last executing test programs: 3m5.640022701s ago: executing program 4 (id=1919): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000140)={0x30, r1, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {}, {0xfffffffffffffe6d, 0x19, {0x80000000, 0x4000005, 0x800, 0x4}}}}, 0x30}, 0x1, 0x0, 0x0, 0xc0}, 0x0) 3m5.536704679s ago: executing program 4 (id=1934): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x804810, &(0x7f0000000040)={[{}, {@noblock_validity}, {@grpquota}]}, 0x26, 0x759, &(0x7f0000000d40)="$eJzs3M1rHPUbAPBnptmmL/n9NoLgy0GEFloo3STNpT01XrwVCgWvNSSTEDLJhuymdmPB1rNQm4uCIOrZo1eh1D/AmxQUvAuiNR7Ey8psNimJ2e22SbqSfj4w2ec7b8/zZIdvdiCzAbyw3ix+JBFDEXE1Isrt9WlEHG1FxyJub+y3/ujWVLEk0Wxe+y0pDov1ZnnrXEn79WS0DolXI+JBKeLch//OW2uszk/mebbcHo/UF5ZGao3V83MLk7PZbLY4Nn5p9OL4+MXR8Sf28EqPvZ5+59Lxe9+/vbb2wzf1u28MnE9iotV3tHvr8TRPZeN3UoqJHesXDyJZHyXbRs1ms9m3UgAA6KL4nH8kIgZan1LLcaQVAQAAAIdJc7AJAAAAHHpJ9LsCAAAA4GBt/h/A5rO9B/UcbCe/vhURw7vlH2g9QxxxLEoRcWI92fZkQrJxGOzJ7TsRcX9i5/X3VXGF3d7juUd3jLc/I310j2dnP9wv5p+J3eafdGv+iV3mn4HN707Yo87z3+P8RzrMf1d7zPHt56+VOua/E/H6wG75k638SYf87/aY/+7aR/c6bWt+GXFm178/ybZcXb4fYmJmLk+65X/w99mH3fo/0Sl/0r3/pR77f3/9j/lOc0mR/+yp7u//bvmLa+Ljdh1pRNxrvxbjtR05Ti38+F23/qcjms/y/n/RY/8/fz14s8ddAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCWNiKFI0spWnKaVSsTJiHg5TqR5tVY/N1NdWZwutkUMRymdmcuz0Ygob4yTYjzWih+PL+wYj0fESz8d30g6l2eVqWo+3e/mAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2HIyIoYiSSsRkUbEn+U0rVQiBno4dvA51AcAAADsk+F+FwAAAAAcOPf/AAAAcPg96/1/ss91AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIfa1StXiqW5/ujWVDGevtFYma/eOD+d1eYrCytTlanq8lJltlqdzbPKVHXhSefLq9WlsUuxcnOkntXqI7XG6vWF6spi/frcwuRsdj0rPZeuAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeFpDrSVJKxGRtuI0rVQi/hcRw1FKZubybDQi/h8RD8ulwWI81u+iAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2He1xur8ZJ5nywKB4LkFH0TEf6CMLkG/ZyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPqh1lidn8zzbLnW70oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADor/SXJCKK5Uz59NDOrUeTv8qt14h477Nrn9ycrNeXx4r1v2+tr3/aXn+hH/UDAADAC+Hy0+y8eZ++eR8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQq1pjdX4yz7PlvQWXo7HaTDrs0+8eAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAZ/NPAAAA//+Alss0") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, 0x0) 3m5.385734804s ago: executing program 4 (id=1927): r0 = socket$inet6(0x10, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000000)=[{0x50, 0x0, 0x0, 0xffe00001}, {0x16, 0x0, 0x0, 0xfffffffc}]}, 0x10) sendto$inet6(r0, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x8050, 0x0, 0x0) 3m5.302663148s ago: executing program 4 (id=1931): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000380)=@delqdisc={0x434, 0x25, 0x100, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x2, 0xf}, {0xa, 0x7}, {0x0, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x3, 0xfffffff8, 0x4, 0x40, 0x2, 0x2, 0x5, 0x7fff, 0x4, 0x1, 0x6, 0x1c8, 0x7, 0x0, 0x5, 0x0, 0x8, 0x9, 0x9, 0x9, 0xf4, 0x200, 0x1, 0x5, 0x6, 0xfff, 0x9, 0x1, 0x80, 0x10000, 0x0, 0x6, 0xff, 0x4, 0x6, 0x9, 0xe6c1, 0x6, 0x65, 0x6, 0x5, 0x71, 0x2, 0x80000001, 0x89, 0xe9, 0x80000001, 0x2, 0xff, 0x8, 0xffff8dc2, 0x400, 0x0, 0x2, 0xffff, 0x10001, 0x3ff, 0x0, 0x5, 0xa000000, 0x0, 0x5, 0x8, 0x3, 0x0, 0x401, 0x5, 0x9, 0x4ad1, 0x1, 0x25ae, 0x1, 0xfff, 0x6, 0xe, 0xffffffff, 0x7, 0x5, 0x3ff, 0xfff, 0x8, 0xf, 0x0, 0x4, 0x626cfd3b, 0x0, 0x60df8662, 0x2, 0x5, 0x4, 0xc6, 0x8, 0x7, 0xfffffffa, 0x9, 0x4, 0x1, 0x3, 0x0, 0x7, 0x2, 0xffff8000, 0xe13, 0x8, 0x7, 0xc, 0xfdc1, 0x7ff, 0x4, 0xfffffff0, 0x4, 0x8003, 0x40, 0x1, 0x1f21, 0x3, 0x665195e5, 0x5, 0x7, 0x5, 0x9, 0x7, 0x4, 0x1ac, 0x101, 0x400, 0x2, 0x1, 0xd, 0x9, 0x7, 0xc5, 0x99, 0x4, 0x2e9, 0x4, 0x3, 0x401, 0xfffffffe, 0x7, 0x80000000, 0x8, 0x0, 0x4, 0x37, 0x4, 0x31, 0x2, 0x2, 0x3, 0x6, 0x1, 0x690c, 0x0, 0x9, 0x2, 0xe, 0xb, 0x8, 0x5597, 0x3, 0x2, 0x7fff, 0x62, 0xf6, 0x5, 0x0, 0x7fffffff, 0x9, 0x9, 0x2, 0x100, 0x6, 0x101, 0x5, 0x2, 0x3, 0x4, 0xfc8d, 0x8, 0x3ff, 0x3, 0xaeb3, 0x3, 0x5, 0x9, 0xfc, 0x8000, 0x1, 0x7, 0x20000, 0x4, 0x2, 0x6, 0x65, 0x85, 0x0, 0x2, 0x2, 0x6, 0x7, 0xd92, 0x40, 0xfff, 0xe1, 0x8, 0x426, 0x5, 0x9, 0x1, 0x1000, 0x9, 0x36ae765f, 0x401, 0x9, 0x200000, 0x3, 0x4, 0x5, 0x0, 0x89, 0x5, 0x80000000, 0x4007, 0x1, 0x41632842, 0x6, 0x10, 0x2, 0x8001, 0x5, 0x100, 0x8, 0x9, 0xfe64, 0xd, 0x1c2, 0x2, 0x6, 0x2, 0x80000001, 0xa, 0x6, 0xfffffffc, 0x5, 0x3, 0x7f, 0x8001, 0x5, 0x3, 0x6, 0x8001, 0x10001, 0x5, 0xb, 0x7]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x40000}, 0x8010) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="58000000020601010000000000000000010000040c000300686173683a697000050001000700000005000500020000000900020073797a300000000005000400000000001400078008000840000000d3050014"], 0x58}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x8004) 3m5.268985384s ago: executing program 4 (id=1935): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 3m5.202512115s ago: executing program 4 (id=1937): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x786, &(0x7f0000001900)="$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") unlink(&(0x7f00000001c0)='./file2\x00') unlink(&(0x7f0000000140)='./file3\x00') 2m50.02100714s ago: executing program 32 (id=1937): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x786, &(0x7f0000001900)="$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") unlink(&(0x7f00000001c0)='./file2\x00') unlink(&(0x7f0000000140)='./file3\x00') 2m41.0755207s ago: executing program 1 (id=2242): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0) flock(r0, 0x1) 2m41.022869889s ago: executing program 1 (id=2243): r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000b40)={0x120, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x40}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7fffffff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xe512}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xbf16}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}}]}, 0x120}, 0x1, 0x0, 0x0, 0x4000080}, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90224fc602f0000000a0c0100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 2m40.757018974s ago: executing program 1 (id=2256): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getsockopt$sock_buf(r0, 0x1, 0x1f, 0x0, 0x0) 2m40.727419138s ago: executing program 1 (id=2257): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x800005, 0x32, 0xffffffffffffffff, 0x852ac000) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000010000000000000060018200000", @ANYRES32=r0, @ANYBLOB="0000000007000000c30009400000000095"], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xea, &(0x7f0000000fc0)=""/234}, 0x94) 2m40.65765044s ago: executing program 1 (id=2263): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mkdirat(r0, &(0x7f0000002040)='./file0\x00', 0x5) 2m40.613169957s ago: executing program 1 (id=2266): bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000eb15000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc) 2m24.979904679s ago: executing program 33 (id=2266): bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000eb15000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc) 2m14.401863192s ago: executing program 5 (id=2763): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) ioctl$SG_SET_KEEP_ORPHAN(r0, 0x2287, &(0x7f0000000040)=0x100) 2m14.327532765s ago: executing program 5 (id=2765): perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x4, 0xa0423, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_bp={0x0, 0x2}, 0x102013, 0x0, 0x7, 0x7, 0x3, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0x5d6, &(0x7f0000000300)="$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") syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./mnt/file0\x00', 0x0, &(0x7f0000000040)={[], [{@context={'context', 0x3d, 'sysadm_u'}}]}, 0x0, 0x236, &(0x7f0000000300)="$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") 2m14.225702372s ago: executing program 5 (id=2775): unshare(0x400) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x8c, 0x200) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000100)={0x17, 0xfffffffffffffd7e, 0x0}) 2m14.135298597s ago: executing program 5 (id=2778): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340)={0x0, 0x0, 0x100000}) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x1}, 0xe) 2m14.12088239s ago: executing program 5 (id=2782): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mknod$loop(&(0x7f0000000640)='./file0\x00', 0x100, 0x1) 2m14.043552583s ago: executing program 5 (id=2784): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/sysvipc/msg\x00', 0x0, 0x0) preadv2(r0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/139, 0x8b}], 0x1, 0x86a, 0x0, 0x0) lseek(r0, 0xf5, 0x0) 1m58.945420323s ago: executing program 34 (id=2784): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/sysvipc/msg\x00', 0x0, 0x0) preadv2(r0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/139, 0x8b}], 0x1, 0x86a, 0x0, 0x0) lseek(r0, 0xf5, 0x0) 1m36.401133513s ago: executing program 3 (id=3786): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000002240)='./file0\x00', 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x1, 0x2c8, &(0x7f0000000780)="$eJzs3T+LHGUYAPBn7vZmN7HYLaxEcEALq5BLa7OHXCC4lbKFWuhhEpC7RUjgwCguVrY2ln4CQbDzS9gIfgDBD2ClKQKvzOwOO7nM7GYhm1Pz+xV77837PO/7vDNz/zjm3Y9fnZ3eLuLu11/+HoNBFnvjGMfDLEaxF7WUUoqV8bcBAPyXPUwp/kwLT5kyLl+yiBjstjQAYEe2/vn/085LAgB27L33P3jnaDI5frcoBnFz9s35tPzLvvy46D+6G5/GWdyJ6zGMR4v/BdS/LZSvN1NK815RGsUbs/n5tMycffTLcvyjeqLDGMaoaj2ef2tyfFgsNPLnZR1Xl/OPy/lvxDBebpn/1uT4Rkt+TPN48/VG/ddiGL9+Ep/FWdyuiljlf3VYFG+n7/7+4sOyvDI/m59P+1XcStp/flcFAAAAAAAAAAAAAAAAAAAAAID/u2vLvXP6Ue3fUx6apmoXnP1H5ScHUdRGj+/Ps8jP6oEu7A80T/F9Sv1exOT4elEUaRm4yu/FK73oXc6qAQAAAAAAAAAAAAAAAAAA4N/l/ucPTk/Ozu7ca2n8djWio6ujUe8GUD/WvyFrv6tr3DjyWjw4Pel3D9jo2ls210wa+3VMFrF2OdE7qEcebXUStm9c6ar5hx+3HXCwOeZg3fl5No367jo9yaI1ph/1kUF9TX9uxuTRCP6r132v5l1lpM23X6ORt3YNt157/lLVmK+JiWxdYW/9sVjr8kh2cRV5dVZb0w8au3G03xvt16LrK+UJWXUd8mf0nQcAAAAAAAAAAAAAAAAAALho9dDvE11XNqTupf7OygIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA52r1/v9bNObL5KcIzuPe/UteIgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC+AfwIAAP//95FT2w==") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) 1m36.24529152s ago: executing program 3 (id=3793): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0) ftruncate(r0, 0xc17a) ftruncate(r0, 0x3) 1m36.193866359s ago: executing program 3 (id=3796): syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x4, 0x2, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x32}}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0xfffe, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xffffffffffffff6b, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48) 1m35.88619196s ago: executing program 3 (id=3805): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) close(0x3) timerfd_gettime(0xffffffffffffffff, 0x0) 1m35.817956651s ago: executing program 3 (id=3819): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mknod$loop(&(0x7f0000000640)='./file0\x00', 0x100, 0x1) 1m35.798012084s ago: executing program 3 (id=3821): r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00005200060005000100000008000800", @ANYRES32=r1], 0x2c}}, 0x20008000) 1m20.73664575s ago: executing program 35 (id=3821): r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00005200060005000100000008000800", @ANYRES32=r1], 0x2c}}, 0x20008000) 44.649100929s ago: executing program 2 (id=5808): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000) fallocate(r0, 