0x5, 0x2, 0x6, 0xa3, 0xffff, 0xfffffff9, 0x9, 0x5, 0x62, 0x2, 0x1, 0xfffffffa, 0x2, 0x2, 0x9, 0x7, 0x0, 0x7, 0x8, 0x10000, 0x42, 0xaa1, 0x7, 0x2b, 0x6, 0x10, 0x5, 0x200, 0x9, 0x6, 0x3, 0x8, 0x10, 0x4, 0x6, 0x633, 0xf05, 0x0, 0x101, 0x200, 0x8, 0x7ff, 0x0, 0x40, 0x1, 0x10000, 0x9, 0x40, 0x9, 0x0, 0x7f, 0x8, 0x6, 0xe, 0x3, 0x80000001, 0x0, 0x8, 0x8, 0x7, 0xde, 0x6, 0x89, 0x0, 0x100, 0x1, 0x9, 0x6, 0x400, 0x1, 0x0, 0x200, 0xe9ab, 0x3, 0x8000, 0x13, 0x2, 0x2, 0x43, 0x3ff, 0x0, 0x7, 0xc, 0x401, 0x6, 0x7, 0xa, 0xf, 0xf39d, 0x71, 0xfff, 0x7, 0x8]}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0xfd5e, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffff20, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x700, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffc4b}, @timestamp={0x5, 0x2, 0xffffff07, 0x11}, @generic={0x0, 0x2, "d588380003c0"}]}}}}}}, 0xfd6c) 324.67µs ago: executing program 1 (id=4326): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r0, &(0x7f0000000500)={@val={0x70}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x4000, 0x0, 0x2f, 0x0, @multicast1, @local}, {0x0, 0x6558, 0x24, 0x0, @wg=@data={0x4, 0x0, 0x5865, "3b90ee9a2fda88a89bbdda64"}}}}}}}, 0x4a) 0s ago: executing program 3 (id=4327): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb10000a8880008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') preadv(r2, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/194, 0xc2}], 0x1, 0x5fae, 0x5) kernel console output (not intermixed with test programs): enied { execute } for pid=10190 comm="syz.0.2790" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 192.592598][T10224] netlink: 'syz.4.2805': attribute type 1 has an invalid length. [ 192.620791][T10226] xt_l2tp: invalid flags combination: 0 [ 192.711138][ T28] audit: type=1400 audit(1774857644.607:955): avc: denied { create } for pid=10229 comm="syz.4.2808" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 192.843036][T10232] EXT4-fs error (device loop3): ext4_do_update_inode:5602: inode #15: comm syz.3.2807: corrupted inode contents [ 192.870668][ T28] audit: type=1400 audit(1774857644.637:956): avc: denied { mounton } for pid=10229 comm="syz.4.2808" path="/516/file0" dev="tmpfs" ino=2667 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 192.900158][ T28] audit: type=1400 audit(1774857644.677:957): avc: denied { unlink } for pid=3316 comm="syz-executor" name="file0" dev="tmpfs" ino=2667 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 192.902814][T10232] fserror_report: 7 callbacks suppressed [ 192.902831][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.009504][T10232] EXT4-fs error (device loop3): ext4_dirty_inode:6495: inode #15: comm syz.3.2807: mark_inode_dirty error [ 193.059570][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.059800][T10232] EXT4-fs error (device loop3): ext4_do_update_inode:5602: inode #15: comm syz.3.2807: corrupted inode contents [ 193.117119][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.117340][T10232] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #15: comm syz.3.2807: mark_inode_dirty error [ 193.167077][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.167268][T10232] EXT4-fs error (device loop3): ext4_do_update_inode:5602: inode #15: comm syz.3.2807: corrupted inode contents [ 193.222589][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.222820][T10232] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #15: comm syz.3.2807: mark_inode_dirty error [ 193.254270][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.271064][T10232] EXT4-fs error (device loop3): ext4_do_update_inode:5602: inode #15: comm syz.3.2807: corrupted inode contents [ 193.302810][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.303055][T10232] EXT4-fs error (device loop3): ext4_truncate:4602: inode #15: comm syz.3.2807: mark_inode_dirty error [ 193.337083][T10232] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 193.337316][T10232] EXT4-fs error (device loop3): ext4_evict_inode:276: comm syz.3.2807: couldn't truncate inode 15 (err -117) [ 193.419106][ T28] audit: type=1400 audit(1774857645.297:958): avc: denied { map } for pid=10261 comm="syz.4.2822" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 193.482430][T10201] kexec: Could not allocate control_code_buffer [ 193.546325][T10285] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2833'. [ 193.640295][T10297] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2839'. [ 193.721297][T10309] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2845'. [ 193.739870][T10312] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2846'. [ 193.751139][T10316] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2847'. [ 193.771715][T10316] netlink: 'syz.4.2847': attribute type 5 has an invalid length. [ 193.881684][ T28] audit: type=1400 audit(1774857645.777:959): avc: denied { ioctl } for pid=10330 comm="syz.1.2856" path="socket:[26555]" dev="sockfs" ino=26555 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 193.998775][T10353] SELinux: policydb table sizes (8,16453) do not match mine (8,7) [ 194.013696][T10353] SELinux: failed to load policy [ 194.051602][T10364] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2872'. [ 194.285424][T10404] Symlink component flag not implemented [ 194.292146][T10404] Symlink component flag not implemented [ 194.412148][T10396] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 194.412148][T10396] [ 194.461379][T10419] EXT4-fs: Ignoring removed nomblk_io_submit option [ 194.512886][T10411] 8021q: adding VLAN 0 to HW filter on device bond10 [ 194.575925][T10433] netlink: 'syz.1.2902': attribute type 3 has an invalid length. [ 194.686220][T10416] 8021q: adding VLAN 0 to HW filter on device bond10 [ 194.836892][T10467] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2917'. [ 195.065646][T10495] random: crng reseeded on system resumption [ 195.074869][T10495] Unrecognized hibernate image header format! [ 195.088984][T10495] PM: hibernation: Image mismatch: architecture specific data [ 195.169397][T10509] 9p: Bad value for 'wfdno' [ 195.269464][T10527] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2947'. [ 195.356634][T10540] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2953'. [ 195.375918][T10540] netlink: 43 bytes leftover after parsing attributes in process `syz.0.2953'. [ 195.385735][T10540] netlink: 'syz.0.2953': attribute type 5 has an invalid length. [ 195.462174][T10543] 8021q: adding VLAN 0 to HW filter on device bond10 [ 195.477500][T10552] set_capacity_and_notify: 11 callbacks suppressed [ 195.477516][T10552] loop0: detected capacity change from 0 to 512 [ 195.509231][T10552] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 195.560666][T10562] loop0: detected capacity change from 0 to 256 [ 195.740156][T10582] loop2: detected capacity change from 0 to 4096 [ 195.749541][T10582] EXT4-fs mount: 54 callbacks suppressed [ 195.749621][T10582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.786858][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.811191][T10591] tipc: Enabling not permitted [ 195.816931][T10591] tipc: Enabling of bearer rejected, failed to enable media [ 196.203075][T10649] loop2: detected capacity change from 0 to 128 [ 196.244516][T10649] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 196.265885][T10657] loop3: detected capacity change from 0 to 512 [ 196.276599][T10649] FAT-fs (loop2): Filesystem has been set read-only [ 196.277383][T10659] loop1: detected capacity change from 0 to 256 [ 196.336923][T10657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.351047][T10657] ext4 filesystem being mounted at /606/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.373051][T10657] EXT4-fs warning (device loop3): verify_group_input:137: Cannot add at group 5 (only 1 groups) [ 196.431338][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.504668][ T28] kauditd_printk_skb: 16 callbacks suppressed [ 196.504681][ T28] audit: type=1400 audit(1774857648.397:976): avc: denied { read } for pid=10687 comm="syz.0.3021" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 196.770982][T10732] loop4: detected capacity change from 0 to 1024 [ 196.807624][T10732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.854482][ T28] audit: type=1400 audit(1774857648.747:977): avc: denied { unlink } for pid=10731 comm="syz.4.3045" name="file1" dev="loop4" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 196.878016][T10732] EXT4-fs error (device loop4): ext4_generic_delete_entry:2666: inode #12: block 7: comm syz.4.3045: bad entry in directory: inode out of bounds - offset=0, inode=150994957, rec_len=16, size=56 fake=0 [ 196.924965][T10755] loop0: detected capacity change from 0 to 128 [ 196.938987][ T28] audit: type=1400 audit(1774857648.807:978): avc: denied { recv } for pid=3420 comm="kworker/0:4" saddr=10.128.0.163 src=30036 daddr=10.128.0.69 dest=35552 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 196.941854][T10732] EXT4-fs (loop4): Remounting filesystem read-only [ 197.025051][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.061838][ T28] audit: type=1326 audit(1774857648.947:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.075384][T10769] loop3: detected capacity change from 0 to 1024 [ 197.088001][ T28] audit: type=1326 audit(1774857648.947:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.153240][ T28] audit: type=1326 audit(1774857648.947:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.182204][T10778] SELinux: failed to load policy [ 197.188334][T10769] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.256763][ T28] audit: type=1326 audit(1774857648.947:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.298242][T10784] loop0: detected capacity change from 0 to 128 [ 197.321016][ T28] audit: type=1326 audit(1774857648.987:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.329163][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.346609][ T28] audit: type=1326 audit(1774857648.987:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.395915][ T28] audit: type=1326 audit(1774857648.987:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10763 comm="syz.2.3061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 197.568526][T10817] FAT-fs (loop3): Directory bread(block 64) failed [ 197.576815][T10816] netlink: 'syz.2.3082': attribute type 2 has an invalid length. [ 197.587538][T10817] FAT-fs (loop3): Directory bread(block 65) failed [ 197.603153][T10811] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.604020][T10817] FAT-fs (loop3): Directory bread(block 66) failed [ 197.640322][T10817] FAT-fs (loop3): Directory bread(block 67) failed [ 197.647229][T10817] FAT-fs (loop3): Directory bread(block 68) failed [ 197.656128][T10817] FAT-fs (loop3): Directory bread(block 69) failed [ 197.674636][T10817] FAT-fs (loop3): Directory bread(block 70) failed [ 197.685711][T10823] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.699847][T10823] ext4 filesystem being mounted at /594/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.701820][T10817] FAT-fs (loop3): Directory bread(block 71) failed [ 197.720582][T10823] EXT4-fs error (device loop0): ext4_get_first_dir_block:3527: inode #12: comm syz.0.3085: Attempting to read directory block (0) that is past i_size (3) [ 197.743504][T10817] FAT-fs (loop3): Directory bread(block 72) failed [ 197.757827][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.774212][T10809] 8021q: adding VLAN 0 to HW filter on device bond10 [ 197.799446][T10817] FAT-fs (loop3): Directory bread(block 73) failed [ 197.819378][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.923457][T10846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.972850][T10846] ext4 filesystem being mounted at /596/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.012813][T10846] EXT4-fs error (device loop0): ext4_validate_inode_bitmap:105: comm syz.0.3095: Corrupt inode bitmap - block_group = 0, inode_bitmap = 20 [ 198.036406][T10863] EXT4-fs: Ignoring removed nobh option [ 198.043803][T10846] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem [ 198.077878][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.118255][T10863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.147186][T10863] ext4 filesystem being mounted at /625/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 198.226806][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.820212][T10941] 8021q: adding VLAN 0 to HW filter on device bond11 [ 198.938257][T10945] EXT4-fs (loop3): bad geometry: bigalloc file system with non-zero first_data_block [ 198.938257][T10945] [ 199.179182][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.199142][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.206734][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.226490][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.245920][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.262896][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.279663][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.295897][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.306801][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.316348][ T3387] hid-generic 0000:0000:0004.0001: unknown main item tag 0x0 [ 199.335292][ T3387] hid-generic 0000:0000:0004.0001: hidraw0: HID v0.03 Device [syz0] on syz1 [ 199.416490][T10972] fido_id[10972]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 199.509215][T10999] __nla_validate_parse: 6 callbacks suppressed [ 199.509233][T10999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3161'. [ 199.545747][T11003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3162'. [ 199.704565][T11031] EXT4-fs: Ignoring removed orlov option [ 