0x0, 0xb, 0x9) 44.629686423s ago: executing program 2 (id=5810): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r0, 0x40000) ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f00000000c0)={0x7a, 0x0, 0x7, 0x9, 0xfffffff5, 0x81}) 44.571470763s ago: executing program 2 (id=5812): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1) ioctl$TCSETS(r0, 0x8924, 0x0) 44.547794726s ago: executing program 2 (id=5824): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x8c, 0x100040, 0xe, 0x2, 0x2, 0x2, 0x0, 0x0, 0x6, 0x21}) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000580)={{0x80}, 'port0\x00', 0x71, 0x100c75, 0x7, 0x4, 0x1ff, 0x3, 0xb597, 0x0, 0x1}) 44.4715787s ago: executing program 2 (id=5815): r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x21) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x20) fstat(r0, &(0x7f0000002300)) 44.47134715s ago: executing program 2 (id=5816): creat(&(0x7f0000000200)='./file1\x00', 0x12e) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x3fffffffc, 0x4}, 0x0, 0x0, 0x0, 0x8, 0xfff, 0xa001, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffff7ff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 29.296976272s ago: executing program 36 (id=5816): creat(&(0x7f0000000200)='./file1\x00', 0x12e) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x3fffffffc, 0x4}, 0x0, 0x0, 0x0, 0x8, 0xfff, 0xa001, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffff7ff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 689.647914ms ago: executing program 8 (id=7317): syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_matches\x00') r0 = fsopen(&(0x7f0000000000)='cgroup\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='name', &(0x7f0000000140)='ccnA\xf6gr\xe7lo.', 0x0) 668.427087ms ago: executing program 7 (id=7318): unshare(0x24060400) r0 = fsopen(&(0x7f0000000240)='rpc_pipefs\x00', 0x0) fsmount(r0, 0x0, 0x0) 651.47589ms ago: executing program 6 (id=7319): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0xa60a, 0x3}, 0x48) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4004010) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) 634.676253ms ago: executing program 8 (id=7321): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2503fffff9ff0000000016000000140001800d703a"], 0x28}, 0x1, 0x0, 0x0, 0x44880}, 0x0) 599.737619ms ago: executing program 9 (id=7322): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x20, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffd}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x0) 598.114679ms ago: executing program 6 (id=7323): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000004000)={0xf, {"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", 0xfffffffffffffe59}}, 0xfa) 587.242441ms ago: executing program 8 (id=7324): setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000200)=@req={0x6ec2, 0x5, 0x1, 0x5}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="220000000400000010"], 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000480)={r0, &(0x7f0000000840), &(0x7f0000000440), 0x1}, 0x20) 580.687123ms ago: executing program 7 (id=7325): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000deffffff00000003000000400001802c0004001400010002000000e000000200000000000000001400020002000000ffffffff00000000000000000d0001007507703a73"], 0x54}}, 0x0) 562.062815ms ago: executing program 8 (id=7326): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, 0x0) 550.401807ms ago: executing program 0 (id=7327): timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000040)=0x0) timer_settime(r0, 0x1, &(0x7f0000000080)={{}, {0x0, 0x3938700}}, 0x0) timer_delete(r0) 549.953487ms ago: executing program 9 (id=7328): r0 = epoll_create(0x7) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0x60000000}) 508.591014ms ago: executing program 6 (id=7329): r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x14002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b71}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0x0, 0x0, r0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f00000001c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}) 508.140894ms ago: executing program 9 (id=7330): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000000000007111ad00000000008510000002000000850000000500000095000000000000009500a505000000005160b53d4aaf0ecda3e967683918fabfc90ec1e06c5f48cb9ce64e815b7b74d0c3e9365f188f6a00591b"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8, &(0x7f0000001f00)}}, 0x10) 505.274845ms ago: executing program 8 (id=7331): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40091}, 0x48854) sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x4, 0xa, 0x701, 0x0, 0x0, {0xa, 0x0, 0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000020) 502.096115ms ago: executing program 6 (id=7332): mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000001, 0x6031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) remap_file_pages(&(0x7f0000ce9000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1) 486.219628ms ago: executing program 7 (id=7333): setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000f40)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c757466383d302c696f636861727365743d63703836302c696f636861727365743d6d616363726f617469616e2c756e695f786c6174653d312c747a3d5554432c6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703433372c73686f72746e616d653d77696e6e742c726f6469722c73686f72746e616d653d6d697865642c6e6f636173652c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c736d61636b66736465663d757466383d302c64697273796e632c736d61636b66736861743d262c657569643e807d6dc634ae06b292a3825c7626caa45b7a39a81660437a556646a082c54e8cf9c81260f6a760b9f06d5738818ee5a4503b0364b0f4c56abfe2", @ANYRES32, @ANYBLOB="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"], 0x25, 0x359, &(0x7f0000000bc0)="$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") open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000180)=ANY=[], 0x0) 449.440275ms ago: executing program 0 (id=7334): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000002980)={&(0x7f0000000340)=ANY=[@ANYBLOB="30000000120009162dbd7000fbdbdf2507000000", @ANYRES32=0x0, @ANYBLOB="20a004001000000008001f"], 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x20000004) syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), r0) 425.220408ms ago: executing program 9 (id=7335): r0 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000080)) add_key$user(&(0x7f00000000c0), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)='(', 0x1, r0) 415.560699ms ago: executing program 8 (id=7336): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000004000900041122000b"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380), &(0x7f0000000140), 0x80000003, r0}, 0x38) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000080)={0x0, &(0x7f0000000000)=""/56, &(0x7f00000001c0), &(0x7f00000000c0), 0x1, r0}, 0x38) 327.485725ms ago: executing program 9 (id=7337): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1) ioctl$TIOCSSOFTCAR(r0, 0x89f2, 0x0) 262.545646ms ago: executing program 7 (id=7338): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x1, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2, 0xffffffff}, r1, 0x1}}, 0x48) 234.30897ms ago: executing program 6 (id=7339): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x1000, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1) ioctl$TIOCSSOFTCAR(r0, 0x89f0, &(0x7f0000000080)=0x59b) 175.41622ms ago: executing program 7 (id=7340): perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffb, 0x1, @perf_config_ext={0x3fffffffc, 0xfffffffffffffffd}, 0x0, 0x3, 0x80, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) setrlimit(0x7, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, 0x0, 0x0}, 0x20) 161.562613ms ago: executing program 0 (id=7341): r0 = syz_open_dev$sg(&(0x7f0000000080), 0x6f5e, 0xa0001) setresuid(0x0, 0xee00, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffc, 0x6, 0x0, @buffer={0x20, 0x0, 0x0}, &(0x7f0000000240)="060000004e89", 0x0, 0x100004, 0x22, 0x3, 0x0}) 136.650307ms ago: executing program 7 (id=7342): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x114, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x1efb0, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0x8a6, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000050c0200000c0a01030000000000000000070000080900020073797a31000000000900010073797a3000000000e0010380dc010080080003400000000273000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002"], 0x290}}, 0x0) 131.305418ms ago: executing program 9 (id=7343): syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x10, &(0x7f0000000040)={[{@nodots}, {@nodots}, {@dots}, {@fat=@check_normal}, {@fat=@fmask={'fmask', 0x3d, 0x9}}, {@fat=@flush}, {@nodots}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@nodots}]}, 0x1, 0x159, &(0x7f00000004c0)="$eJzs27GKE0EcBvB/TKJRm9RisWBjFdQnUCSCuKAoKbRSiDaJBEyz2phH8QUFSZVuRPdI7nLJkRzs7ZH8fk0++GZgpsgOs7Af738dDSfTL5M38+g0GtF6GlksGtGNG9GM0iwAgEOySCn+pJTSrVnc/hUppXNDftayMACgMjuc/wDAgXH+A8Dxcf4DwPF59/7Dq2d53n+bZZ2I37NiUAzK37J/8TLvP8r+665mzYti0Fz2j8s+O9u3485J/2RjfzMePij7f93z1/lafzeG1W8fAAAAjkIvW9p4v+/1tvVlOvV+YO3+3op7rSvbBgCwh+n3H6NP4/Hnb3uFiMvMOojQjohrsAxBqDbU/WQCqrb609e9EgAAAAAAAAAAAAAAYJudvwfqXDx4kbZPr3uPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsO5vAAAA//9XS09N") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x18a3c85) 15.581827ms ago: executing program 0 (id=7344): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x70bd25, 0x25dedafe, {}, [@ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x28000}, 0x24000894) 15.352307ms ago: executing program 0 (id=7345): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0x4e22, @broadcast}, @ib={0x1b, 0x0, 0x0, {"0000040000000000000000cbd3060001"}, 0x2, 0x2, 0x4}}}, 0x118) 11.736157ms ago: executing program 6 (id=7346): preadv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/20, 0x14}], 0x1, 0x10000009, 0xffffffff) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1}, 0x28) bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="8500000005000000070000000000000095000000000000005bee1ea01c7814c00980e99a5df1f0614e1942612258708ff9dfaef11bd5504710e1d85587ee4727c9802ba8f5bd83e27c5585207b4e19cee40a9cab915f98eeb1e5a448c0d934224a13ed92a919f303d06b06833168000000000000000000000000f828967cd7352bed054c35edcb5548bcc8573fa4bcd1b87b8bc4a080d48368c87caa011f9f43f44dce6f7896caa82c8cc94a6f9f01ea49effd5ddd45908a22dc23876180f09a80e42135896d93fc510cbde2b03f40dab9c5904a59c5a7a47d173f8001e59332bbea03c2b6"], &(0x7f0000000040)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x14, &(0x7f00000000c0)={0x0, 0x11}, 0x1, 0x10, &(0x7f0000000000), 0xa, 0x0, 0xffffffffffffffff, 0x4c}, 0x70) 0s ago: executing program 0 (id=7347): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f0000000b00)={[{@grpquota}, {@nogrpid}, {@bsdgroups}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x40) quotactl_fd$Q_GETQUOTA(r0, 0xffffffff80000701, 0x0, &(0x7f0000000100)) 0s ago: executing program 7 (id=7348): syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./bus\x00', 0x2000094, &(0x7f0000001a00)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRESOCT=0x0, @ANYBLOB="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", @ANYRESDEC, @ANYRES64, @ANYBLOB="0ea1a3ed758749a35b0cf19e7301710a8a7c5e7fe9b7c49589266bd5045f15f1817fcc4ea04eea7304df37b8beaeafc22a5a08a1a70024"], 0x1, 0x2c3, &(0x7f0000000180)="$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") mknod$loop(&(0x7f0000000480)='./file0\x00', 0x6000, 0x1) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) kernel console output (not intermixed with test programs): ize=1024 fake=0 [ 200.765198][T13658] EXT4-fs error (device loop8) in ext4_delete_entry:2737: Corrupt filesystem [ 200.797737][T13658] EXT4-fs warning (device loop8): ext4_rename_delete:3729: inode #2: comm syz.8.4345: Deleting old file: nlink 4, error=-117 [ 200.823402][T13658] EXT4-fs error (device loop8): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.8.4345: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 200.853464][T13658] EXT4-fs error (device loop8) in ext4_delete_entry:2737: Corrupt filesystem [ 201.168950][T13721] loop6: detected capacity change from 0 to 512 [ 201.181824][T13721] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 201.200505][T13721] EXT4-fs (loop6): 1 truncate cleaned up [ 201.219061][T13721] EXT4-fs mount: 5 callbacks suppressed [ 201.219077][T13721] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.230025][T13724] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c198, mo2=0002] [ 201.270416][T13724] System zones: 1-12 [ 201.275107][T13724] EXT4-fs error (device loop7): ext4_iget_extra_inode:5042: inode #15: comm syz.7.4387: corrupted in-inode xattr: e_value size too large [ 201.278286][T13721] EXT4-fs error (device loop6): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.6.4372: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 201.290202][T13724] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 201.290423][T13724] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.4387: couldn't read orphan inode 15 (err -117) [ 201.311023][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 201.311044][ C0] EXT4-fs (loop7): initial error at time 1776302392: ext4_iget_extra_inode:5042: inode 15 [ 201.311071][ C0] EXT4-fs (loop7): last error at time 1776302392: ext4_iget_extra_inode:5042: inode 15 [ 201.346251][T13721] EXT4-fs error (device loop6) in ext4_delete_entry:2737: Corrupt filesystem [ 201.351763][T13724] loop7: lost filesystem error report for type 5 error -117 [ 201.370704][T13721] EXT4-fs warning (device loop6): ext4_rename_delete:3729: inode #2: comm syz.6.4372: Deleting old file: nlink 4, error=-117 [ 201.393443][T13728] EXT4-fs error (device loop6): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.6.4372: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 201.404045][T13724] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.427974][T13728] EXT4-fs error (device loop6) in ext4_delete_entry:2737: Corrupt filesystem [ 201.498383][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.513332][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.736019][T13768] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c198, mo2=0002] [ 201.759113][T13768] System zones: 1-12 [ 201.771684][T13768] EXT4-fs error (device loop6): ext4_iget_extra_inode:5042: inode #15: comm syz.6.4391: corrupted in-inode xattr: e_value size too large [ 201.794767][T13768] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 201.795133][T13768] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.4391: couldn't read orphan inode 15 (err -117) [ 201.804315][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 201.804336][ C1] EXT4-fs (loop6): initial error at time 1776302392: ext4_iget_extra_inode:5042: inode 15 [ 201.804366][ C1] EXT4-fs (loop6): last error at time 1776302392: ext4_iget_extra_inode:5042: inode 15 [ 201.844404][T13768] loop6: lost filesystem error report for type 5 error -117 [ 201.844960][T13768] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.881931][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.917495][T13776] program syz.6.4392 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 201.945698][T13778] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4396'. [ 201.955577][T13778] netlink: 'syz.8.4396': attribute type 3 has an invalid length. [ 202.465142][T13794] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 202.507254][T13794] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 202.532505][T13794] EXT4-fs (loop7): Remounting filesystem read-only [ 202.539095][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 202.539146][ C0] EXT4-fs (loop7): initial error at time 1776302393: ext4_mb_generate_buddy:1317 [ 202.539169][ C0] EXT4-fs (loop7): last error at time 1776302393: ext4_mb_generate_buddy:1317 [ 202.549805][T13805] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c198, mo2=0002] [ 202.576898][T13805] System zones: 1-12 [ 202.580926][T13805] EXT4-fs error (device loop8): ext4_iget_extra_inode:5042: inode #15: comm syz.8.4408: corrupted in-inode xattr: e_value size too large [ 202.595673][T13805] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 202.596017][T13794] EXT4-fs (loop7): 1 truncate cleaned up [ 202.605356][ C1] EXT4-fs (loop8): error count since last fsck: 1 [ 202.605378][ C1] EXT4-fs (loop8): initial error at time 1776302393: ext4_iget_extra_inode:5042: inode 15 [ 202.605412][ C1] EXT4-fs (loop8): last error at time 1776302393: ext4_iget_extra_inode:5042: inode 15 [ 202.634481][T13805] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.4408: couldn't read orphan inode 15 (err -117) [ 202.638871][T13794] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.650883][T13805] loop8: lost filesystem error report for type 5 error -117 [ 202.667638][T13805] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.697226][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.734075][T13813] program syz.2.4411 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 202.756171][T13811] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 202.791553][T13811] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 202.821381][T13811] EXT4-fs (loop6): Remounting filesystem read-only [ 202.828422][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 202.828463][ C0] EXT4-fs (loop6): initial error at time 1776302393: ext4_mb_generate_buddy:1317 [ 202.828490][ C0] EXT4-fs (loop6): last error at time 1776302393: ext4_mb_generate_buddy:1317 [ 202.861448][T13811] EXT4-fs (loop6): 1 truncate cleaned up [ 202.868454][T13811] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.600844][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.602824][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.710908][T13830] sit0: entered promiscuous mode [ 203.719704][T13830] netlink: 'syz.8.4420': attribute type 1 has an invalid length. [ 203.738625][T13830] netlink: 1 bytes leftover after parsing attributes in process `syz.8.4420'. [ 203.795924][T13838] set_capacity_and_notify: 6 callbacks suppressed [ 203.795941][T13838] loop6: detected capacity change from 0 to 1024 [ 203.805530][T13842] loop8: detected capacity change from 0 to 512 [ 203.811714][T13838] EXT4-fs: Ignoring removed mblk_io_submit option [ 203.816883][T13840] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4427'. [ 203.825505][T13838] EXT4-fs: Ignoring removed bh option [ 203.841313][T13842] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c198, mo2=0002] [ 203.852233][T13838] EXT4-fs (loop6): stripe (8) is not aligned with cluster size (16), stripe is disabled [ 203.864426][T13842] System zones: 1-12 [ 203.873292][T13842] EXT4-fs error (device loop8): ext4_iget_extra_inode:5042: inode #15: comm syz.8.4428: corrupted in-inode xattr: e_value size too large [ 203.897023][T13842] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 203.904019][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 203.916374][T13842] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.4428: couldn't read orphan inode 15 (err -117) [ 203.920733][ C0] EXT4-fs (loop8): initial error at time 1776302395: ext4_iget_extra_inode:5042: inode 15 [ 203.920765][ C0] EXT4-fs (loop8): last error at time 1776302395: ext4_iget_extra_inode:5042: inode 15 [ 203.955536][T13842] loop8: lost filesystem error report for type 5 error -117 [ 203.959861][T13853] netlink: 'syz.2.4430': attribute type 11 has an invalid length. [ 203.960274][T13838] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.967679][T13853] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4430'. [ 204.024018][T13838] ext4 filesystem being mounted at /466/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.024745][T13842] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.094886][ T1575] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 106: padding at end of block bitmap is not set [ 204.125155][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.144680][ T1575] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 204.158496][ T1575] EXT4-fs (loop6): This should not happen!! Data will be lost [ 204.158496][ T1575] [ 204.170534][ T1575] EXT4-fs (loop6): Total free blocks count 0 [ 204.177555][ T1575] EXT4-fs (loop6): Free/Dirty block details [ 204.183778][ T1575] EXT4-fs (loop6): free_blocks=0 [ 204.198878][ T1575] EXT4-fs (loop6): dirty_blocks=16 [ 204.204850][ T1575] EXT4-fs (loop6): Block reservation details [ 204.211828][ T1575] EXT4-fs (loop6): i_reserved_data_blocks=1 [ 204.218613][ T9045] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 204.231471][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 204.349685][T13885] loop8: detected capacity change from 0 to 256 [ 204.388181][T13885] FAT-fs (loop8): Directory bread(block 64) failed [ 204.395513][T13885] FAT-fs (loop8): Directory bread(block 65) failed [ 204.402373][T13885] FAT-fs (loop8): Directory bread(block 66) failed [ 204.409414][T13885] FAT-fs (loop8): Directory bread(block 67) failed [ 204.416306][T13885] FAT-fs (loop8): Directory bread(block 68) failed [ 204.432836][T13885] FAT-fs (loop8): Directory bread(block 69) failed [ 204.439747][T13885] FAT-fs (loop8): Directory bread(block 70) failed [ 204.446809][T13885] FAT-fs (loop8): Directory bread(block 71) failed [ 204.453440][T13885] FAT-fs (loop8): Directory bread(block 72) failed [ 204.460976][T13885] FAT-fs (loop8): Directory bread(block 73) failed [ 204.526619][T13894] vlan2: entered promiscuous mode [ 204.531839][T13894] ip6gretap0: entered promiscuous mode [ 204.568250][T13898] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4453'. [ 204.958873][T13915] loop2: detected capacity change from 0 to 2048 [ 205.015031][T13915] loop2: p3 p4 < > [ 205.023457][T13915] loop2: p3 start 11362048 is beyond EOD, truncated [ 205.060215][T11011] udevd[11011]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 205.111445][ T28] audit: type=1107 audit(1776302396.265:1124): pid=13922 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 205.146537][T13887] syz.7.4450 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 205.258050][T13887] CPU: 0 UID: 0 PID: 13887 Comm: syz.7.4450 Not tainted syzkaller #0 PREEMPT(full) [ 205.258077][T13887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 205.258090][T13887] Call Trace: [ 205.258174][T13887] [ 205.258180][T13887] __dump_stack+0x1d/0x30 [ 205.258231][T13887] dump_stack_lvl+0x95/0xd0 [ 205.258262][T13887] dump_stack+0x15/0x1b [ 205.258280][T13887] dump_header+0x80/0x240 [ 205.258359][T13887] oom_kill_process+0x295/0x350 [ 205.258388][T13887] out_of_memory+0x97d/0xb80 [ 205.258488][T13887] try_charge_memcg+0x62f/0xa10 [ 205.258534][T13887] __memcg_kmem_charge_page+0x139/0x2b0 [ 205.258557][T13887] __alloc_frozen_pages_noprof+0x18a/0x350 [ 205.258589][T13887] alloc_pages_mpol+0xb3/0x260 [ 205.258660][T13887] alloc_pages_noprof+0x8f/0x140 [ 