199.738546][T11031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.752143][T11031] ext4 filesystem being mounted at /650/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.767982][T11031] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.3174: corrupted xattr block 33: bad e_name length [ 199.783809][T11031] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 199.794775][T11031] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.3174: corrupted xattr block 33: bad e_name length [ 199.795517][T11039] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 199.817535][T11031] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 199.831978][T11039] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 199.841085][T11039] EXT4-fs (loop1): 1 truncate cleaned up [ 199.849825][T11031] EXT4-fs error (device loop3): ext4_xattr_block_find:1879: inode #15: comm syz.3.3174: corrupted xattr block 33: bad e_name length [ 199.863504][T11039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.893792][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.921504][T11052] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 199.937672][T11039] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 199.947694][T11052] vhci_hcd vhci_hcd.4: default hub control req: 4018 v0005 i0001 l0 [ 199.963994][T11054] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3184'. [ 199.984759][T11056] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3185'. [ 199.997063][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.050518][T11066] netlink: 'syz.4.3190': attribute type 298 has an invalid length. [ 200.105103][T11076] netlink: 480 bytes leftover after parsing attributes in process `syz.3.3195'. [ 200.226663][T11094] tipc: Started in network mode [ 200.235058][T11092] EXT4-fs: Ignoring removed mblk_io_submit option [ 200.243462][T11094] tipc: Node identity fe80000000000000000000000000002, cluster identity 4711 [ 200.256369][T11094] tipc: Enabling of bearer rejected, failed to enable media [ 200.268638][T11092] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 200.268638][T11092] [ 200.317979][T11100] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 200.361517][T11114] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3214'. [ 200.377268][T11118] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 200.400656][T11118] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.3213: bad orphan inode 131083 [ 200.443327][T11103] 8021q: adding VLAN 0 to HW filter on device bond15 [ 200.452544][T11118] fserror_report: 3 callbacks suppressed [ 200.452558][T11118] loop1: lost filesystem error report for type 5 error -117 [ 200.484887][T11118] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.562128][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.590413][T11132] xt_nfacct: accounting object `\$9ZM#mU|^c\F9YⳈ' does not exist [ 200.658322][T11140] set_capacity_and_notify: 12 callbacks suppressed [ 200.658338][T11140] loop2: detected capacity change from 0 to 256 [ 200.927116][T11157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3232'. [ 200.968468][T11157] hsr0: entered promiscuous mode [ 200.988559][T11153] loop1: detected capacity change from 0 to 1024 [ 201.027067][T11153] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 201.027067][T11153] [ 201.189954][T11177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3239'. [ 201.189962][T11166] 8021q: adding VLAN 0 to HW filter on device bond11 [ 201.316152][T11196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3247'. [ 201.335265][T11196] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3247'. [ 201.438116][T11209] loop2: detected capacity change from 0 to 128 [ 201.599901][T11204] 8021q: adding VLAN 0 to HW filter on device bond16 [ 201.793669][T11243] loop2: detected capacity change from 0 to 1024 [ 201.814314][T11243] EXT4-fs: Ignoring removed nomblk_io_submit option [ 201.852026][T11243] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.912824][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 201.912847][ T28] audit: type=1400 audit(1774857653.807:1007): avc: denied { execute_no_trans } for pid=11252 comm="syz.3.3271" path="/663/file1" dev="tmpfs" ino=3415 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 201.959021][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.153424][ T28] audit: type=1400 audit(1774857654.047:1008): avc: denied { mount } for pid=11275 comm="syz.0.3282" name="/" dev="ramfs" ino=29407 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 202.177560][T11278] loop2: detected capacity change from 0 to 1024 [ 202.186702][T11278] EXT4-fs: Ignoring removed nobh option [ 202.219005][T11278] EXT4-fs: Ignoring removed bh option [ 202.240185][T11278] EXT4-fs (loop2): bad geometry: bigalloc file system with non-zero first_data_block [ 202.240185][T11278] [ 202.264710][T11284] loop3: detected capacity change from 0 to 512 [ 202.276095][ T28] audit: type=1326 audit(1774857654.167:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11287 comm="syz.0.3288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 202.302087][T11284] EXT4-fs: Ignoring removed mblk_io_submit option [ 202.328444][T11290] program syz.4.3289 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 202.367107][T11284] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 202.367123][ T28] audit: type=1326 audit(1774857654.167:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11287 comm="syz.0.3288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 202.426839][T11284] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.462093][T11284] ext4 filesystem being mounted at /668/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 202.492426][ T28] audit: type=1326 audit(1774857654.167:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11287 comm="syz.0.3288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 202.539949][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.568835][ T28] audit: type=1326 audit(1774857654.167:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11287 comm="syz.0.3288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 202.593575][ T28] audit: type=1400 audit(1774857654.417:1013): avc: denied { read append } for pid=11283 comm="syz.3.3286" name="file2" dev="loop3" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 202.617097][ T28] audit: type=1400 audit(1774857654.417:1014): avc: denied { open } for pid=11283 comm="syz.3.3286" path="/668/bus/file2" dev="loop3" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 202.642545][ T28] audit: type=1400 audit(1774857654.417:1015): avc: denied { ioctl } for pid=11283 comm="syz.3.3286" path="/668/bus/file2" dev="loop3" ino=16 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 202.719141][T11302] loop3: detected capacity change from 0 to 1024 [ 202.759038][T11302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.774572][T11308] loop4: detected capacity change from 0 to 512 [ 202.795070][T11308] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 202.820462][ T28] audit: type=1326 audit(1774857654.707:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11309 comm="syz.2.3295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 202.847695][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.862810][T11308] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.3297: Invalid inode bitmap blk 4 in block_group 0 [ 202.911968][T11308] loop4: lost filesystem error report for type 5 error -117 [ 202.912493][T11308] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.963442][T11308] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 203.035502][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.067332][T11324] bridge: RTM_NEWNEIGH with unconfigured vlan 2 on bridge0 [ 203.126435][T11326] loop4: detected capacity change from 0 to 2048 [ 203.196255][T11337] netlink: 'syz.0.3309': attribute type 10 has an invalid length. [ 203.222602][T11326] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.304208][T11345] loop0: detected capacity change from 0 to 512 [ 203.325869][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.335905][T11345] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 203.397082][T11350] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 203.435453][ T3311] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 203.535871][T11350] EXT4-fs (loop4): 1 orphan inode deleted [ 203.551967][T11350] EXT4-fs (loop4): 1 truncate cleaned up [ 203.578786][T11350] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.630936][T11352] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.3316: invalid block [ 203.678262][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.736439][T11352] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 203.737003][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 203.753658][ C1] EXT4-fs (loop2): initial error at time 1774857655: ext4_get_branch:178: inode 11: block 4294967295 [ 203.765204][ C1] EXT4-fs (loop2): last error at time 1774857655: ext4_get_branch:178: inode 11: block 4294967295 [ 203.810608][T11352] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3316: invalid indirect mapped block 4294967295 (level 1) [ 203.833128][T11352] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 203.835481][T11352] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.3316: invalid indirect mapped block 4294967295 (level 1) [ 203.927083][T11352] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 203.942056][T11352] EXT4-fs (loop2): 2 truncates cleaned up [ 203.990745][T11352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.039942][T11374] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.055863][T11370] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.069971][T11374] ext4 filesystem being mounted at /655/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.086776][T11352] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.3316: bg 0: block 5: invalid block bitmap [ 204.168139][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.184396][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.195431][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.227968][T11385] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 204.337384][T11385] EXT4-fs (loop1): 1 truncate cleaned up [ 204.343918][T11385] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.406962][T11396] program syz.2.3330 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.441493][T11403] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 204.458619][T11403] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3335: invalid indirect mapped block 4294967295 (level 1) [ 204.489324][T11407] EXT4-fs: Ignoring removed i_version option [ 204.547131][T11403] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 204.547340][T11403] EXT4-fs (loop4): Remounting filesystem read-only [ 204.557120][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 204.557150][ C1] EXT4-fs (loop4): initial error at time 1774857656: ext4_free_branches:1023: inode 11 [ 204.557178][ C1] EXT4-fs (loop4): last error at time 1774857656: ext4_free_branches:1023: inode 11 [ 204.601463][T11403] EXT4-fs (loop4): 2 truncates cleaned up [ 204.605720][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.611790][T11403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.653087][T11407] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.675971][T11412] program syz.1.3337 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.803290][T11414] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 204.803627][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.824554][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.852510][T11406] EXT4-fs (loop0): bad geometry: bigalloc file system with non-zero first_data_block [ 204.852510][T11406] [ 204.951656][T11414] EXT4-fs (loop1): 1 truncate cleaned up [ 204.967627][T11414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.021134][T11414] EXT4-fs warning (device loop1): ext4_group_add:1735: No reserved GDT blocks, can't resize [ 205.054298][ T3666] loop3: p2 p3 p7 [ 205.073058][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.108386][T11423] loop3: p2 p3 p7 [ 205.153303][ C0] operation not supported error, dev loop3, sector 216 op 0x9:(WRITE_ZEROES) flags 0x10800800 phys_seg 0 prio class 2 [ 205.289052][ T3296] udevd[3296]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 205.294259][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 205.300644][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 205.341548][T11439] tap0: tun_chr_ioctl cmd 1074025678 [ 205.370007][T11441] UHID_CREATE from different security context by process 1521 (syz.3.3351), this is not allowed. [ 205.393597][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 205.398401][ T3296] udevd[3296]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 205.415800][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 205.498478][T11427] EXT4-fs (loop4): bad geometry: bigalloc file system with non-zero first_data_block [ 205.498478][T11427] [ 205.511130][T11445] netlink: 'syz.1.3353': attribute type 10 has an invalid length. [ 205.527495][T11445] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.551458][T11450] __nla_validate_parse: 4 callbacks suppressed [ 205.551475][T11450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3353'. [ 205.558062][T11445] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.574212][T11445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 205.623649][T11445] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 205.687464][T11450] bridge_slave_0: left allmulticast mode [ 205.696107][T11450] bridge_slave_0: left promiscuous mode [ 205.724313][T11450] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.748181][T11450] bond0: (slave bridge0): Releasing backup interface [ 205.778214][T11452] tap0: tun_chr_ioctl cmd 1074025677 [ 205.783838][T11452] tap0: linktype set to 6 [ 205.979160][T11463] set_capacity_and_notify: 11 callbacks suppressed [ 205.979175][T11463] loop1: detected capacity change from 0 to 512 [ 206.005453][T11457] 8021q: adding VLAN 0 to HW filter on device bond12 [ 206.018554][T11463] EXT4-fs: Ignoring removed nobh option [ 206.030051][T11463] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 206.111536][T11463] EXT4-fs (loop1): 1 truncate cleaned up [ 206.128649][T11463] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 206.218614][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.470706][T11479] loop1: detected capacity change from 0 to 256 [ 206.511000][ T3387] kernel write not supported for file /uhid (pid: 3387 comm: kworker/1:3) [ 206.525925][T11479] FAT-fs (loop1): Directory bread(block 64) failed [ 206.557146][T11479] FAT-fs (loop1): Directory bread(block 65) failed [ 206.574087][T11479] FAT-fs (loop1): Directory bread(block 66) failed [ 206.597019][T11479] FAT-fs (loop1): Directory bread(block 67) failed [ 206.604024][T11479] FAT-fs (loop1): Directory bread(block 68) failed [ 206.630960][T11479] FAT-fs (loop1): Directory bread(block 69) failed [ 206.651185][T11479] FAT-fs (loop1): Directory bread(block 70) failed [ 206.667067][T11479] FAT-fs (loop1): Directory bread(block 71) failed [ 206.677118][T11479] FAT-fs (loop1): Directory bread(block 72) failed [ 206.683808][T11479] FAT-fs (loop1): Directory bread(block 73) failed [ 206.731830][T11479] syz.1.3362: attempt to access beyond end of device [ 206.731830][T11479] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 206.867775][T11501] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3371'. [ 207.190557][T11512] 8021q: adding VLAN 0 to HW filter on device bond13 [ 207.339641][T11519] loop0: detected capacity change from 0 to 128 [ 207.394793][T11521] program syz.0.3378 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 207.458761][T11525] loop2: detected capacity change from 0 to 1024 [ 207.486428][T11527] program syz.0.3381 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 207.508118][T11525] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.525846][T11525] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 207.552277][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.967422][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 207.967437][ T28] audit: type=1400 audit(1774857659.867:1045): avc: denied { mount } for pid=11546 comm="syz.1.3389" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 207.997178][T11545] loop3: detected capacity change from 0 to 512 [ 208.009037][T11547] loop1: detected capacity change from 0 to 164 [ 208.028662][T11547] rock: directory entry would overflow storage [ 208.041759][T11547] rock: sig=0x66, size=4, remaining=3 [ 208.063996][ T28] audit: type=1400 audit(1774857659.907:1046): avc: denied { unmount } for pid=11546 comm="syz.1.3389" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 208.113445][T11545] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.145955][T11552] loop0: detected capacity change from 0 to 512 [ 208.156076][T11554] loop1: detected capacity change from 0 to 512 [ 208.167253][T11545] ext4 filesystem being mounted at /700/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.170233][ T28] audit: type=1400 audit(1774857659.917:1047): avc: denied { mounton } for pid=11546 comm="syz.1.3389" path="/711/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 208.224136][T11554] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 208.238241][T11552] EXT4-fs error (device loop0): ext4_iget_extra_inode:5040: inode #15: comm syz.0.3391: corrupted in-inode xattr: invalid ea_ino [ 208.253598][T11545] EXT4-fs error (device loop3): ext4_add_entry:2415: inode #12: comm syz.3.3388: Directory hole found for htree leaf block 0 [ 208.266146][T11552] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 208.269416][T11557] batman_adv: batadv0: Adding interface: vlan2 [ 208.286877][T11557] batman_adv: batadv0: The MTU of interface vlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 208.286998][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 208.313979][T11557] batman_adv: batadv0: Not using interface vlan2 (retrying later): interface not active [ 208.320297][ C0] EXT4-fs (loop0): initial error at time 1774857660: ext4_iget_extra_inode:5040: inode 15 [ 208.320331][ C0] EXT4-fs (loop0): last error at time 1774857660: ext4_iget_extra_inode:5040: inode 15 [ 208.327039][T11552] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.3391: couldn't read orphan inode 15 (err -117) [ 208.377136][T11552] loop0: lost filesystem error report for type 5 error -117 [ 208.384577][T11554] EXT4-fs (loop1): 1 truncate cleaned up [ 208.400076][T11554] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.407382][ T28] audit: type=1326 audit(1774857660.297:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.441637][T11552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.455524][ T28] audit: type=1326 audit(1774857660.297:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.485668][ T28] audit: type=1326 audit(1774857660.297:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.485871][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.511562][ T28] audit: type=1326 audit(1774857660.297:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.522938][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.545548][ T28] audit: type=1326 audit(1774857660.297:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.579024][ T28] audit: type=1326 audit(1774857660.297:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.605187][ T28] audit: type=1326 audit(1774857660.297:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff600fdc819 code=0x7ffc0000 [ 208.618347][T11568] loop4: detected capacity change from 0 to 256 [ 208.623200][T11570] loop3: detected capacity change from 0 to 1024 [ 208.685793][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.699984][T11570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.749574][T11575] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.765181][T11583] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 208.768124][T11575] ext4 filesystem being mounted at /680/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 208.780715][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.839603][T11585] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 208.881633][T11585] EXT4-fs (loop4): 1 orphan inode deleted [ 208.890820][T11586] EXT4-fs error (device loop2): ext4_generic_delete_entry:2666: inode #12: block 32: comm syz.2.3399: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=8, size=2048 fake=0 [ 208.892298][T11585] EXT4-fs (loop4): 1 truncate cleaned up [ 208.927603][T11585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.983799][T11586] EXT4-fs (loop2): Remounting filesystem read-only [ 208.996582][T11591] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 209.000723][T11567] 8021q: adding VLAN 0 to HW filter on device bond11 [ 209.078584][T11591] EXT4-fs (loop0): 1 truncate cleaned up [ 209.087968][T11595] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3407: invalid indirect mapped block 4294967295 (level 0) [ 209.118619][T11595] loop3: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 209.127025][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 209.143838][ C0] EXT4-fs (loop3): initial error at time 1774857661: ext4_free_branches:1023: inode 16 [ 209.149504][T11595] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.3407: invalid indirect mapped block 4294967295 (level 1) [ 209.153999][ C0] EXT4-fs (loop3): last error at time 1774857661: ext4_free_branches:1023: inode 16 [ 209.180703][T11595] loop3: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 209.181023][T11595] EXT4-fs (loop3): 1 orphan inode deleted [ 209.196642][T11601] EXT4-fs: inline encryption not supported [ 209.227171][T11609] EXT4-fs: Ignoring removed orlov option [ 209.234852][T11601] ext4 filesystem being mounted at /641/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.246902][T11595] EXT4-fs (loop3): 1 truncate cleaned up [ 209.257288][T11601] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3409: bg 0: block 112: padding at end of block bitmap is not set [ 209.302965][T11601] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 60 with max blocks 3 with error 28 [ 209.317862][T11601] EXT4-fs (loop4): This should not happen!! Data will be lost [ 209.317862][T11601] [ 209.328268][T11601] EXT4-fs (loop4): Total free blocks count 0 [ 209.334548][T11601] EXT4-fs (loop4): Free/Dirty block details [ 209.340803][T11601] EXT4-fs (loop4): free_blocks=0 [ 209.352401][T11601] EXT4-fs (loop4): dirty_blocks=16 [ 209.358153][T11601] EXT4-fs (loop4): Block reservation details [ 209.364443][T11601] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 209.383338][T11621] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3414'. [ 209.423979][T11622] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 209.452206][ T3316] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 209.476749][T11622] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28 [ 209.491477][T11622] EXT4-fs (loop3): This should not happen!! Data will be lost [ 209.491477][T11622] [ 209.502126][T11622] EXT4-fs (loop3): Total free blocks count 0 [ 209.508508][T11622] EXT4-fs (loop3): Free/Dirty block details [ 209.514878][T11622] EXT4-fs (loop3): free_blocks=2415919504 [ 209.521586][T11622] EXT4-fs (loop3): dirty_blocks=16 [ 209.527692][T11622] EXT4-fs (loop3): Block reservation details [ 209.535903][T11622] EXT4-fs (loop3): i_reserved_data_blocks=1 [ 209.542985][T11633] netlink: 4556 bytes leftover after parsing attributes in process `syz.0.3421'. [ 209.567459][T11631] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 11 with error 28 [ 209.581837][T11637] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 209.607889][T11637] dvmrp1: linktype set to 774 [ 209.631966][T11631] EXT4-fs (loop3): This should not happen!! Data will be lost [ 209.631966][T11631] [ 209.686075][ T3319] EXT4-fs warning (device loop3): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 209.787033][T11641] 8021q: adding VLAN 0 to HW filter on device bond12 [ 209.865554][T11661] 8021q: adding VLAN 0 to HW filter on device bond14 [ 209.963759][T11679] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3438'. [ 210.109911][T11690] ext4 filesystem being mounted at /691/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.498091][T11720] EXT4-fs (loop1): 1 truncate cleaned up [ 210.585911][T11724] IPv6: NLM_F_CREATE should be specified when creating new route [ 210.638060][T11728] erspan0: entered promiscuous mode [ 210.706413][T11730] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 211.016275][T11754] bond17: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 211.033187][T11754] bond17 (unregistering): Released all slaves [ 211.080568][T11766] set_capacity_and_notify: 17 callbacks suppressed [ 211.080580][T11766] loop3: detected capacity change from 0 to 512 [ 211.097423][T11766] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 211.108190][T11766] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.3474: iget: bad i_size value: 38620345925642 [ 211.121638][T11766] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 211.122180][T11766] EXT4-fs (loop3): Remounting filesystem read-only [ 211.131777][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 211.131801][ C0] EXT4-fs (loop3): initial error at time 1774857663: ext4_orphan_get:1397: inode 15 [ 211.131842][ C0] EXT4-fs (loop3): last error at time 1774857663: ext4_orphan_get:1397: inode 15 [ 211.360056][T11786] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3483'. [ 211.394433][T11790] loop3: detected capacity change from 0 to 128 [ 211.403873][T11790] ext4 filesystem being mounted at /724/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 211.438835][T11793] loop3: detected capacity change from 0 to 2048 [ 211.451806][T11793] ext4 filesystem being mounted at /725/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.705891][T11799] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 211.715809][T11799] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 211.852682][T11803] loop1: detected capacity change from 0 to 1024 [ 211.872330][T11803] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 211.872330][T11803] [ 211.980705][T11805] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3490'. [ 212.315333][T11811] loop3: detected capacity change from 0 to 128 [ 212.828477][T11825] program syz.3.3498 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 212.902253][T11827] loop4: detected capacity change from 0 to 4096 [ 212.994361][T11829] loop3: detected capacity change from 0 to 1024 [ 213.057477][T11829] EXT4-fs: Ignoring removed nomblk_io_submit option [ 213.293319][T11837] loop2: detected capacity change from 0 to 512 [ 213.324735][T11837] ext4 filesystem being mounted at /701/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.512859][T11845] loop3: detected capacity change from 0 to 128 [ 213.563840][ T28] kauditd_printk_skb: 31 callbacks suppressed [ 213.563935][ T28] audit: type=1400 audit(1774857665.457:1086): avc: denied { mounton } for pid=11844 comm="syz.3.3504" path="/736/file0/file1" dev="loop3" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1 [ 213.636562][T11861] loop4: detected capacity change from 0 to 128 [ 213.686368][T11861] ext4 filesystem being mounted at /659/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 213.708683][ T28] audit: type=1400 audit(1774857665.597:1087): avc: denied { open } for pid=11863 