205.258707][T13887] __vmalloc_node_range_noprof+0xaed/0x11c0 [ 205.258734][T13887] __kvmalloc_node_noprof+0x3d4/0x640 [ 205.258751][T13887] ? futex_hash_allocate+0x190/0x9a0 [ 205.258852][T13887] ? futex_hash_allocate+0x190/0x9a0 [ 205.258940][T13887] futex_hash_allocate+0x190/0x9a0 [ 205.258971][T13887] ? cap_task_prctl+0x13f/0x6b0 [ 205.258990][T13887] futex_hash_prctl+0xd8/0xf0 [ 205.259038][T13887] __se_sys_prctl+0x4f4/0x1400 [ 205.259184][T13887] __x64_sys_prctl+0x67/0x80 [ 205.259210][T13887] x64_sys_call+0x2533/0x3020 [ 205.259232][T13887] do_syscall_64+0x12c/0x3b0 [ 205.259253][T13887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.259330][T13887] RIP: 0033:0x7f36ae23c819 [ 205.259348][T13887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 205.259364][T13887] RSP: 002b:00007f36acc8f028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 205.259395][T13887] RAX: ffffffffffffffda RBX: 00007f36ae4b5fa0 RCX: 00007f36ae23c819 [ 205.259408][T13887] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e [ 205.259420][T13887] RBP: 00007f36ae2d2c91 R08: 0000000000000000 R09: 0000000000000000 [ 205.259445][T13887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.259458][T13887] R13: 00007f36ae4b6038 R14: 00007f36ae4b5fa0 R15: 00007ffe5fc96308 [ 205.259479][T13887] [ 205.259499][T13887] memory: usage 307200kB, limit 307200kB, failcnt 197 [ 205.497718][T13887] memory+swap: usage 307644kB, limit 9007199254740988kB, failcnt 0 [ 205.507890][T13887] kmem: usage 278536kB, limit 9007199254740988kB, failcnt 0 [ 205.515507][T13887] Memory cgroup stats for /syz7: [ 205.515792][T13887] cache 0 [ 205.523887][T13887] rss 29343744 [ 205.527652][T13887] shmem 0 [ 205.530964][T13887] mapped_file 0 [ 205.535302][T13887] dirty 0 [ 205.538333][T13887] writeback 0 [ 205.541610][T13887] workingset_refault_anon 0 [ 205.546156][T13887] workingset_refault_file 0 [ 205.550792][T13887] swap 454656 [ 205.555757][T13887] swapcached 458752 [ 205.560191][T13887] pgpgin 62588 [ 205.575712][T13887] pgpgout 55422 [ 205.579717][T13887] pgfault 52692 [ 205.583309][T13887] pgmajfault 0 [ 205.586940][T13887] inactive_anon 4096 [ 205.591121][T13887] active_anon 0 [ 205.601068][T13887] inactive_file 8192 [ 205.615621][T13887] active_file 0 [ 205.622388][T13887] unevictable 29339648 [ 205.631336][T13887] hierarchical_memory_limit 314572800 [ 205.643523][T13887] hierarchical_memsw_limit 9223372036854771712 [ 205.654955][T13887] total_cache 0 [ 205.658824][T13887] total_rss 29343744 [ 205.662880][T13887] total_shmem 0 [ 205.667545][T13887] total_mapped_file 0 [ 205.679923][T13971] loop6: detected capacity change from 0 to 256 [ 205.690195][T13970] loop8: detected capacity change from 0 to 1024 [ 205.697023][T13887] total_dirty 0 [ 205.700955][T13887] total_writeback 0 [ 205.705458][T13887] total_workingset_refault_anon 0 [ 205.711609][T13887] total_workingset_refault_file 0 [ 205.725572][T13887] total_swap 454656 [ 205.729341][T13971] FAT-fs (loop6): Directory bread(block 64) failed [ 205.729980][T13887] total_swapcached 458752 [ 205.741732][T13887] total_pgpgin 62588 [ 205.745045][T13971] FAT-fs (loop6): Directory bread(block 65) failed [ 205.747595][T13970] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 205.758316][T13971] FAT-fs (loop6): Directory bread(block 66) failed [ 205.765966][T13887] total_pgpgout 55422 [ 205.765978][T13887] total_pgfault 52692 [ 205.765986][T13887] total_pgmajfault 0 [ 205.765995][T13887] total_inactive_anon 4096 [ 205.766042][T13887] total_active_anon 0 [ 205.766051][T13887] total_inactive_file 8192 [ 205.766059][T13887] total_active_file 0 [ 205.766068][T13887] total_unevictable 29339648 [ 205.766138][T13887] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.4450,pid=13886,uid=0 [ 205.766208][T13887] Memory cgroup out of memory: Killed process 13887 (syz.7.4450) total-vm:96212kB, anon-rss:29856kB, file-rss:66288kB, shmem-rss:0kB, UID:0 pgtables:252kB oom_score_adj:1000 [ 205.847155][T13971] FAT-fs (loop6): Directory bread(block 67) failed [ 205.860867][T13971] FAT-fs (loop6): Directory bread(block 68) failed [ 205.868466][T13971] FAT-fs (loop6): Directory bread(block 69) failed [ 205.876183][T13971] FAT-fs (loop6): Directory bread(block 70) failed [ 205.883878][T13971] FAT-fs (loop6): Directory bread(block 71) failed [ 205.892605][T13971] FAT-fs (loop6): Directory bread(block 72) failed [ 205.895632][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.911860][T13971] FAT-fs (loop6): Directory bread(block 73) failed [ 206.160140][ T28] audit: type=1326 audit(1776302397.315:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13993 comm="syz.7.4498" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f36ae23c819 code=0x0 [ 207.022596][T14009] loop6: detected capacity change from 0 to 1024 [ 207.023194][T14008] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(3) [ 207.035900][T14008] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 207.045287][T14008] vhci_hcd vhci_hcd.0: Device attached [ 207.058108][T14009] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.067215][T14010] vhci_hcd: connection closed [ 207.077805][ T39] vhci_hcd vhci_hcd.8: stop threads [ 207.092608][T14016] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4505'. [ 207.102549][ T39] vhci_hcd vhci_hcd.8: release socket [ 207.127197][ T39] vhci_hcd vhci_hcd.8: disconnect device [ 207.205252][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.419832][T14033] loop6: detected capacity change from 0 to 512 [ 207.453913][T14033] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2808: inode #11: comm syz.6.4511: corrupted xattr block 95: invalid header [ 207.485417][T14033] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 207.485690][T14033] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.4511: bg 0: block 7: invalid block bitmap [ 207.494966][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 207.494984][ C0] EXT4-fs (loop6): initial error at time 1776302398: ext4_expand_extra_isize_ea:2808: inode 11 [ 207.495017][ C0] EXT4-fs (loop6): last error at time 1776302398: ext4_expand_extra_isize_ea:2808: inode 11 [ 207.559573][T14033] loop6: lost filesystem error report for type 5 error -117 [ 207.560893][ T28] audit: type=1326 audit(1776302398.715:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14037 comm="syz.0.4513" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd8086c819 code=0x0 [ 207.561234][T14033] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 207.601840][T14033] loop6: lost filesystem error report for type 5 error -117 [ 207.602668][T14033] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2970: inode #11: comm syz.6.4511: corrupted xattr block 95: invalid header [ 207.635439][T14033] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 207.635758][T14033] EXT4-fs warning (device loop6): ext4_evict_inode:287: xattr delete (err -117) [ 207.664017][T14033] EXT4-fs (loop6): 1 orphan inode deleted [ 207.670602][T14033] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.773712][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.849789][T14058] loop7: detected capacity change from 0 to 512 [ 207.877293][T14058] EXT4-fs: Ignoring removed nobh option [ 207.898447][T14058] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 207.941880][T14058] EXT4-fs (loop7): 1 truncate cleaned up [ 207.953909][T14058] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.019299][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.034369][T14067] netlink: 100 bytes leftover after parsing attributes in process `syz.8.4526'. [ 208.073926][T14069] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3) [ 208.080537][T14069] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 208.104161][T14069] vhci_hcd vhci_hcd.0: Device attached [ 208.134832][T14070] vhci_hcd: connection closed [ 208.135179][ T62] vhci_hcd vhci_hcd.7: stop threads [ 208.152631][ T62] vhci_hcd vhci_hcd.7: release socket [ 208.166427][T14014] syz.2.4504 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 208.174968][T14079] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4532'. [ 208.182067][ T62] vhci_hcd vhci_hcd.7: disconnect device [ 208.205075][T14014] CPU: 1 UID: 0 PID: 14014 Comm: syz.2.4504 Not tainted syzkaller #0 PREEMPT(full) [ 208.205103][T14014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 208.205115][T14014] Call Trace: [ 208.205123][T14014] [ 208.205202][T14014] __dump_stack+0x1d/0x30 [ 208.205231][T14014] dump_stack_lvl+0x95/0xd0 [ 208.205256][T14014] dump_stack+0x15/0x1b [ 208.205306][T14014] dump_header+0x80/0x240 [ 208.205377][T14014] oom_kill_process+0x295/0x350 [ 208.205406][T14014] out_of_memory+0x97d/0xb80 [ 208.205467][T14014] try_charge_memcg+0x62f/0xa10 [ 208.205536][T14014] __memcg_kmem_charge_page+0x139/0x2b0 [ 208.205559][T14014] __alloc_frozen_pages_noprof+0x18a/0x350 [ 208.205584][T14014] alloc_pages_mpol+0xb3/0x260 [ 208.205650][T14014] alloc_pages_noprof+0x8f/0x140 [ 208.205672][T14014] __vmalloc_node_range_noprof+0xaed/0x11c0 [ 208.205702][T14014] __kvmalloc_node_noprof+0x3d4/0x640 [ 208.205721][T14014] ? futex_hash_allocate+0x190/0x9a0 [ 208.205783][T14014] ? futex_hash_allocate+0x190/0x9a0 [ 208.205869][T14014] futex_hash_allocate+0x190/0x9a0 [ 208.205899][T14014] ? cap_task_prctl+0x13f/0x6b0 [ 208.205922][T14014] futex_hash_prctl+0xd8/0xf0 [ 208.205983][T14014] __se_sys_prctl+0x4f4/0x1400 [ 208.206112][T14014] __x64_sys_prctl+0x67/0x80 [ 208.206224][T14014] x64_sys_call+0x2533/0x3020 [ 208.206251][T14014] do_syscall_64+0x12c/0x3b0 [ 208.206298][T14014] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.206320][T14014] RIP: 0033:0x7fefa75dc819 [ 208.206339][T14014] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 208.206357][T14014] RSP: 002b:00007fefa6016028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 208.206378][T14014] RAX: ffffffffffffffda RBX: 00007fefa7856090 RCX: 00007fefa75dc819 [ 208.206437][T14014] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e [ 208.206451][T14014] RBP: 00007fefa7672c91 R08: 0000000000000000 R09: 0000000000000000 [ 208.206465][T14014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.206478][T14014] R13: 00007fefa7856128 R14: 00007fefa7856090 R15: 00007fff970f6978 [ 208.206507][T14014] [ 208.208710][T14014] memory: usage 307200kB, limit 307200kB, failcnt 428 [ 208.456439][T14014] memory+swap: usage 307852kB, limit 9007199254740988kB, failcnt 0 [ 208.465150][T14014] kmem: usage 268688kB, limit 9007199254740988kB, failcnt 0 [ 208.473333][T14014] Memory cgroup stats for /syz2: [ 208.473573][T14014] cache 9961472 [ 208.491471][T14014] rss 29474816 [ 208.495017][T14014] shmem 0 [ 208.498581][T14014] mapped_file 9961472 [ 208.505005][T14014] dirty 49152 [ 208.520735][T14014] writeback 0 [ 208.524852][T14014] workingset_refault_anon 15 [ 208.529811][T14014] workingset_refault_file 5096 [ 208.535774][T14014] swap 667648 [ 208.539493][T14014] swapcached 733184 [ 208.544720][T14014] pgpgin 217386 [ 208.548975][T14014] pgpgout 207758 [ 208.552934][T14014] pgfault 201546 [ 208.557181][T14014] pgmajfault 11 [ 208.561971][T14014] inactive_anon 0 [ 208.567258][T14014] active_anon 4096 [ 208.572743][T14014] inactive_file 0 [ 208.577354][T14014] active_file 0 [ 208.581561][T14014] unevictable 39432192 [ 208.586104][T14014] hierarchical_memory_limit 314572800 [ 208.591635][T14014] hierarchical_memsw_limit 9223372036854771712 [ 208.600055][T14014] total_cache 9961472 [ 208.604669][T14014] total_rss 29474816 [ 208.608672][T14014] total_shmem 