comm="syz.1.3514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 213.744831][T11866] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 213.779113][ T28] audit: type=1400 audit(1774857665.597:1088): avc: denied { kernel } for pid=11863 comm="syz.1.3514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 213.800010][ T28] audit: type=1400 audit(1774857665.597:1089): avc: denied { tracepoint } for pid=11863 comm="syz.1.3514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 213.822461][T11861] EXT4-fs warning (device loop4): __ext4_ioctl:1558: Setting inode version is not supported with metadata_csum enabled. [ 213.839667][ T28] audit: type=1400 audit(1774857665.697:1090): avc: denied { write } for pid=11868 comm="syz.3.3516" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 214.322313][T11879] blkio.reset_stats is deprecated [ 214.347098][T11880] delete_channel: no stack [ 214.497021][ T28] audit: type=1400 audit(1774857666.387:1091): avc: denied { mount } for pid=11901 comm="syz.1.3532" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 214.544652][ T28] audit: type=1400 audit(1774857666.417:1092): avc: denied { unmount } for pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 214.560433][T11900] SELinux: ebitmap: truncated map [ 214.591138][T11900] SELinux: failed to load policy [ 214.613269][T11907] ext4 filesystem being mounted at /664/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.648600][T11907] EXT4-fs (loop4): shut down requested (1) [ 214.721526][T11919] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 214.740600][T11921] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 214.779996][T11919] EXT4-fs (loop1): 1 truncate cleaned up [ 214.889187][ T28] audit: type=1400 audit(1774857666.787:1093): avc: denied { mount } for pid=11939 comm="syz.0.3549" name="/" dev="hugetlbfs" ino=31369 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 214.937596][ T28] audit: type=1400 audit(1774857666.787:1094): avc: denied { write } for pid=11940 comm="syz.1.3548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 214.964502][ T28] audit: type=1326 audit(1774857666.787:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11940 comm="syz.1.3548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 215.036280][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3554'. [ 215.062525][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3554'. [ 215.324387][T11989] Invalid logical block size (-1) [ 215.411189][ T3553] hid_parser_main: 91 callbacks suppressed [ 215.411206][ T3553] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 215.443194][ T3553] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 215.467545][ T3666] loop1: p3 < > p4 < > [ 215.472026][ T3666] loop1: partition table partially beyond EOD, truncated [ 215.482932][ T3666] loop1: p3 start 4284289 is beyond EOD, truncated [ 215.503275][T12003] loop1: p3 < > p4 < > [ 215.508369][T12003] loop1: partition table partially beyond EOD, truncated [ 215.523007][T12003] loop1: p3 start 4284289 is beyond EOD, truncated [ 215.574193][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 215.718286][T12032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 215.752412][T12032] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 215.890554][T12042] 8021q: adding VLAN 0 to HW filter on device bond11 [ 216.020166][T12077] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.3605'. [ 216.033288][T12077] netlink: zone id is out of range [ 216.040934][T12077] netlink: zone id is out of range [ 216.047420][T12077] netlink: zone id is out of range [ 216.058061][T12077] netlink: zone id is out of range [ 216.074359][T12077] netlink: set zone limit has 8 unknown bytes [ 216.136688][T12088] set_capacity_and_notify: 5 callbacks suppressed [ 216.136750][T12088] loop1: detected capacity change from 0 to 128 [ 216.222183][T12090] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3611'. [ 216.319970][T12104] Failed to initialize the IGMP autojoin socket (err -2) [ 216.576057][T12114] loop4: detected capacity change from 0 to 1024 [ 216.584934][T12114] EXT4-fs: inline encryption not supported [ 216.634375][T12114] ext4 filesystem being mounted at /669/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.660143][T12114] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #15: block 3: comm syz.4.3621: lblock 3 mapped to illegal pblock 3 (length 3) [ 216.687992][T12114] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 216.757453][T12114] EXT4-fs (loop4): This should not happen!! Data will be lost [ 216.757453][T12114] [ 216.801663][T12119] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3621: bg 0: block 112: padding at end of block bitmap is not set [ 216.831849][T12119] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 216.849617][T12119] EXT4-fs (loop4): This should not happen!! Data will be lost [ 216.849617][T12119] [ 216.879726][T12119] EXT4-fs (loop4): Total free blocks count 0 [ 216.916563][T12119] EXT4-fs (loop4): Free/Dirty block details [ 216.949996][T12119] EXT4-fs (loop4): free_blocks=0 [ 216.956008][T12119] EXT4-fs (loop4): dirty_blocks=64 [ 216.961967][T12119] EXT4-fs (loop4): Block reservation details [ 216.968246][T12119] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 217.017156][T11818] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #15: block 8: comm kworker/u8:14: lblock 8 mapped to illegal pblock 8 (length 8) [ 217.029164][T12085] syz.3.3610 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 217.044270][ T3316] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 217.072538][T12085] CPU: 1 UID: 0 PID: 12085 Comm: syz.3.3610 Not tainted syzkaller #0 PREEMPT(full) [ 217.072628][T12085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 217.072640][T12085] Call Trace: [ 217.072648][T12085] [ 217.072656][T12085] __dump_stack+0x1d/0x30 [ 217.072681][T12085] dump_stack_lvl+0x95/0xd0 [ 217.072704][T12085] dump_stack+0x15/0x1b [ 217.072763][T12085] dump_header+0x80/0x240 [ 217.072785][T12085] oom_kill_process+0x295/0x350 [ 217.072807][T12085] out_of_memory+0x97d/0xb80 [ 217.072826][T12085] try_charge_memcg+0x62e/0xa10 [ 217.072974][T12085] mem_cgroup_swapin_charge_folio+0x103/0x1f0 [ 217.073006][T12085] __swap_cache_prepare_and_add+0x67/0x460 [ 217.073111][T12085] ? alloc_pages_mpol+0x217/0x260 [ 217.073135][T12085] swap_cache_alloc_folio+0xa2/0x120 [ 217.073159][T12085] swap_cluster_readahead+0x26e/0x3d0 [ 217.073296][T12085] swapin_readahead+0xde/0x840 [ 217.073389][T12085] ? __rcu_read_unlock+0x4e/0x70 [ 217.073407][T12085] ? __perf_event_task_sched_in+0xa65/0xad0 [ 217.073428][T12085] ? __list_add_valid_or_report+0x38/0xe0 [ 217.073480][T12085] ? xfd_validate_state+0x45/0xf0 [ 217.073503][T12085] ? __rcu_read_unlock+0x4e/0x70 [ 217.073520][T12085] ? swap_cache_get_folio+0x26f/0x280 [ 217.073633][T12085] do_swap_page+0x2fe/0x21e0 [ 217.073657][T12085] ? __schedule+0x93c/0xd40 [ 217.073681][T12085] ? __rcu_read_lock+0x36/0x50 [ 217.073699][T12085] ? pte_offset_map_rw_nolock+0x19e/0x200 [ 217.073742][T12085] handle_mm_fault+0xb46/0x3020 [ 217.073770][T12085] ? vma_start_read+0x1c7/0x2c0 [ 217.073795][T12085] do_user_addr_fault+0x62f/0x1050 [ 217.073846][T12085] ? trace_page_fault_user+0x1f/0xe0 [ 217.074048][T12085] exc_page_fault+0x62/0xa0 [ 217.074128][T12085] asm_exc_page_fault+0x26/0x30 [ 217.074150][T12085] RIP: 0033:0x7f9d72ff4f5e [ 217.074176][T12085] Code: e9 27 6a 13 00 0f 1f 80 00 00 00 00 48 83 c4 28 48 c7 c0 ff ff ff ff 5b 5d c3 66 90 41 57 41 56 41 55 41 54 55 53 48 83 ec 38 <80> 3d 9b d0 3a 00 00 89 7c 24 18 48 89 74 24 28 0f 85 cd 09 00 00 [ 217.074259][T12085] RSP: 002b:00007ffeb2aa2800 EFLAGS: 00010206 [ 217.074277][T12085] RAX: 00007f9d733a5fa0 RBX: 00007f9d733a5fa0 RCX: 0000000000000026 [ 217.074332][T12085] RDX: 0000000000000001 RSI: 00007f9d733a6038 RDI: 0000000000000003 [ 217.074501][T12085] RBP: 00007f9d733a7da0 R08: 0000000000000001 R09: 0000000000000001 [ 217.074650][T12085] R10: 0000000000000026 R11: 0000000000000246 R12: 0000000000034f64 [ 217.074664][T12085] R13: 00007f9d733a5fac R14: 0000000000034c58 R15: 00007ffeb2aa2970 [ 217.074726][T12085] [ 217.074913][T12085] memory: usage 307200kB, limit 307200kB, failcnt 524 [ 217.339927][T12085] memory+swap: usage 307740kB, limit 9007199254740988kB, failcnt 0 [ 217.348008][T12085] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 217.357097][T12085] Memory cgroup stats for /syz3: [ 217.357327][T12085] cache 0 [ 217.365320][T12085] rss 4096 [ 217.368497][T12085] shmem 0 [ 217.371826][T12085] mapped_file 0 [ 217.375816][T12085] dirty 0 [ 217.379660][T12085] writeback 8192 [ 217.383287][T12085] workingset_refault_anon 53 [ 217.388084][T12085] workingset_refault_file 384 [ 217.394671][T12085] swap 552960 [ 217.399174][T12085] swapcached 9367552 [ 217.403428][T12085] pgpgin 148246 [ 217.407197][T12085] pgpgout 148241 [ 217.410834][T12085] pgfault 202983 [ 217.414427][T12085] pgmajfault 31 [ 217.418198][T12085] inactive_anon 8192 [ 217.422270][T12085] active_anon 12288 [ 217.426315][T12085] inactive_file 0 [ 217.431632][T12085] active_file 0 [ 217.446180][T12085] unevictable 0 [ 217.463927][T12085] hierarchical_memory_limit 314572800 [ 217.485173][T12085] hierarchical_memsw_limit 9223372036854771712 [ 217.569103][T12085] total_cache 0 [ 217.574176][T12085] total_rss 4096 [ 217.577992][T12085] total_shmem 0 [ 217.581480][T12085] total_mapped_file 0 [ 217.585506][T12085] total_dirty 0 [ 217.590113][T12085] total_writeback 8192 [ 217.594564][T12085] total_workingset_refault_anon 53 [ 217.600817][T12085] total_workingset_refault_file 384 [ 217.606299][T12085] total_swap 552960 [ 217.610340][T12085] total_swapcached 9367552 [ 217.614752][T12085] total_pgpgin 148246 [ 217.618859][T12085] total_pgpgout 148241 [ 217.623236][T12085] total_pgfault 202983 [ 217.627905][T12085] total_pgmajfault 31 [ 217.641534][T12085] total_inactive_anon 8192 [ 217.646508][T12085] total_active_anon 12288 [ 217.650978][T12085] total_inactive_file 0 [ 217.655304][T12085] total_active_file 0 [ 217.659834][T12085] total_unevictable 0 [ 217.664108][T12085] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.3610,pid=12085,uid=0 [ 217.679172][T12085] Memory cgroup out of memory: Killed process 12085 (syz.3.3610) total-vm:96080kB, anon-rss:1228kB, file-rss:22292kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 217.725295][T12160] 8021q: adding VLAN 0 to HW filter on device bond12 [ 217.817562][T12180] netlink: 236 bytes leftover after parsing attributes in process `syz.0.3647'. [ 217.832350][T12180] netlink: 236 bytes leftover after parsing attributes in process `syz.0.3647'. [ 217.915322][T12182] loop3: detected capacity change from 0 to 8192 [ 217.916686][T12191] loop2: detected capacity change from 0 to 128 [ 217.971161][T12191] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3653'. [ 218.001950][T12191] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3653'. [ 218.144000][T12204] loop2: detected capacity change from 0 to 8192 [ 218.256571][ T4274] Bluetooth: hci0: Frame reassembly failed (-84) [ 218.347839][ T3313] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1) [ 218.356159][ T3313] FAT-fs (loop2): Filesystem has been set read-only [ 218.705103][T12202] syz.4.3659 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 218.746064][T12202] CPU: 1 UID: 0 PID: 12202 Comm: syz.4.3659 Not tainted syzkaller #0 PREEMPT(full) [ 218.746090][T12202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 218.746103][T12202] Call Trace: [ 218.746131][T12202] [ 218.746140][T12202] __dump_stack+0x1d/0x30 [ 218.746165][T12202] dump_stack_lvl+0x95/0xd0 [ 218.746254][T12202] dump_stack+0x15/0x1b [ 218.746277][T12202] dump_header+0x80/0x240 [ 218.746301][T12202] oom_kill_process+0x295/0x350 [ 218.746323][T12202] out_of_memory+0x97d/0xb80 [ 218.746391][T12202] try_charge_memcg+0x62e/0xa10 [ 218.746425][T12202] obj_cgroup_charge_pages+0x23/0xc0 [ 218.746482][T12202] __memcg_kmem_charge_page+0x9e/0x170 [ 218.746505][T12202] __alloc_frozen_pages_noprof+0x18a/0x360 [ 218.746593][T12202] alloc_pages_mpol+0xb3/0x260 [ 218.746628][T12202] alloc_pages_noprof+0x8f/0x140 [ 218.746680][T12202] __vmalloc_node_range_noprof+0xa46/0x12b0 [ 218.746720][T12202] __kvmalloc_node_noprof+0x3d4/0x650 [ 218.746785][T12202] ? futex_hash_allocate+0x190/0x9d0 [ 218.746809][T12202] ? futex_hash_allocate+0x190/0x9d0 [ 218.746859][T12202] futex_hash_allocate+0x190/0x9d0 [ 218.746901][T12202] ? cap_task_prctl+0x13f/0x6e0 [ 218.746929][T12202] futex_hash_prctl+0xd8/0xf0 [ 218.746972][T12202] __se_sys_prctl+0xa3d/0x13f0 [ 218.747002][T12202] __x64_sys_prctl+0x67/0x80 [ 218.747040][T12202] x64_sys_call+0x2533/0x3020 [ 218.747061][T12202] do_syscall_64+0x12c/0x370 [ 218.747090][T12202] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.747115][T12202] RIP: 0033:0x7fefae20c819 [ 218.747208][T12202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 218.747227][T12202] RSP: 002b:00007fefacc67028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 218.747247][T12202] RAX: ffffffffffffffda RBX: 00007fefae485fa0 RCX: 00007fefae20c819 [ 218.747260][T12202] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e [ 218.747271][T12202] RBP: 00007fefae2a2c91 R08: 0000000000000000 R09: 0000000000000000 [ 218.747313][T12202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.747326][T12202] R13: 00007fefae486038 R14: 00007fefae485fa0 R15: 00007ffe3354c8a8 [ 218.747368][T12202] [ 218.760170][T12243] loop2: detected capacity change from 0 to 512 [ 218.771675][T12202] memory: usage 307200kB, limit 307200kB, failcnt 284 [ 218.995001][T12202] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0 [ 219.003845][T12202] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 219.003871][T12243] EXT4-fs error (device loop2): ext4_iget_extra_inode:5040: inode #15: comm syz.2.3677: corrupted in-inode xattr: invalid ea_ino [ 219.003894][T12243] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 219.016996][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 219.025513][T12202] Memory cgroup stats for [ 219.035151][ C0] EXT4-fs (loop2): initial error at time 1774857670: ext4_iget_extra_inode:5040: inode 15 [ 219.042754][T12202] /syz4 [ 219.047412][ C0] EXT4-fs (loop2): last error at time 1774857670: ext4_iget_extra_inode:5040: inode 15 [ 219.047563][T12243] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.3677: couldn't read orphan inode 15 (err -117) [ 219.077181][T12202] : [ 219.083927][T12243] loop2: lost filesystem error report for type 5 error -117 [ 219.085091][T12202] cache 4096 [ 219.097568][T12202] rss 4096 [ 219.100918][T12202] shmem 0 [ 219.104247][T12202] mapped_file 4096 [ 219.108809][T12202] dirty 0 [ 219.111949][T12202] writeback 0 [ 219.115552][T12202] workingset_refault_anon 272 [ 219.120828][T12202] workingset_refault_file 133 [ 219.125871][T12202] swap 184320 [ 219.129313][T12202] swapcached 15499264 [ 219.133725][T12202] pgpgin 149041 [ 219.137446][T12202] pgpgout 149037 [ 219.141507][T12202] pgfault 200494 [ 219.145355][T12202] pgmajfault 27 [ 219.149706][T12202] inactive_anon 4096 [ 219.153668][T12202] active_anon 0 [ 219.157527][T12202] inactive_file 8192 [ 219.161684][T12202] active_file 4096 [ 219.165469][T12202] unevictable 0 [ 219.169672][T12202] hierarchical_memory_limit 314572800 [ 219.175730][T12202] hierarchical_memsw_limit 9223372036854771712 [ 219.189862][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 219.189882][ T28] audit: type=1326 audit(1774857671.087:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.205096][T12202] total_cache 4096 [ 219.220816][ T28] audit: type=1326 audit(1774857671.117:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.226261][T12202] total_rss 4096 [ 219.274594][T12202] total_shmem 0 [ 219.288748][ T28] audit: type=1326 audit(1774857671.117:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.313996][ T28] audit: type=1326 audit(1774857671.117:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.320355][T12202] total_mapped_file 4096 [ 219.345807][ T28] audit: type=1326 audit(1774857671.147:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.345816][T12202] total_dirty 0 [ 219.345828][T12202] total_writeback 0 [ 219.345838][T12202] total_workingset_refault_anon 272 [ 219.371191][T12255] loop0: detected capacity change from 0 to 512 [ 219.393792][ T28] audit: type=1326 audit(1774857671.147:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.394818][T12257] loop1: detected capacity change from 0 to 256 [ 219.426743][T12255] EXT4-fs: Ignoring removed nomblk_io_submit option [ 219.435467][ T28] audit: type=1326 audit(1774857671.147:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.459987][T12202] total_workingset_refault_file 133 [ 219.460003][T12202] total_swap 184320 [ 219.460009][T12202] total_swapcached 15499264 [ 219.460016][T12202] total_pgpgin 149041 [ 219.460022][T12202] total_pgpgout 149037 [ 219.460029][T12202] total_pgfault 200494 [ 219.460036][T12202] total_pgmajfault 27 [ 219.460043][T12202] total_inactive_anon 4096 [ 219.460050][T12202] total_active_anon 0 [ 219.460095][T12202] total_inactive_file 8192 [ 219.460102][T12202] total_active_file 4096 [ 219.460137][T12202] total_unevictable 0 [ 219.470141][ T28] audit: type=1326 audit(1774857671.147:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.474227][T12202] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null) [ 219.478897][T12255] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0002] [ 219.483994][T12202] ,cpuset= [ 219.489140][T12255] EXT4-fs (loop0): orphan cleanup on readonly fs [ 219.493455][T12202] / [ 219.508181][T12257] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 219.517328][T12202] ,mems_allowed=0 [ 219.561016][ T28] audit: type=1326 audit(1774857671.147:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.583526][T12257] FAT-fs (loop1): error, corrupted file size (i_pos 196, 16779008) [ 219.608018][T12202] ,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3659,pid=12200,uid=0 [ 219.630315][T12255] EXT4-fs warning (device loop0): ext4_enable_quotas:7261: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 219.630397][T12202] Memory cgroup out of memory: Killed process 12200 (syz.4.3659) total-vm:96080kB, anon-rss:1232kB, file-rss:22276kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000 [ 219.663587][T12257] FAT-fs (loop1): Filesystem has been set read-only [ 219.670972][ T28] audit: type=1326 audit(1774857671.147:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12247 comm="syz.0.3679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87ac6bc819 code=0x7ffc0000 [ 219.700404][T12255] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 219.718902][T12255] EXT4-fs error (device loop0): ext4_ext_check_inode:521: inode #13: comm syz.0.3682: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 219.757063][T12255] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 219.757266][T12255] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.3682: couldn't read orphan inode 13 (err -117) [ 219.778807][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 219.778846][ C1] EXT4-fs (loop0): last error at time 1774857671: ext4_ext_check_inode:521: inode 13 [ 219.807707][T12255] loop0: lost filesystem error report for type 5 error -117 [ 219.822939][T12255] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 219.842307][T12255] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0002] [ 219.863785][T12255] EXT4-fs warning (device loop0): ext4_enable_quotas:7261: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 220.065888][T12280] netlink: 'syz.0.3694': attribute type 11 has an invalid length. [ 220.080398][T12280] netlink: 104 bytes leftover after parsing attributes in process `syz.0.3694'. [ 220.121620][T12290] netlink: 'syz.0.3697': attribute type 1 has an invalid length. [ 220.192061][T12295] loop5: detected capacity change from 0 to 7 [ 220.254912][T12296] loop1: detected capacity change from 0 to 1024 [ 220.266237][T12296] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 220.266237][T12296] [ 220.281544][ T3689] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 220.288430][T12216] Bluetooth: hci0: command 0x1003 tx timeout [ 220.347643][T12215] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 220.354977][T12297] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 220.743594][ T3553] Process accounting resumed [ 220.855654][T12323] vfat: Unknown parameter 'mixed' [ 220.865171][T12324] netlink: 'syz.2.3711': attribute type 21 has an invalid length. [ 220.910324][T12324] netlink: 156 bytes leftover after parsing attributes in process `syz.2.3711'. [ 221.204509][T12334] tipc: Enabling of bearer rejected, failed to enable media [ 221.464692][T12344] set_capacity_and_notify: 1 callbacks suppressed [ 221.464779][T12344] loop2: detected capacity change from 0 to 512 [ 221.565074][T12344] ext4 filesystem being mounted at /745/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 221.579568][T12342] loop0: detected capacity change from 0 to 8192 [ 221.611668][T12344] EXT4-fs error (device loop2): ext4_do_update_inode:5602: inode #2: comm syz.2.3721: corrupted inode contents [ 221.654824][T12344] EXT4-fs error (device loop2): ext4_dirty_inode:6495: inode #2: comm syz.2.3721: mark_inode_dirty error [ 221.704782][T12356] loop4: detected capacity change from 0 to 1024 [ 221.711498][T12344] EXT4-fs error (device loop2): ext4_do_update_inode:5602: inode #2: comm syz.2.3721: corrupted inode contents [ 221.736614][T12354] EXT4-fs (loop2): shut down requested (1) [ 221.771205][T12344] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.3721: mark_inode_dirty error [ 221.794781][T12356] ext4 filesystem being mounted at /689/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 221.819678][ T3311] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1) [ 221.854102][T12367] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3730'. [ 221.871194][T12356] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3726: bg 0: block 112: padding at end of block bitmap is not set [ 221.877085][ T3311] FAT-fs (loop0): Filesystem has been set read-only [ 221.894354][T12356] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 221.908213][T12356] EXT4-fs (loop4): This should not happen!! Data will be lost [ 221.908213][T12356] [ 221.918811][T12356] EXT4-fs (loop4): Total free blocks count 0 [ 221.925230][T12356] EXT4-fs (loop4): Free/Dirty block details [ 221.931925][T12356] EXT4-fs (loop4): free_blocks=0 [ 221.937990][T12356] EXT4-fs (loop4): dirty_blocks=64 [ 221.943834][T12356] EXT4-fs (loop4): Block reservation details [ 221.950685][T12356] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 221.983828][ T3316] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 222.076833][ T3420] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 222.085676][T12388] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3739'. [ 222.107162][ T3420] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 222.253787][T12403] loop3: detected capacity change from 0 to 512 [ 222.279991][T12403] EXT4-fs: Ignoring removed nomblk_io_submit option [ 222.352135][T12403] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0002] [ 222.387396][T12403] EXT4-fs (loop3): orphan cleanup on readonly fs [ 222.397944][T12403] EXT4-fs warning (device loop3): ext4_enable_quotas:7261: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 222.423401][T12403] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 222.437600][T12403] EXT4-fs error (device loop3): ext4_ext_check_inode:521: inode #13: comm syz.3.3746: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 222.456951][T12403] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 222.457920][T12403] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.3746: couldn't read orphan inode 13 (err -117) [ 222.467306][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 222.467327][ C1] EXT4-fs (loop3): last error at time 1774857674: ext4_ext_check_inode:521: inode 13 [ 222.497659][T12403] loop3: lost filesystem error report for type 5 error -117 [ 222.544343][T12403] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 222.575078][T12403] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c01c, mo2=0002] [ 222.598027][T12403] EXT4-fs warning (device loop3): ext4_enable_quotas:7261: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 222.618780][T12423] SELinux: failed to load policy [ 222.723890][T12439] loop3: detected capacity change from 0 to 512 [ 222.757124][T12439] ext4 filesystem being mounted at /789/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.783426][ T3407] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 222.808094][ T3407] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 223.049095][T12464] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3771'. [ 223.062325][T12464] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3771'. [ 223.110273][T12472] loop2: detected capacity change from 0 to 1024 [ 223.119572][T12472] EXT4-fs: Ignoring removed orlov option [ 223.341349][T12496] 8021q: adding VLAN 0 to HW filter on device bond13 [ 223.505453][T12518] loop2: detected capacity change from 0 to 1024 [ 223.519698][T12518] ext4 filesystem being mounted at /765/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 223.672183][T12533] syzkaller1: entered promiscuous mode [ 223.678318][T12533] syzkaller1: entered allmulticast mode [ 223.741195][T12535] loop2: detected capacity change from 0 to 4096 [ 223.798050][T12541] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3797'. [ 223.819073][T12541] bond0: entered promiscuous mode [ 223.824300][T12541] bond_slave_0: entered promiscuous mode [ 223.830354][T12541] bond_slave_1: entered promiscuous mode [ 223.836328][T12541] bridge_slave_1: entered promiscuous mode [ 223.843866][T12541] bond0: left promiscuous mode [ 223.849059][T12541] bond_slave_0: left promiscuous mode [ 223.854885][T12541] bond_slave_1: left promiscuous mode [ 223.860621][T12541] bridge_slave_1: left promiscuous mode [ 224.018427][T12560] loop4: detected capacity change from 0 to 1024 [ 224.030098][T12560] ext4 filesystem being mounted at /707/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.045840][T12560] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3806: bg 0: block 112: padding at end of block bitmap is not set [ 224.070965][T12560] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 224.091194][T12560] EXT4-fs (loop4): This should not happen!! Data will be lost [ 224.091194][T12560] [ 224.107853][T12560] EXT4-fs (loop4): Total free blocks count 0 [ 224.114110][T12560] EXT4-fs (loop4): Free/Dirty block details [ 224.120582][T12560] EXT4-fs (loop4): free_blocks=0 [ 224.126944][T12560] EXT4-fs (loop4): dirty_blocks=64 [ 224.132565][T12560] EXT4-fs (loop4): Block reservation details [ 224.138699][T12560] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 224.176638][ T3316] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 224.201174][ T28] kauditd_printk_skb: 155 callbacks suppressed [ 224.201187][ T28] audit: type=1400 audit(1774857676.097:1281): avc: denied { write } for pid=12571 comm="syz.3.3812" name="ipv6_route" dev="proc" ino=4026532954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 224.248721][ T28] audit: type=1400 audit(1774857676.137:1282): avc: denied { create } for pid=12571 comm="syz.3.3812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 224.297914][ T28] audit: type=1400 audit(1774857676.137:1283): avc: denied { bind } for pid=12571 comm="syz.3.3812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 224.321348][T12577] loop0: detected capacity change from 0 to 2048 [ 224.351629][T12577] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 224.353888][ T28] audit: type=1400 audit(1774857676.237:1284): avc: denied { mount } for pid=12575 comm="syz.3.3815" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 224.394002][ T28] audit: type=1400 audit(1774857676.277:1285): avc: denied { unmount } for pid=3319 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 224.448403][T12580] EXT4-fs error (device loop4): ext4_do_update_inode:5602: inode #15: comm syz.4.3811: corrupted inode contents [ 224.474754][T12593] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 224.487710][T12580] EXT4-fs error (device loop4): ext4_dirty_inode:6495: inode #15: comm syz.4.3811: mark_inode_dirty error [ 224.510085][T12580] EXT4-fs error (device loop4): ext4_do_update_inode:5602: inode #15: comm syz.4.3811: corrupted inode contents [ 224.527446][T12593] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 224.542138][T12580] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #15: comm syz.4.3811: mark_inode_dirty error [ 224.573125][ T313] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 224.592082][T12580] EXT4-fs error (device loop4): ext4_do_update_inode:5602: inode #15: comm syz.4.3811: corrupted inode contents [ 224.604878][T12580] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #15: comm syz.4.3811: mark_inode_dirty error [ 224.618617][T12602] serio: Serial port ttyS3 [ 224.625717][T12580] EXT4-fs error (device loop4): ext4_do_update_inode:5602: inode #15: comm syz.4.3811: corrupted inode contents [ 224.629145][T12604] Invalid argument reading file caps for ./file0 [ 224.646193][ T28] audit: type=1400 audit(1774857676.517:1286): avc: denied { execute } for pid=12603 comm="syz.1.3823" name="file0" dev="tmpfs" ino=4119 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 224.646226][T12580] EXT4-fs error (device loop4): ext4_truncate:4602: inode #15: comm syz.4.3811: mark_inode_dirty error [ 224.683303][T12580] EXT4-fs error (device loop4) in ext4_setattr:6028: Corrupt filesystem [ 224.683574][ T28] audit: type=1400 audit(1774857676.517:1287): avc: denied { execute_no_trans } for pid=12603 comm="syz.1.3823" path="/800/file0" dev="tmpfs" ino=4119 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 224.701168][T12595] EXT4-fs error (device loop4): ext4_do_update_inode:5602: inode #15: comm syz.4.3811: corrupted inode contents [ 224.725596][ T28] audit: type=1400 audit(1774857676.597:1288): avc: denied { setattr } for pid=12578 comm="syz.4.3811" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 224.878401][T12619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3832'. [ 224.895259][T12617] syzkaller1: entered promiscuous mode [ 224.906457][ T28] audit: type=1400 audit(1774857676.797:1289): avc: denied { create } for pid=12620 comm="syz.4.3833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 224.920326][T12617] syzkaller1: entered allmulticast mode [ 224.939129][ T313] Bluetooth: hci0: Frame reassembly failed (-84) [ 224.964052][ T28] audit: type=1400 audit(1774857676.807:1290): avc: denied { ioctl } for pid=12620 comm="syz.4.3833" path="socket:[33404]" dev="sockfs" ino=33404 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 225.036750][T12629] netlink: 'syz.2.3837': attribute type 3 has an invalid length. [ 225.117806][T12641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3843'. [ 225.164222][T12644] EXT4-fs: Ignoring removed orlov option [ 225.190779][T12644] EXT4-fs: Ignoring removed mblk_io_submit option [ 225.198077][T12644] EXT4-fs: inline encryption not supported [ 225.205464][T12644] EXT4-fs error (device loop3): ext4_iget_extra_inode:5040: inode #15: comm syz.3.3845: corrupted in-inode xattr: e_value size too large [ 225.220879][T12644] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 225.221066][T12644] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.3845: couldn't read orphan inode 15 (err -117) [ 225.230591][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 225.230616][ C1] EXT4-fs (loop3): initial error at time 1774857677: ext4_iget_extra_inode:5040: inode 15 [ 225.230695][ C1] EXT4-fs (loop3): last error at time 1774857677: ext4_iget_extra_inode:5040: inode 15 [ 225.273213][T12644] loop3: lost filesystem error report for type 5 error -117 [ 225.527497][ C0] operation not supported error, dev loop7, sector 0 op 0x9:(WRITE_ZEROES) flags 0x10800800 phys_seg 0 prio class 2 [ 225.580983][ T3319] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 225.581987][T12679] netlink: 92 bytes leftover after parsing attributes in process `syz.0.3861'. [ 225.608192][ T3319] FAT-fs (loop3): Filesystem has been set read-only [ 225.624215][T12679] netlink: 92 bytes leftover after parsing attributes in process `syz.0.3861'. [ 225.747314][ T4274] Bluetooth: hci1: Frame reassembly failed (-84) [ 225.901436][T12709] 8021q: adding VLAN 0 to HW filter on device bond13 [ 226.108249][T12747] EXT4-fs: Ignoring removed i_version option [ 226.115220][T12747] EXT4-fs: Ignoring removed bh option [ 226.132099][T12747] EXT4-fs mount: 62 callbacks suppressed [ 226.132162][T12747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.151450][T12747] ext4 filesystem being mounted at /825/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 226.181424][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.706651][T12776] set_capacity_and_notify: 11 callbacks suppressed [ 226.706731][T12776] loop2: detected capacity change from 0 to 1024 [ 226.740580][T12776] EXT4-fs (loop2): bad geometry: bigalloc file system with non-zero first_data_block [ 226.740580][T12776] [ 226.977172][ T3689] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 227.414161][T12788] loop3: detected capacity change from 0 to 128 [ 227.777191][T12216] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 227.993607][T12810] netlink: 116376 bytes leftover after parsing attributes in process `syz.4.3918'. [ 228.454339][T12848] loop0: detected capacity change from 0 to 128 [ 228.616097][T12858] loop1: detected capacity change from 0 to 8192 [ 228.636291][T12858] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 228.768355][T12879] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3952'. [ 229.045194][T12902] loop0: detected capacity change from 0 to 512 [ 229.066334][T12904] bridge1: entered promiscuous mode [ 229.071944][T12902] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 229.085655][T12904] bridge1: entered allmulticast mode [ 229.106824][T12904] team0: Port device bridge1 added [ 229.107813][T12902] EXT4-fs error (device loop0): mb_free_blocks:2049: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 229.127048][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 229.133715][ C1] EXT4-fs (loop0): initial error at time 1774857681: mb_free_blocks:2049: inode 11: block 64 [ 229.144475][ C1] EXT4-fs (loop0): last error at time 1774857681: mb_free_blocks:2049: inode 11: block 64 [ 229.145530][T12913] loop4: detected capacity change from 0 to 512 [ 229.161870][T12913] EXT4-fs: Ignoring removed bh option [ 229.168412][T12913] EXT4-fs: inline encryption not supported [ 229.174870][T12913] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 229.187676][T12904] bridge0: port 3(team0) entered blocking state [ 229.194529][T12904] bridge0: port 3(team0) entered disabled state [ 229.195518][T12902] EXT4-fs error (device loop0): ext4_do_update_inode:5602: inode #11: comm syz.0.3963: corrupted inode contents [ 229.201239][T12904] team0: entered allmulticast mode [ 229.221373][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.224082][T12902] EXT4-fs error (device loop0): ext4_dirty_inode:6495: inode #11: comm syz.0.3963: mark_inode_dirty error [ 229.254797][T12916] loop1: detected capacity change from 0 to 1024 [ 229.262807][T12904] team_slave_0: entered allmulticast mode [ 229.267530][T12916] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 229.269310][T12904] team_slave_1: entered allmulticast mode [ 229.270498][T12904] team0: entered promiscuous mode [ 229.282054][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.289015][T12904] team_slave_0: entered promiscuous mode [ 229.305299][T12913] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 229.311475][T12904] team_slave_1: entered promiscuous mode [ 229.327404][T12902] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.3963: invalid indirect mapped block 1 (level 1) [ 229.330803][T12904] bridge0: port 3(team0) entered blocking state [ 229.350514][T12904] bridge0: port 3(team0) entered forwarding state [ 229.357442][T12916] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 229.366156][T12913] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3968: bg 0: block 248: padding at end of block bitmap is not set [ 229.371717][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.381507][T12916] EXT4-fs (loop1): orphan cleanup on readonly fs [ 229.397756][T12913] loop4: lost filesystem error report for type 5 error -117 [ 229.398054][T12913] __quota_error: 79 callbacks suppressed [ 229.398068][T12913] Quota error (device loop4): write_blk: dquota write failed [ 229.411576][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 229.411599][ C1] EXT4-fs (loop4): last error at time 1774857681: ext4_validate_block_bitmap:441 [ 229.447418][T12902] EXT4-fs error (device loop0): ext4_do_update_inode:5602: inode #11: comm syz.0.3963: corrupted inode contents [ 229.455225][T12916] EXT4-fs error (device loop1): __ext4_get_inode_loc:4797: comm syz.1.3969: Invalid inode table block 0 in block_group 0 [ 229.476113][T12916] loop1: lost filesystem error report for type 5 error -117 [ 229.476301][T12916] EXT4-fs (loop1): Remounting filesystem read-only [ 229.484068][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 229.484088][ C1] EXT4-fs (loop1): initial error at time 1774857681: __ext4_get_inode_loc:4797 [ 229.484107][ C1] EXT4-fs (loop1): last error at time 1774857681: __ext4_get_inode_loc:4797 [ 229.498920][ T28] audit: type=1400 audit(1774857681.377:1370): avc: denied { view } for pid=12920 comm="syz.3.3970" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 229.513354][T12913] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 229.518114][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.576486][T12913] EXT4-fs error (device loop4): ext4_acquire_dquot:7026: comm syz.4.3968: Failed to acquire dquot type 1 [ 229.577261][T12902] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 229.586369][T12913] loop4: lost filesystem error report for type 5 error -28 [ 229.598470][T12916] Quota error (device loop1): write_blk: dquota write failed [ 229.624069][T12902] loop0: lost filesystem error report for type 5 error -117 [ 229.624286][T12902] EXT4-fs error (device loop0): ext4_do_update_inode:5602: inode #11: comm syz.0.3963: corrupted inode contents [ 229.645713][T12913] EXT4-fs (loop4): 1 truncate cleaned up [ 229.646193][T12916] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 229.652613][T12913] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 229.662270][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.676222][T12916] EXT4-fs (loop1): 1 truncate cleaned up [ 229.697647][T12916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 229.710827][T12902] EXT4-fs error (device loop0): ext4_truncate:4602: inode #11: comm syz.0.3963: mark_inode_dirty error [ 229.723075][T12902] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 229.723323][T12902] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 229.757881][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 229.760525][T12902] loop0: lost filesystem error report for type 5 error -117 [ 229.769384][T12902] EXT4-fs (loop0): 1 truncate cleaned up [ 229.779228][T12927] Failed to initialize the IGMP autojoin socket (err -2) [ 229.784331][T12902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.812131][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.871797][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.888046][T12934] syzkaller1: entered promiscuous mode [ 229.929583][T12934] syzkaller1: entered allmulticast mode [ 230.010052][T12940] 8021q: adding VLAN 0 to HW filter on device bond14 [ 230.077939][ T28] audit: type=1326 audit(1774857681.977:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12950 comm="syz.1.3983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 230.115440][ T28] audit: type=1326 audit(1774857681.997:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12950 comm="syz.1.3983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 230.150804][ T28] audit: type=1326 audit(1774857681.997:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12950 comm="syz.1.3983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 230.176745][ T28] audit: type=1326 audit(1774857681.997:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12950 comm="syz.1.3983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 230.206138][T12956] loop2: detected capacity change from 0 to 512 [ 230.219971][ T28] audit: type=1326 audit(1774857681.997:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12950 comm="syz.1.3983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f658d56c819 code=0x7ffc0000 [ 230.259219][T12964] loop4: detected capacity change from 0 to 1024 [ 230.266835][T12964] EXT4-fs: inline encryption not supported [ 230.310784][T12964] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 230.310794][T12956] EXT4-fs (loop2): 1 truncate cleaned up [ 230.310882][T12964] ext4 filesystem being mounted at /733/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.327624][T12956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 