0 [ 208.612585][T14014] total_mapped_file 9961472 [ 208.617882][T14014] total_dirty 49152 [ 208.622896][T14014] total_writeback 0 [ 208.630602][T14014] total_workingset_refault_anon 15 [ 208.637042][T14014] total_workingset_refault_file 5096 [ 208.643350][T14014] total_swap 667648 [ 208.647754][T14014] total_swapcached 733184 [ 208.652725][T14014] total_pgpgin 217386 [ 208.659226][T14014] total_pgpgout 207758 [ 208.663822][T14014] total_pgfault 201546 [ 208.668449][T14014] total_pgmajfault 11 [ 208.673659][T14014] total_inactive_anon 0 [ 208.693480][T14014] total_active_anon 4096 [ 208.699624][T14014] total_inactive_file 0 [ 208.704242][T14014] total_active_file 0 [ 208.708578][T14014] total_unevictable 39432192 [ 208.713240][T14014] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4504,pid=14004,uid=0 [ 208.757362][T14014] Memory cgroup out of memory: Killed process 14004 (syz.2.4504) total-vm:96344kB, anon-rss:29984kB, file-rss:66288kB, shmem-rss:0kB, UID:0 pgtables:252kB oom_score_adj:1000 [ 209.142906][ T28] audit: type=1326 audit(1776302400.295:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14108 comm="syz.8.4547" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fec5eb4c819 code=0x0 [ 209.545154][T14133] loop6: detected capacity change from 0 to 512 [ 209.569573][T14133] EXT4-fs: Ignoring removed bh option [ 209.610383][T14133] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2 [ 209.654710][T14133] EXT4-fs error (device loop6): ext4_get_branch:178: inode #13: block 1024: comm syz.6.4568: invalid block [ 209.691768][T14133] loop6: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 209.692670][T14133] EXT4-fs (loop6): 1 truncate cleaned up [ 209.703398][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 209.703416][ C1] EXT4-fs (loop6): initial error at time 1776302400: ext4_get_branch:178: inode 13: block 1024 [ 209.703473][ C1] EXT4-fs (loop6): last error at time 1776302400: ext4_get_branch:178: inode 13: block 1024 [ 209.744921][T14133] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.774830][T14133] EXT4-fs error (device loop6): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.6.4568: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0 [ 209.784364][T14144] loop7: detected capacity change from 0 to 2048 [ 209.823398][ T9045] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.854720][T14144] loop7: p3 p4 < > [ 209.858933][T14144] loop7: p3 start 11362048 is beyond EOD, truncated [ 209.903993][T11011] udevd[11011]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory [ 210.182265][T14189] loop8: detected capacity change from 0 to 512 [ 210.197675][T14189] EXT4-fs: Ignoring removed bh option [ 210.228946][T14189] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2 [ 210.263358][T14189] EXT4-fs error (device loop8): ext4_get_branch:178: inode #13: block 1024: comm syz.8.4576: invalid block [ 210.283075][T14189] loop8: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 210.284103][T14189] EXT4-fs (loop8): 1 truncate cleaned up [ 210.300854][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 210.300894][ C0] EXT4-fs (loop8): initial error at time 1776302401: ext4_get_branch:178: inode 13: block 1024 [ 210.300924][ C0] EXT4-fs (loop8): last error at time 1776302401: ext4_get_branch:178: inode 13: block 1024 [ 210.332268][T14189] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.350904][T14189] EXT4-fs error (device loop8): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.8.4576: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0 [ 210.398239][T14195] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4580'. [ 210.411423][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.719200][T14244] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4601'. [ 210.829014][ T28] audit: type=1326 audit(1776302401.985:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14253 comm="syz.2.4608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa75dc819 code=0x7ffc0000 [ 210.872006][ T28] audit: type=1326 audit(1776302401.985:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14253 comm="syz.2.4608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa75dc819 code=0x7ffc0000 [ 210.896983][ T28] audit: type=1326 audit(1776302402.015:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14253 comm="syz.2.4608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7fefa75dc819 code=0x7ffc0000 [ 210.921599][ T28] audit: type=1326 audit(1776302402.015:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14253 comm="syz.2.4608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa75dc819 code=0x7ffc0000 [ 210.949525][ T28] audit: type=1326 audit(1776302402.015:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14253 comm="syz.2.4608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa75dc819 code=0x7ffc0000 [ 211.798122][ T28] audit: type=1326 audit(1776302402.955:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14322 comm="syz.6.4630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 211.834760][ T28] audit: type=1326 audit(1776302402.955:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14322 comm="syz.6.4630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 211.860797][ T28] audit: type=1326 audit(1776302402.955:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14322 comm="syz.6.4630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 211.902433][ T28] audit: type=1326 audit(1776302402.955:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14322 comm="syz.6.4630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 211.931878][ T28] audit: type=1326 audit(1776302402.955:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14322 comm="syz.6.4630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 212.911855][T14441] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4664'. [ 212.961052][T14448] loop8: detected capacity change from 0 to 512 [ 212.976962][T14448] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 212.989951][T14448] EXT4-fs (loop8): orphan cleanup on readonly fs [ 212.997843][T14448] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:517: comm syz.8.4680: Block bitmap for bg 0 marked uninitialized [ 213.011966][T14448] loop8: lost filesystem error report for type 5 error -117 [ 213.012344][T14448] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 213.020295][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 213.020327][ C0] EXT4-fs (loop8): initial error at time 1776302404: ext4_read_block_bitmap_nowait:517 [ 213.020352][ C0] EXT4-fs (loop8): last error at time 1776302404: ext4_read_block_bitmap_nowait:517 [ 213.056334][T14448] loop8: lost filesystem error report for type 5 error -117 [ 213.056588][T14448] EXT4-fs (loop8): 1 orphan inode deleted [ 213.071604][T14448] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 213.098658][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.274745][T14479] netlink: 'syz.8.4692': attribute type 4 has an invalid length. [ 213.603239][T14515] netlink: 96 bytes leftover after parsing attributes in process `syz.7.4714'. [ 213.684990][T14522] ieee802154 phy0 wpan0: encryption failed: -22 [ 214.158568][T14561] netlink: 16255 bytes leftover after parsing attributes in process `syz.7.4732'. [ 214.221444][T14565] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.238480][T14565] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.257039][T14565] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 214.874496][T14634] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 215.207831][T14656] xt_connbytes: Forcing CT accounting to be enabled [ 216.034790][T14736] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4814'. [ 216.467226][T14772] loop8: detected capacity change from 0 to 1024 [ 216.488091][T14772] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 216.502018][T14772] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.517105][T14772] EXT4-fs error (device loop8): ext4_readdir:265: inode #2: block 16: comm syz.8.4835: path /136/file1: bad entry in directory: directory entry overrun - offset=876, inode=0, rec_len=1024, size=1024 fake=0 [ 216.539056][T14772] EXT4-fs (loop8): Remounting filesystem read-only [ 216.559153][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 216.684208][T14793] netlink: 'syz.6.4844': attribute type 5 has an invalid length. [ 216.739872][T14798] loop7: detected capacity change from 0 to 512 [ 216.740432][T14798] EXT4-fs: Ignoring removed bh option [ 216.757030][T14798] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 216.776407][T14795] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 216.809794][T14798] EXT4-fs (loop7): failed to open journal device unknown-block(0,0) -6 [ 216.823838][T14798] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4846'. [ 217.032490][T14829] netlink: 'syz.7.4857': attribute type 5 has an invalid length. [ 217.469475][T14876] netlink: 'syz.6.4884': attribute type 2 has an invalid length. [ 217.765876][ T28] kauditd_printk_skb: 75 callbacks suppressed [ 217.765899][ T28] audit: type=1400 audit(1776302408.925:1213): avc: denied { read } for pid=14912 comm="syz.2.4902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 217.801898][T14915] netlink: 14 bytes leftover after parsing attributes in process `syz.6.4903'. [ 217.820943][T14919] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4904'. [ 217.885198][T14919] team0: Port device team_slave_0 removed [ 217.933563][ T28] audit: type=1400 audit(1776302409.085:1214): avc: denied { getopt } for pid=14929 comm="syz.2.4909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 218.068953][T14952] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4920'. [ 218.104091][T14956] loop8: detected capacity change from 0 to 512 [ 218.732789][ T28] audit: type=1400 audit(1776302409.885:1215): avc: denied { accept } for pid=14993 comm="syz.8.4940" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 219.020121][T15007] loop8: detected capacity change from 0 to 512 [ 219.039430][T15007] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors [ 219.054066][T15007] EXT4-fs error (device loop8): __ext4_fill_super:5590: inode #2: comm syz.8.4946: iget: special inode unallocated [ 219.066806][T15007] loop8: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 219.067915][T15007] EXT4-fs (loop8): Remounting filesystem read-only [ 219.077305][ C1] EXT4-fs (loop8): error count since last fsck: 1 [ 219.077327][ C1] EXT4-fs (loop8): initial error at time 1776302410: __ext4_fill_super:5590: inode 2 [ 219.077382][ C1] EXT4-fs (loop8): last error at time 1776302410: __ext4_fill_super:5590: inode 2 [ 219.111567][T15007] EXT4-fs (loop8): get root inode failed [ 219.117275][T15007] EXT4-fs (loop8): mount failed [ 219.242029][T15027] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4955'. [ 219.755833][T15108] netlink: 'syz.8.4995': attribute type 29 has an invalid length. [ 219.764956][T15108] netlink: 'syz.8.4995': attribute type 29 has an invalid length. [ 220.031292][ T28] audit: type=1400 audit(1776302411.185:1216): avc: denied { connect } for pid=15158 comm="syz.6.5019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 220.160790][ T28] audit: type=1400 audit(1776302411.315:1217): avc: denied { ioctl } for pid=15178 comm="syz.2.5030" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 220.368953][T15209] macsec2: entered promiscuous mode [ 220.380411][T15209] macsec2: entered allmulticast mode [ 220.459695][T15229] loop8: detected capacity change from 0 to 512 [ 220.512502][T15229] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.563996][T15229] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 220.575702][T15252] loop7: detected capacity change from 0 to 128 [ 220.653991][T15264] loop7: detected capacity change from 0 to 1024 [ 220.662342][T15264] EXT4-fs: Ignoring removed bh option [ 220.687532][T15264] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 220.716838][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 220.785506][ T28] audit: type=1326 audit(1776302411.945:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15282 comm="syz.2.5076" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fefa75dc819 code=0x0 [ 220.887917][ T28] audit: type=1326 audit(1776302412.045:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15292 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 220.916714][ T28] audit: type=1326 audit(1776302412.045:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15292 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 220.941431][ T28] audit: type=1326 audit(1776302412.045:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15292 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 220.965787][ T28] audit: type=1326 audit(1776302412.045:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15292 comm="syz.7.5081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 221.045092][T15307] netlink: 277 bytes leftover after parsing attributes in process `syz.0.5087'. [ 221.090177][T15311] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5090'. [ 221.111478][T15311] tipc: Invalid UDP bearer configuration [ 221.111495][T15311] tipc: Enabling of bearer rejected, failed to enable media [ 221.132007][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.189982][T15330] loop8: detected capacity change from 0 to 256 [ 221.557968][T11213] hid_parser_main: 5 callbacks suppressed [ 221.557985][T11213] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 221.576391][T15399] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5128'. [ 221.586382][T11213] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 221.607932][T15404] netlink: 88 bytes leftover after parsing attributes in process `syz.8.5133'. [ 221.615425][T15402] fido_id[15402]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 221.774186][T15425] loop8: detected capacity change from 0 to 512 [ 221.782594][T15425] EXT4-fs: Ignoring removed bh option [ 221.788810][T15425] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 221.803280][T15425] EXT4-fs (loop8): 1 truncate cleaned up [ 221.809540][T15425] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 221.845753][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.925560][T15445] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5152'. [ 221.997821][T15455] loop7: detected capacity change from 0 to 1024 [ 222.016398][T15455] EXT4-fs: inline encryption not supported [ 222.023003][T15459] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5159'. [ 222.050058][T15455] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 222.063665][T15465] netlink: 48 bytes leftover after parsing attributes in process `syz.6.5162'. [ 222.080071][T15455] EXT4-fs error (device loop7): ext4_map_blocks:791: inode #3: block 2: comm syz.7.5158: lblock 2 mapped to illegal pblock 2 (length 1) [ 222.100478][T15472] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5164'. [ 222.109613][T15455] loop7: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 222.109783][T15455] EXT4-fs (loop7): Remounting filesystem read-only [ 222.118936][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 222.118956][ C0] EXT4-fs (loop7): initial error at time 1776302413: ext4_map_blocks:791: inode 3: block 2 [ 222.119008][ C0] EXT4-fs (loop7): last error at time 1776302413: ext4_map_blocks:791: inode 3: block 2 [ 222.185199][T15455] EXT4-fs (loop7): 1 orphan inode deleted [ 222.198581][T15455] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.215033][T15455] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.298185][T15499] process 'syz.7.5178' launched '/dev/fd/3' with NULL argv: empty string added [ 222.528780][T15545] loop7: detected capacity change from 0 to 512 [ 222.546644][T15545] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 222.568521][T15545] EXT4-fs (loop7): 1 truncate cleaned up [ 222.580563][T15545] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.648895][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.672655][T15568] loop7: detected capacity change from 0 to 256 [ 222.808656][T15596] loop7: detected capacity change from 0 to 256 [ 222.871367][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 222.871450][ T28] audit: type=1400 audit(1776302414.025:1242): avc: denied { ioctl } for pid=15604 comm="syz.7.5229" path="socket:[45123]" dev="sockfs" ino=45123 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 222.946553][ T28] audit: type=1400 audit(1776302414.105:1243): avc: denied { mount } for pid=15612 comm="syz.7.5233" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 223.027736][T15628] program syz.7.5240 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.073601][ T28] audit: type=1400 audit(1776302414.225:1244): avc: denied { append } for pid=15633 comm="syz.7.5243" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 223.593898][T15648] __nla_validate_parse: 2 callbacks suppressed [ 223.593915][T15648] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5249'. [ 223.716918][T15656] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5253'. [ 223.739125][T15656] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5253'. [ 223.802410][T15667] netlink: 'syz.2.5258': attribute type 1 has an invalid length. [ 223.826557][T15667] netlink: 116 bytes leftover after parsing attributes in process `syz.2.5258'. [ 223.899839][T15674] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 224.139620][T15700] loop8: detected capacity change from 0 to 256 [ 224.351409][T15730] loop7: detected capacity change from 0 to 512 [ 224.360045][T15730] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2808: inode #11: comm syz.7.5289: corrupted xattr block 95: invalid header [ 224.375522][T15730] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 224.375846][T15730] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.5289: bg 0: block 7: invalid block bitmap [ 224.385202][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 224.385226][ C0] EXT4-fs (loop7): initial error at time 1776302415: ext4_expand_extra_isize_ea:2808: inode 11 [ 224.385263][ C0] EXT4-fs (loop7): last error at time 1776302415: ext4_expand_extra_isize_ea:2808: inode 11 [ 224.420319][T15740] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5295'. [ 224.428231][T15730] loop7: lost filesystem error report for type 5 error -117 [ 224.439669][T15730] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 224.458267][ T28] audit: type=1400 audit(1776302415.595:1245): avc: denied { ioctl } for pid=15742 comm="syz.0.5293" path="/dev/usbmon3" dev="devtmpfs" ino=151 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 224.508340][T15730] loop7: lost filesystem error report for type 5 error -117 [ 224.508502][T15730] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2970: inode #11: comm syz.7.5289: corrupted xattr block 95: invalid header [ 224.546745][T15740] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5295'. [ 224.548122][T15730] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 224.556344][T15730] EXT4-fs warning (device loop7): ext4_evict_inode:287: xattr delete (err -117) [ 224.576810][T15730] EXT4-fs (loop7): 1 orphan inode deleted [ 224.584706][T15730] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.710491][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.760454][T15778] loop8: detected capacity change from 0 to 512 [ 224.775525][T15778] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2 [ 224.791906][T15778] EXT4-fs error (device loop8): ext4_iget_extra_inode:5042: inode #15: comm syz.8.5313: corrupted in-inode xattr: e_value size too large [ 224.796890][T15782] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 224.806912][T15778] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 224.823955][ C1] EXT4-fs (loop8): error count since last fsck: 1 [ 224.840873][ C1] EXT4-fs (loop8): initial error at time 1776302415: ext4_iget_extra_inode:5042: inode 15 [ 224.851133][ C1] EXT4-fs (loop8): last error at time 1776302415: ext4_iget_extra_inode:5042: inode 15 [ 224.864686][T15778] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.5313: couldn't read orphan inode 15 (err -117) [ 224.877962][T15778] loop8: lost filesystem error report for type 5 error -117 [ 224.878592][T15778] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.921494][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.044717][ T39] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 225.055566][ T39] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 225.074066][ T3487] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 225.119928][T15824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5332'. [ 225.175014][ T3487] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 225.689260][T15864] netlink: 'syz.0.5362': attribute type 29 has an invalid length. [ 225.728062][T15864] netlink: 'syz.0.5362': attribute type 29 has an invalid length. [ 225.904311][T11583] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 226.152035][T15944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5393'. [ 226.167369][T15944] team0: Port device team_slave_0 removed [ 226.305857][T15968] macsec1: entered promiscuous mode [ 226.311606][T15968] macsec1: entered allmulticast mode [ 226.350397][T15974] loop8: detected capacity change from 0 to 1024 [ 226.363870][T15974] EXT4-fs: Ignoring removed bh option [ 226.396632][T15974] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 226.415882][T15982] netlink: 14 bytes leftover after parsing attributes in process `syz.7.5408'. [ 226.443828][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 226.602845][T15998] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5414'. [ 226.635452][T15998] team0: Port device team_slave_0 removed [ 227.540101][T16000] syz.6.5415 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 227.555366][T16000] CPU: 0 UID: 0 PID: 16000 Comm: syz.6.5415 Not tainted syzkaller #0 PREEMPT(full) [ 227.555416][T16000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 227.555459][T16000] Call Trace: [ 227.555467][T16000] [ 227.555477][T16000] __dump_stack+0x1d/0x30 [ 227.555558][T16000] dump_stack_lvl+0x95/0xd0 [ 227.555581][T16000] dump_stack+0x15/0x1b [ 227.555602][T16000] dump_header+0x80/0x240 [ 227.555625][T16000] oom_kill_process+0x295/0x350 [ 227.555729][T16000] out_of_memory+0x97d/0xb80 [ 227.555798][T16000] try_charge_memcg+0x62f/0xa10 [ 227.555840][T16000] __memcg_kmem_charge_page+0x139/0x2b0 [ 227.555859][T16000] __alloc_frozen_pages_noprof+0x18a/0x350 [ 227.555881][T16000] alloc_pages_mpol+0xb3/0x260 [ 227.555900][T16000] alloc_pages_noprof+0x8f/0x140 [ 227.556052][T16000] __vmalloc_node_range_noprof+0xaed/0x11c0 [ 227.556080][T16000] __kvmalloc_node_noprof+0x3d4/0x640 [ 227.556097][T16000] ? futex_hash_allocate+0x190/0x9a0 [ 227.556149][T16000] ? futex_hash_allocate+0x190/0x9a0 [ 227.556180][T16000] futex_hash_allocate+0x190/0x9a0 [ 227.556210][T16000] ? cap_task_prctl+0x13f/0x6b0 [ 227.556318][T16000] futex_hash_prctl+0xd8/0xf0 [ 227.556423][T16000] __se_sys_prctl+0x4f4/0x1400 [ 227.556492][T16000] __x64_sys_prctl+0x67/0x80 [ 227.556514][T16000] x64_sys_call+0x2533/0x3020 [ 227.556537][T16000] do_syscall_64+0x12c/0x3b0 [ 227.556562][T16000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.556583][T16000] RIP: 0033:0x7f307187c819 [ 227.556652][T16000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.556669][T16000] RSP: 002b:00007f30702d7028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 227.556689][T16000] RAX: ffffffffffffffda RBX: 00007f3071af5fa0 RCX: 00007f307187c819 [ 227.556704][T16000] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e [ 227.556726][T16000] RBP: 00007f3071912c91 R08: 0000000000000000 R09: 0000000000000000 [ 227.556740][T16000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.556787][T16000] R13: 00007f3071af6038 R14: 00007f3071af5fa0 R15: 00007ffcbcf5c8f8 [ 227.556809][T16000] [ 227.556827][T16000] memory: usage 307200kB, limit 307200kB, failcnt 402 [ 227.717420][ T28] audit: type=1400 audit(1776302418.875:1246): avc: denied { append } for pid=16091 comm="syz.0.5462" name="loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 227.732624][T16000] memory+swap: usage 307852kB, limit 9007199254740988kB, failcnt 0 [ 227.826881][T16000] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0 [ 227.845185][T16000] Memory cgroup stats for /syz6: [ 227.845398][T16000] cache 0 [ 227.855114][T16000] rss 0 [ 227.858395][T16000] shmem 0 [ 227.863065][T16000] mapped_file 0 [ 227.881303][T16000] dirty 0 [ 227.885490][T16000] writeback 0 [ 227.889529][T16000] workingset_refault_anon 32 [ 227.897311][T16000] workingset_refault_file 0 [ 227.902915][T16000] swap 667648 [ 227.907102][T16000] swapcached 798720 [ 227.911010][T16000] pgpgin 93124 [ 227.925755][T16000] pgpgout 93122 [ 227.930427][T16000] pgfault 103256 [ 227.946536][T16000] pgmajfault 13 [ 227.950208][T16000] inactive_anon 0 [ 227.955138][T16000] active_anon 0 [ 227.967059][T16000] inactive_file 0 [ 227.976624][T16000] active_file 8192 [ 227.980639][T16000] unevictable 0 [ 227.985012][T16000] hierarchical_memory_limit 314572800 [ 227.991115][T16000] hierarchical_memsw_limit 9223372036854771712 [ 228.007520][T16000] total_cache 0 [ 228.011422][T16000] total_rss 0 [ 228.018637][T16000] total_shmem 0 [ 228.022256][T16000] total_mapped_file 0 [ 228.026508][T16000] total_dirty 0 [ 228.030285][T16000] total_writeback 0 [ 228.034283][T16116] 8021q: adding VLAN 0 to HW filter on device bond0 [ 228.034907][T16000] total_workingset_refault_anon 32 [ 228.048299][T16000] total_workingset_refault_file 0 [ 228.055042][T16116] 8021q: adding VLAN 0 to HW filter on device team0 [ 228.056133][T16000] total_swap 667648 [ 228.071229][T16116] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 228.079105][T16000] total_swapcached 798720 [ 228.094977][T16000] total_pgpgin 93124 [ 228.099042][T16000] total_pgpgout 93122 [ 228.103260][T16000] total_pgfault 103256 [ 228.107627][T16000] total_pgmajfault 13 [ 228.111705][T16000] total_inactive_anon 0 [ 228.116816][T16000] total_active_anon 0 [ 228.121306][T16000] total_inactive_file 0 [ 228.125630][T16000] total_active_file 8192 [ 228.130044][T16000] total_unevictable 0 [ 228.134159][T16000] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.5415,pid=15999,uid=0 [ 228.149376][T16000] Memory cgroup out of memory: Killed process 15999 (syz.6.5415) total-vm:96212kB, anon-rss:1228kB, file-rss:22036kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 228.266532][ T28] audit: type=1326 audit(1776302419.425:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16134 comm="syz.8.5483" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x0 [ 228.572475][ T28] audit: type=1400 audit(1776302419.725:1248): avc: denied { name_bind } for pid=16173 comm="syz.7.5501" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 228.644063][T16180] loop7: detected capacity change from 0 to 4096 [ 228.686815][T16180] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 228.724530][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.939251][T16237] can0: slcan on ttyS3. [ 228.974138][T16237] can0 (unregistered): slcan off ttyS3. [ 229.184060][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 229.191426][T16283] bond_slave_0: entered promiscuous mode [ 229.197345][T16283] bond_slave_1: entered promiscuous mode [ 229.204204][T16283] vlan3: entered promiscuous mode [ 229.209688][T16283] bond0: entered promiscuous mode [ 229.538036][T16325] loop7: detected capacity change from 0 to 512 [ 229.565070][T16325] EXT4-fs error (device loop7): ext4_orphan_get:1423: comm syz.7.5558: bad orphan inode 13 [ 229.581389][T16325] loop7: lost filesystem error report for type 5 error -117 [ 229.581606][T16325] ext4_test_bit(bit=12, block=4) = 1 [ 229.588974][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 229.588991][ C1] EXT4-fs (loop7): initial error at time 1776302420: ext4_orphan_get:1423 [ 229.589010][ C1] EXT4-fs (loop7): last error at time 1776302420: ext4_orphan_get:1423 [ 229.619485][T16325] is_bad_inode(inode)=0 [ 229.623686][T16325] NEXT_ORPHAN(inode)=0 [ 229.628468][T16325] max_ino=32 [ 229.631980][T16325] i_nlink=1 [ 229.635926][T16325] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.693423][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.030676][T16356] netlink: 'syz.6.5573': attribute type 3 has an invalid length. [ 230.090361][T16363] loop7: detected capacity change from 0 to 128 [ 230.090882][T16363] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 230.091466][T16363] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 230.129032][ T1575] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 230.420271][T16398] netlink: 'syz.7.5594': attribute type 1 has an invalid length. [ 230.430442][ T28] audit: type=1400 audit(1776302421.585:1249): avc: denied { map } for pid=16399 comm="syz.2.5595" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 230.455267][T16402] __nla_validate_parse: 4 callbacks suppressed [ 230.455295][T16402] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5596'. [ 230.466964][ T28] audit: type=1400 audit(1776302421.585:1250): avc: denied { execute } for pid=16399 comm="syz.2.5595" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 230.596066][T16423] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5606'. [ 230.708235][T16442] loop8: detected capacity change from 0 to 512 [ 230.729744][T16442] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 230.749179][T16442] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 230.774710][T16442] EXT4-fs (loop8): orphan cleanup on readonly fs [ 230.787066][ T28] audit: type=1326 audit(1776302421.935:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16452 comm="syz.6.5620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 230.821222][ T28] audit: type=1326 audit(1776302421.935:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16452 comm="syz.6.5620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 230.836456][T16442] EXT4-fs error (device loop8): ext4_orphan_get:1397: inode #13: comm syz.8.5615: iget: bad i_size value: 12154761577498 [ 230.845786][ T28] audit: type=1326 audit(1776302421.935:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16452 comm="syz.6.5620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 230.882171][ T28] audit: type=1326 audit(1776302421.935:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16452 comm="syz.6.5620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 230.906343][ T28] audit: type=1326 audit(1776302421.935:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16452 comm="syz.6.5620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 230.933327][T16442] loop8: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 230.933958][ C1] EXT4-fs (loop8): error count since last fsck: 1 [ 230.950043][ C1] EXT4-fs (loop8): initial error at time 1776302422: ext4_orphan_get:1397: inode 13 [ 230.959920][ C1] EXT4-fs (loop8): last error at time 1776302422: ext4_orphan_get:1397: inode 13 [ 230.960696][T16442] EXT4-fs error (device loop8): ext4_orphan_get:1402: comm syz.8.5615: couldn't read orphan inode 13 (err -117) [ 230.986754][T16442] loop8: lost filesystem error report for type 5 error -117 [ 230.988850][T16463] loop7: detected capacity change from 0 to 512 [ 231.005063][T16465] netlink: 'syz.6.5626': attribute type 2 has an invalid length. [ 231.006157][T16463] EXT4-fs: test_dummy_encryption option not supported [ 231.014227][T16442] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 231.032831][T16465] netlink: 14 bytes leftover after parsing attributes in process `syz.6.5626'. [ 231.069553][T16442] EXT4-fs warning (device loop8): dx_probe:861: inode #2: comm syz.8.5615: dx entry: limit 65535 != root limit 120 [ 231.087865][T16442] EXT4-fs warning (device loop8): dx_probe:934: inode #2: comm syz.8.5615: Corrupt directory, running e2fsck is recommended [ 231.092132][T16463] loop7: detected capacity change from 0 to 512 [ 231.119247][T16463] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2 [ 231.125593][T16442] EXT4-fs error (device loop8): ext4_readdir:265: inode #2: block 3: comm syz.8.5615: path /315/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0 [ 231.129730][T16463] EXT4-fs (loop7): 1 truncate cleaned up [ 231.155628][T16463] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.193526][T16463] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000. [ 231.213083][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.229626][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.558969][ T28] audit: type=1400 audit(1776302422.715:1256): avc: denied { create } for pid=16515 comm="syz.7.5650" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key_socket permissive=1 [ 232.360422][T16615] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5698'. [ 232.762155][T16653] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5713'. [ 232.946525][T16681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5728'. [ 232.946549][T16681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5728'. [ 233.024689][T16692] netlink: 'syz.7.5734': attribute type 2 has an invalid length. [ 233.033131][T16692] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5734'. [ 233.046254][T16692] netlink: 'syz.7.5734': attribute type 2 has an invalid length. [ 233.056113][T16692] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5734'. [ 233.226535][T16721] gretap0: entered promiscuous mode [ 233.233659][T16721] vlan2: entered promiscuous mode [ 233.371039][T16741] netlink: 65039 bytes leftover after parsing attributes in process `syz.8.5757'. [ 233.462869][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 233.462898][ T28] audit: type=1400 audit(1776302424.605:1260): avc: denied { read } for pid=16754 comm="syz.2.5768" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 233.478594][T16759] loop8: detected capacity change from 0 to 2048 [ 233.526726][T16759] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 233.550537][T16767] loop7: detected capacity change from 0 to 2048 [ 233.560239][T16759] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.586981][T16767] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.610558][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.638163][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.702742][T16785] loop7: detected capacity change from 0 to 512 [ 233.718460][T16785] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.770232][ T28] audit: type=1326 