230.357329][T12964] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3988: bg 0: block 112: padding at end of block bitmap is not set [ 230.385366][T12964] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 60 with max blocks 1 with error 28 [ 230.407157][T12964] EXT4-fs (loop4): This should not happen!! Data will be lost [ 230.407157][T12964] [ 230.417307][T12964] EXT4-fs (loop4): Total free blocks count 0 [ 230.424075][T12964] EXT4-fs (loop4): Free/Dirty block details [ 230.431566][T12964] EXT4-fs (loop4): free_blocks=0 [ 230.440041][T12964] EXT4-fs (loop4): dirty_blocks=16 [ 230.452698][T12964] EXT4-fs (loop4): Block reservation details [ 230.467050][T12964] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 230.507840][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.520149][T11818] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #15: comm kworker/u8:14: lblock 0 mapped to illegal pblock 0 (length 1) [ 230.534968][T11818] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 230.555617][ T3316] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 230.604910][T12980] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 230.634025][ T23] lo speed is unknown, defaulting to 1000 [ 230.645257][T12984] loop4: detected capacity change from 0 to 1024 [ 230.671917][T12984] EXT4-fs: Ignoring removed bh option [ 230.691830][T12984] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 230.704268][T12980] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 230.704421][T12984] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce028, mo2=0000] [ 230.730863][T12984] System zones: 0-1, 3-12 [ 230.749249][T12984] EXT4-fs error (device loop4): ext4_map_blocks:828: inode #3: block 1: comm syz.4.3995: lblock 1 mapped to illegal pblock 1 (length 1) [ 230.774268][T12984] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 230.774430][T12984] EXT4-fs (loop4): Remounting filesystem read-only [ 230.783524][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 230.783545][ C1] EXT4-fs (loop4): initial error at time 1774857682: ext4_map_blocks:828: inode 3: block 1 [ 230.783590][ C1] EXT4-fs (loop4): last error at time 1774857682: ext4_map_blocks:828: inode 3: block 1 [ 230.818126][T12984] EXT4-fs (loop4): 1 orphan inode deleted [ 230.824177][T12984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.857161][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.959307][T13006] usb usb4: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 230.984015][T13006] vhci_hcd vhci_hcd.1: default hub control req: d10d v0006 i0007 l2 [ 231.128349][T13023] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.146021][T13023] ext4 filesystem being mounted at /818/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 231.179137][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.305441][T13030] EXT4-fs (loop0): bad geometry: bigalloc file system with non-zero first_data_block [ 231.305441][T13030] [ 231.631407][T12216] Bluetooth: hci0: command 0x1003 tx timeout [ 231.638476][ T43] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 232.267702][T13053] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4024'. [ 232.287963][T13053] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4024'. [ 232.388963][T13055] set_capacity_and_notify: 2 callbacks suppressed [ 232.388981][T13055] loop1: detected capacity change from 0 to 128 [ 232.508447][T13055] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 232.541427][T13055] System zones: 1-3, 19-19, 35-36 [ 232.564168][T13055] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 232.619017][T13055] ext4 filesystem being mounted at /851/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 232.681084][T13061] loop0: detected capacity change from 0 to 128 [ 232.707541][T13061] EXT4-fs: Ignoring removed nobh option [ 232.714592][T13055] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 1986356271 (only 1 groups) [ 232.734557][T13061] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 232.760092][T13061] ext4 filesystem being mounted at /756/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 232.782032][ T3317] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 232.867823][ T3311] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 232.871930][T13068] bond_slave_0: entered promiscuous mode [ 232.883742][T13068] bond_slave_1: entered promiscuous mode [ 232.891838][T13068] macvlan3: entered promiscuous mode [ 232.913607][T13068] bond0: entered promiscuous mode [ 232.932968][T13068] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 232.942071][T13068] team0: Device macvlan3 is up. Set it down before adding it as a team port [ 232.961931][T13068] bond0: left promiscuous mode [ 232.989071][T13068] bond_slave_0: left promiscuous mode [ 232.994910][T13068] bond_slave_1: left promiscuous mode [ 233.014499][T13082] loop0: detected capacity change from 0 to 1024 [ 233.029052][T13082] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.029071][T13080] Failed to initialize the IGMP autojoin socket (err -2) [ 233.058854][T13087] netlink: 'syz.1.4036': attribute type 21 has an invalid length. [ 233.072527][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.082605][T13087] IPv6: NLM_F_CREATE should be specified when creating new route [ 233.097811][T13087] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 233.105252][T13087] IPv6: NLM_F_CREATE should be set when creating new route [ 233.113283][T13087] IPv6: NLM_F_CREATE should be set when creating new route [ 233.121541][T13087] IPv6: NLM_F_CREATE should be set when creating new route [ 233.171141][T13091] loop0: detected capacity change from 0 to 512 [ 233.199025][T13091] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.4037: iget: bad i_size value: 38620345925642 [ 233.248233][T13091] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 233.248539][T13091] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.4037: couldn't read orphan inode 15 (err -117) [ 233.258574][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 233.258618][ C0] EXT4-fs (loop0): initial error at time 1774857685: ext4_orphan_get:1397: inode 15 [ 233.258650][ C0] EXT4-fs (loop0): last error at time 1774857685: ext4_orphan_get:1397: inode 15 [ 233.325655][T13104] loop3: detected capacity change from 0 to 512 [ 233.334436][T13091] loop0: lost filesystem error report for type 5 error -117 [ 233.335307][T13091] EXT4-fs (loop0): mounted filesystem 00000000-0000-00a1-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.364094][T13104] EXT4-fs: Ignoring removed oldalloc option [ 233.380804][T13107] Failed to initialize the IGMP autojoin socket (err -2) [ 233.384171][T13091] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.4037: bg 0: block 5: invalid block bitmap [ 233.403066][T13104] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.4043: invalid indirect mapped block 4294967295 (level 1) [ 233.403552][T13091] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 3 with max blocks 65 with error 28 [ 233.438667][T13091] EXT4-fs (loop0): This should not happen!! Data will be lost [ 233.438667][T13091] [ 233.449425][T13091] EXT4-fs (loop0): Total free blocks count 0 [ 233.455848][T13091] EXT4-fs (loop0): Free/Dirty block details [ 233.462417][T13091] EXT4-fs (loop0): free_blocks=0 [ 233.464243][T13112] loop4: detected capacity change from 0 to 512 [ 233.468818][T13091] EXT4-fs (loop0): dirty_blocks=65 [ 233.468837][T13091] EXT4-fs (loop0): Block reservation details [ 233.468848][T13091] EXT4-fs (loop0): i_reserved_data_blocks=65 [ 233.477101][T13104] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 233.495515][T13104] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.4043: invalid indirect mapped block 4294967295 (level 1) [ 233.497015][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 233.515453][T13104] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 233.520127][ C1] EXT4-fs (loop3): initial error at time 1774857685: ext4_free_branches:1023: inode 11 [ 233.547181][ C1] EXT4-fs (loop3): last error at time 1774857685: ext4_free_branches:1023: inode 11 [ 233.572160][T13114] loop4: detected capacity change from 0 to 2048 [ 233.579883][T13104] EXT4-fs (loop3): 2 truncates cleaned up [ 233.586510][ T3311] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost [ 233.599896][T13104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.613707][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-00a1-0000-000000000000. [ 233.639103][T13114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.665812][T13114] EXT4-fs (loop4): shut down requested (2) [ 233.707415][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.724948][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.804944][T13132] loop3: detected capacity change from 0 to 128 [ 233.818020][T13132] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 233.840429][T13132] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8) [ 233.850889][T13136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4056'. [ 233.854759][T13132] FAT-fs (loop3): Filesystem has been set read-only [ 233.894825][T13140] loop4: detected capacity change from 0 to 4096 [ 233.897240][T13132] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522) [ 233.906006][T13144] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4056'. [ 233.957669][T13140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.026222][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.030537][T13155] loop3: detected capacity change from 0 to 512 [ 234.059194][T13155] EXT4-fs: Ignoring removed nobh option [ 234.095533][T13155] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 234.132604][T13155] EXT4-fs (loop3): 1 truncate cleaned up [ 234.139782][T13155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.175142][T13168] SELinux: ebitmap start bit (6553620) is not a multiple of the map unit size (64) [ 234.186052][T13168] SELinux: failed to load policy [ 234.336261][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.380557][T13188] SELinux: failed to load policy [ 234.624605][T13202] EXT4-fs: inline encryption not supported [ 234.669144][T13202] EXT4-fs (loop1): bad geometry: bigalloc file system with non-zero first_data_block [ 234.669144][T13202] [ 234.696846][T13210] EXT4-fs: Ignoring removed bh option [ 234.702639][T13210] EXT4-fs: inline encryption not supported [ 234.722943][ T28] kauditd_printk_skb: 83 callbacks suppressed [ 234.722959][ T28] audit: type=1400 audit(1774857686.607:1456): avc: denied { watch watch_reads } for pid=13201 comm="syz.1.4086" path="/861" dev="tmpfs" ino=4429 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 234.778816][T13210] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 234.821366][T13210] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 234.865911][T13210] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4090: bg 0: block 248: padding at end of block bitmap is not set [ 234.888666][T13210] loop0: lost filesystem error report for type 5 error -117 [ 234.888992][T13210] Quota error (device loop0): write_blk: dquota write failed [ 234.897481][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 234.897500][ C0] EXT4-fs (loop0): last error at time 1774857686: ext4_validate_block_bitmap:441 [ 234.928969][T13210] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 234.963171][T13210] EXT4-fs error (device loop0): ext4_acquire_dquot:7026: comm syz.0.4090: Failed to acquire dquot type 1 [ 234.986398][T13218] 8021q: adding VLAN 0 to HW filter on device bond15 [ 234.989145][T13210] loop0: lost filesystem error report for type 5 error -28 [ 234.994403][T13210] EXT4-fs (loop0): 1 truncate cleaned up [ 235.060583][T13210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 235.097066][ T28] audit: type=1400 audit(1774857686.987:1457): avc: denied { create } for pid=13244 comm="syz.4.4104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 235.123041][T13242] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.140746][T13242] ext4 filesystem being mounted at /867/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 235.177574][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 235.247577][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 235.275575][ T28] audit: type=1400 audit(1774857687.167:1458): avc: denied { read } for pid=3553 comm="kworker/0:6" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=36124 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 235.337180][T13255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.387413][T13262] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 235.424641][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.435415][T13262] ext4 filesystem being mounted at /869/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 235.470865][ T28] audit: type=1400 audit(1774857687.367:1459): avc: denied { write } for pid=13268 comm="syz.0.4114" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 235.514600][ T3317] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 235.616219][T13280] Failed to initialize the IGMP autojoin socket (err -2) [ 235.774840][T13281] EXT4-fs (loop4): bad geometry: bigalloc file system with non-zero first_data_block [ 235.774840][T13281] [ 235.983228][T13292] Unable to read rock-ridge attributes [ 235.998092][T13292] Unable to read rock-ridge attributes [ 236.006634][T13292] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 236.024580][T13297] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4124'. [ 236.113435][ T28] audit: type=1400 audit(1774857688.007:1460): avc: denied { mount } for pid=13302 comm="syz.1.4127" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 236.279367][T13306] 8021q: adding VLAN 0 to HW filter on device bond16 [ 236.402709][ T28] audit: type=1400 audit(1774857688.297:1461): avc: denied { mounton } for pid=13329 comm="syz.1.4136" path="/proc/1927/task" dev="proc" ino=36225 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 236.429562][ T28] audit: type=1400 audit(1774857688.297:1462): avc: denied { mount } for pid=13329 comm="syz.1.4136" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 236.459828][T13328] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002] [ 236.468636][T13328] System zones: 0-1, 3-36 [ 236.475702][T13328] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz.2.4137: bad orphan inode 134217728 [ 236.497075][T13328] loop2: lost filesystem error report for type 5 error -117 [ 236.500750][ T28] audit: type=1400 audit(1774857688.387:1463): avc: denied { associate } for pid=13333 comm="syz.1.4136" name="core" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 236.504642][T13328] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.564817][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.665978][T13339] bond14: (slave vlan0): Enslaving as a backup interface with an up link [ 236.703853][T13346] Invalid argument reading file caps for ./file0 [ 236.758516][T13351] EXT4-fs: Ignoring removed nomblk_io_submit option [ 236.768537][T13351] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters [ 236.784488][T13351] EXT4-fs (loop2): 1 orphan inode deleted [ 236.790409][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 236.790426][ C1] EXT4-fs (loop2): initial error at time 1774857688: ext4_mb_generate_buddy:1317 [ 236.790456][ C1] EXT4-fs (loop2): last error at time 1774857688: ext4_mb_generate_buddy:1317 [ 236.848145][T13351] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 236.868058][T13351] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.4145: invalid indirect mapped block 234881024 (level 0) [ 236.914976][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.926029][T13358] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.4148: inode has both inline data and extents flags [ 236.987469][T13358] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 236.987643][T13358] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.4148: couldn't read orphan inode 15 (err -117) [ 236.997751][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 236.997794][ C1] EXT4-fs (loop1): initial error at time 1774857688: ext4_orphan_get:1397: inode 15 [ 236.997826][ C1] EXT4-fs (loop1): last error at time 1774857688: ext4_orphan_get:1397: inode 15 [ 237.058903][T13358] loop1: lost filesystem error report for type 5 error -117 [ 237.065599][T13358] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 237.132648][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 237.221439][ C1] invalid error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800800 phys_seg 1 prio class 2 [ 237.232629][ C1] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 237.242201][ C1] invalid error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800800 phys_seg 1 prio class 2 [ 237.252991][ C1] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 237.709686][T13387] 8021q: adding VLAN 0 to HW filter on device bond17 [ 238.463591][T13269] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 238.506276][T13393] set_capacity_and_notify: 13 callbacks suppressed [ 238.506294][T13393] loop0: detected capacity change from 0 to 1024 [ 238.551246][T13401] loop4: detected capacity change from 0 to 1024 [ 238.566851][T13401] EXT4-fs: Ignoring removed nobh option [ 238.573990][T13393] EXT4-fs: Ignoring removed orlov option [ 238.604572][T13404] Failed to initialize the IGMP autojoin socket (err -2) [ 238.614930][T13393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.630596][T13401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.682797][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.723891][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.811804][T13438] 9p: Bad value for 'wfdno' [ 238.824572][T13436] loop2: detected capacity change from 0 to 2048 [ 238.859357][T13436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.872768][T13436] ext4 filesystem being mounted at /858/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 238.916256][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.041099][T13468] loop1: detected capacity change from 0 to 512 [ 239.050638][T13468] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 239.071665][T13468] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.085275][T13468] ext4 filesystem being mounted at /901/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 239.142663][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.174361][T13480] loop4: detected capacity change from 0 to 128 [ 239.184132][T13478] loop0: detected capacity change from 0 to 512 [ 239.210890][T13478] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.247132][T13478] ext4 filesystem being mounted at /781/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.268997][T13480] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 239.276700][T13480] FAT-fs (loop4): Filesystem has been set read-only [ 239.302549][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.316013][T13484] SELinux: failed to load policy [ 239.358583][T13496] loop0: detected capacity change from 0 to 256 [ 239.372019][T13496] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 239.464492][T13511] loop2: detected capacity change from 0 to 128 [ 239.553938][T13523] netlink: 'syz.1.4216': attribute type 4 has an invalid length. [ 239.578807][ T3553] lo speed is unknown, defaulting to 1000 [ 239.587495][T13523] netlink: 'syz.1.4216': attribute type 4 has an invalid length. [ 239.595977][ T3553] syz0: Port: 1 Link DOWN [ 239.603603][ T3553] lo speed is unknown, defaulting to 1000 [ 239.617233][ T3553] syz0: Port: 1 Link ACTIVE [ 239.643904][T13527] program syz.3.4218 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 239.677260][T13531] netlink: 'syz.4.4220': attribute type 1 has an invalid length. [ 239.726049][T13531] 8021q: adding VLAN 0 to HW filter on device bond18 [ 239.777239][T13541] bond18: (slave geneve2): Opening slave failed [ 239.834876][T13551] loop2: detected capacity change from 0 to 512 [ 239.870220][T13551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.899495][T13551] ext4 filesystem being mounted at /871/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.910943][T13554] loop3: detected capacity change from 0 to 4096 [ 239.934743][T13554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.968796][T13551] EXT4-fs error (device loop2): ext4_lookup:1785: inode #12: comm syz.2.4228: iget: bad i_size value: 2533274857506816 [ 240.045187][ T28] kauditd_printk_skb: 45 callbacks suppressed [ 240.045252][ T28] audit: type=1400 audit(1774857691.937:1509): avc: denied { bind } for pid=13573 comm="syz.4.4238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 240.084227][ T28] audit: type=1400 audit(1774857691.937:1510): avc: denied { write } for pid=13573 comm="syz.4.4238" path="socket:[36930]" dev="sockfs" ino=36930 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 240.116215][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.142223][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.238712][ T3666] loop2: p2 < > p4 [ 240.247185][ T3666] loop2: p4 size 262144 extends beyond EOD, truncated [ 240.269687][T13584] loop2: p2 < > p4 [ 240.281576][T13584] loop2: p4 size 262144 extends beyond EOD, truncated [ 240.358898][T13594] EXT4-fs: dax option not supported [ 240.385747][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 240.385880][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 240.444740][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 240.448440][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 240.479155][T13599] Failed to initialize the IGMP autojoin socket (err -2) [ 240.510803][ T28] audit: type=1400 audit(1774857692.407:1511): avc: denied { attach_queue } for pid=13601 comm="syz.2.4251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 240.649255][T13606] EXT4-fs (loop3): bad geometry: bigalloc file system with non-zero first_data_block [ 240.649255][T13606] [ 240.737275][T13611] EXT4-fs: Ignoring removed orlov option [ 240.778597][T13611] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 240.826605][T13611] System zones: 0-1, 3-12 [ 240.847602][T13611] EXT4-fs (loop2): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.019332][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 241.153747][T13629] EXT4-fs: Ignoring removed orlov option [ 241.217697][T13629] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 241.287106][T13629] System zones: 0-1, 3-12 [ 241.292127][T13629] EXT4-fs (loop2): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.377850][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 241.469430][T13651] Failed to initialize the IGMP autojoin socket (err -2) [ 241.547734][T13637] EXT4-fs (loop0): bad geometry: bigalloc file system with non-zero first_data_block [ 241.547734][T13637] [ 241.589011][ T28] audit: type=1326 audit(1774857693.457:1512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13652 comm="syz.1.4272" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f658d56c819 code=0x0 [ 241.642831][T13653] Failed to initialize the IGMP autojoin socket (err -2) [ 242.222465][ T28] audit: type=1400 audit(1774857694.117:1513): avc: denied { connect } for pid=13670 comm="syz.4.4277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 242.364884][T13675] Failed to initialize the IGMP autojoin socket (err -2) [ 242.400967][T13677] Failed to initialize the IGMP autojoin socket (err -2) [ 242.452737][T13679] Failed to initialize the IGMP autojoin socket (err -2) [ 242.558434][T13677] Failed to initialize the IGMP autojoin socket (err -2) [ 242.739702][T13687] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4284'. [ 242.881559][T13691] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 243.075913][ T28] audit: type=1400 audit(1774857694.967:1514): avc: denied { create } for pid=13698 comm="syz.4.4289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 243.119056][ T28] audit: type=1400 audit(1774857695.007:1515): avc: denied { bind } for pid=13698 comm="syz.4.4289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 243.219699][T13705] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4291'. [ 243.269696][ T50] Bluetooth: hci0: Frame reassembly failed (-84) [ 243.536734][T13717] netlink: 'syz.2.4297': attribute type 1 has an invalid length. [ 243.569726][T13717] 8021q: adding VLAN 0 to HW filter on device bond13 [ 243.587360][T13717] bond13: (slave geneve3): Opening slave failed [ 243.670139][T13728] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 64993 [ 243.794349][T13744] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4306'. [ 243.806719][T13744] IPv6: Can't replace route, no match found [ 243.813050][T13738] set_capacity_and_notify: 7 callbacks suppressed [ 243.813065][T13738] loop3: detected capacity change from 0 to 8192 [ 243.842159][T13738] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 243.859252][T13746] loop2: detected capacity change from 0 to 256 [ 243.920614][T13753] loop0: detected capacity change from 0 to 512 [ 243.933722][T13753] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 244.071421][ T50] bond0: (slave bond_slave_0): interface is now down [ 244.091093][ T50] bond0: (slave bond_slave_1): interface is now down [ 244.091198][T13769] netlink: 'syz.1.4320': attribute type 10 has an invalid length. [ 244.098517][ T50] bond0: (slave bridge_slave_1): interface is now down [ 244.114132][ T50] bond0: now running without any active interface! [ 244.122718][T13769] syz_tun: entered promiscuous mode [ 244.133551][T13769] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 244.142806][ T4274] bond0: (slave syz_tun): interface is now down [ 244.167037][ T4274] bond0: (slave syz_tun): interface is now down [ 244.174345][ T4274] bond0: now running without any active interface! [ 244.363983][T13767] ================================================================== [ 244.373391][T13767] BUG: KCSAN: data-race in filemap_splice_read / filemap_splice_read [ 244.383391][T13767] [ 244.387628][T13767] write to 0xffff888104366828 of 8 bytes by task 13753 on cpu 0: [ 244.397342][T13767] filemap_splice_read+0x523/0x780 [ 244.403319][T13767] splice_direct_to_actor+0x26e/0x670 [ 244.409401][T13767] do_splice_direct+0x119/0x1a0 [ 244.414504][T13767] do_sendfile+0x382/0x650 [ 244.419318][T13767] __x64_sys_sendfile64+0x105/0x150 [ 244.424988][T13767] x64_sys_call+0x2dc4/0x3020 [ 244.430731][T13767] do_syscall_64+0x12c/0x370 [ 244.436317][T13767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.442663][T13767] [ 244.445429][T13767] write to 0xffff888104366828 of 8 bytes by task 13767 on cpu 1: [ 244.454271][T13767] filemap_splice_read+0x523/0x780 [ 244.460397][T13767] splice_direct_to_actor+0x26e/0x670 [ 244.465856][T13767] do_splice_direct+0x119/0x1a0 [ 244.471392][T13767] do_sendfile+0x382/0x650 [ 244.475841][T13767] __x64_sys_sendfile64+0x105/0x150 [ 244.481662][T13767] x64_sys_call+0x2dc4/0x3020 [ 244.486533][T13767] do_syscall_64+0x12c/0x370 [ 244.491783][T13767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.498373][T13767] [ 244.501870][T13767] value changed: 0x000000000000026e -> 0x000000000000026f [ 244.510197][T13767] [ 244.512955][T13767] Reported by Kernel Concurrency Sanitizer on: [ 244.519473][T13767] CPU: 1 UID: 0 PID: 13767 Comm: syz.0.4314 Not tainted syzkaller #0 PREEMPT(full) [ 244.529649][T13767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 244.540149][T13767] ================================================================== [ 245.297073][ T43] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 245.297071][T12216] Bluetooth: hci0: command 0x1003 tx timeout