audit(1776302424.925:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16795 comm="syz.0.5780" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcd8086c819 code=0x0 [ 233.794241][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.940452][T16822] loop7: detected capacity change from 0 to 736 [ 234.007132][T16831] netlink: 'syz.7.5799': attribute type 178 has an invalid length. [ 234.028168][T16833] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 234.097453][T16841] žÿ: renamed from team_slave_1 [ 234.245453][T16860] Unsupported ieee802154 address type: 0 [ 234.311431][T16867] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 234.555527][T16900] loop7: detected capacity change from 0 to 512 [ 234.579168][T16900] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.596342][T16900] ext4 filesystem being mounted at /653/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.620829][T16904] loop8: detected capacity change from 0 to 4096 [ 234.636216][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.649306][T16904] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.745687][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.467316][ T28] audit: type=1326 audit(1776302426.625:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.518222][ T28] audit: type=1326 audit(1776302426.645:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.550204][ T28] audit: type=1326 audit(1776302426.645:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.575902][ T28] audit: type=1326 audit(1776302426.645:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.613373][ T28] audit: type=1326 audit(1776302426.645:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.651972][ T28] audit: type=1326 audit(1776302426.645:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.687457][ T28] audit: type=1326 audit(1776302426.645:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 235.713657][ T28] audit: type=1326 audit(1776302426.645:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16980 comm="syz.7.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 236.247038][T17041] bridge_slave_1: vlans aren't supported yet for dev_uc|mc_add() [ 236.306351][T17044] __nla_validate_parse: 1 callbacks suppressed [ 236.306367][T17044] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5887'. [ 236.395897][T17055] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5893'. [ 236.567811][T17070] loop8: detected capacity change from 0 to 4096 [ 236.608318][T17070] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.677844][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.757790][T17086] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5907'. [ 237.342907][T17140] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5933'. [ 237.426381][T17145] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5936'. [ 237.469728][ T30] netdevsim netdevsim8 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 237.497064][ T30] netdevsim netdevsim8 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 237.525357][ T30] netdevsim netdevsim8 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 237.537153][ T30] netdevsim netdevsim8 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 237.617099][T17158] loop7: detected capacity change from 0 to 128 [ 237.651014][T17158] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 237.709016][T17158] ext4 filesystem being mounted at /691/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 237.785885][T10805] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 237.821827][T17175] can0: slcan on ptm0. [ 237.834001][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 237.945788][T17174] can0 (unregistered): slcan off ptm0. [ 238.217537][T17215] tipc: Started in network mode [ 238.222680][T17215] tipc: Node identity aaaaaaaaaa38, cluster identity 4711 [ 238.239296][T17215] tipc: Enabled bearer , priority 10 [ 238.298193][T17224] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5973'. [ 239.234905][ T3487] tipc: Node number set to 9611946 [ 249.535723][ T28] kauditd_printk_skb: 23 callbacks suppressed [ 249.535738][ T28] audit: type=1400 audit(1776302440.695:1293): avc: denied { ioctl } for pid=17232 comm="syz.7.5978" path="socket:[49890]" dev="sockfs" ino=49890 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 249.688316][T17253] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5993'. [ 249.699612][ T28] audit: type=1400 audit(1776302440.865:1294): avc: denied { read } for pid=17248 comm="syz.8.5993" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 249.761384][ T28] audit: type=1400 audit(1776302440.915:1295): avc: denied { write } for pid=17260 comm="syz.8.5985" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 249.761440][T17261] random: crng reseeded on system resumption [ 249.865761][T17270] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5989'. [ 249.960995][T17238] chnl_net:caif_netlink_parms(): no params data found [ 250.042926][T17238] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.051092][T17238] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.073344][T17238] bridge_slave_0: entered allmulticast mode [ 250.091162][T17238] bridge_slave_0: entered promiscuous mode [ 250.121594][T17238] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.132923][T17238] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.148446][T17238] bridge_slave_1: entered allmulticast mode [ 250.170134][T17238] bridge_slave_1: entered promiscuous mode [ 250.238813][T17238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 250.261841][T17238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 250.330386][T17238] team0: Port device team_slave_0 added [ 250.344531][T17302] loop8: detected capacity change from 0 to 4096 [ 250.352123][T17238] team0: Port device team_slave_1 added [ 250.358467][ T62] bridge_slave_1: left allmulticast mode [ 250.366273][ T62] bridge_slave_1: left promiscuous mode [ 250.376171][ T62] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.386153][ T62] bridge_slave_0: left allmulticast mode [ 250.392499][ T62] bridge_slave_0: left promiscuous mode [ 250.400120][ T62] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.409174][T17302] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.463375][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.495124][T11213] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13) [ 250.636278][T17318] netlink: 348 bytes leftover after parsing attributes in process `syz.0.6010'. [ 250.646599][T17318] netlink: 348 bytes leftover after parsing attributes in process `syz.0.6010'. [ 250.646742][ T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 250.666495][ T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 250.678220][ T62] bond0 (unregistering): Released all slaves [ 250.698464][T17238] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 250.707772][T17238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 250.736436][T17238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 250.752499][T17238] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 250.769643][T17238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 250.798871][T17238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 250.817594][T17325] netlink: 'syz.8.6013': attribute type 298 has an invalid length. [ 250.843033][ T62] IPVS: stopping master sync thread 8717 ... [ 250.938775][T17238] hsr_slave_0: entered promiscuous mode [ 250.960681][T17238] hsr_slave_1: entered promiscuous mode [ 250.980133][T17238] debugfs: 'hsr0' already exists in 'hsr' [ 250.999598][T17238] Cannot create hsr debugfs directory [ 251.025608][ T62] hsr_slave_0: left promiscuous mode [ 251.049031][ T62] hsr_slave_1: left promiscuous mode [ 251.065804][ T62] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 251.081553][ T62] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 251.190398][ T62] team0 (unregistering): Port device team_slave_1 removed [ 251.255732][T17351] team0: Device gtp0 is of different type [ 251.268051][T17353] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6022'. [ 251.278016][ T3039] 8021q: adding VLAN 0 to HW filter on device eth17 [ 251.411820][ T28] audit: type=1326 audit(1776302442.565:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.476524][T17238] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 251.483986][ T28] audit: type=1326 audit(1776302442.595:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.516595][T17238] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 251.528339][ T28] audit: type=1326 audit(1776302442.595:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.553475][ T28] audit: type=1326 audit(1776302442.595:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.556779][T17238] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 251.591133][ T28] audit: type=1326 audit(1776302442.595:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.621334][T17238] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 251.631092][ T28] audit: type=1326 audit(1776302442.595:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.656664][T17238] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 251.665842][ T28] audit: type=1326 audit(1776302442.595:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17386 comm="syz.8.6033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec5eb4c819 code=0x7ffc0000 [ 251.692394][T17238] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 251.702278][T17238] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 251.713212][T17238] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 251.738133][ T3039] 8021q: adding VLAN 0 to HW filter on device eth18 [ 251.818275][T17238] 8021q: adding VLAN 0 to HW filter on device bond0 [ 251.838376][T17238] 8021q: adding VLAN 0 to HW filter on device team0 [ 251.878840][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.886406][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 251.914343][ T1575] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.921713][ T1575] bridge0: port 2(bridge_slave_1) entered forwarding state [ 251.988444][T17446] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6043'. [ 252.008932][ T3039] 8021q: adding VLAN 0 to HW filter on device eth19 [ 252.052242][T17453] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6045'. [ 252.094215][T17238] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 252.102305][T17459] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6046'. [ 252.273188][ T3039] 8021q: adding VLAN 0 to HW filter on device eth20 [ 252.278325][T17480] netlink: 'syz.0.6047': attribute type 21 has an invalid length. [ 252.391953][T17238] veth0_vlan: entered promiscuous mode [ 252.405516][T17238] veth1_vlan: entered promiscuous mode [ 252.412522][T17480] netlink: 168 bytes leftover after parsing attributes in process `syz.0.6047'. [ 252.446234][T17238] veth0_macvtap: entered promiscuous mode [ 252.458302][T17238] veth1_macvtap: entered promiscuous mode [ 252.488418][T17238] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.502515][T17238] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.515252][ T30] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.171413][ T30] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.211038][ T30] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.221910][ T30] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.258904][T17525] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3) [ 253.265683][T17525] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 253.302512][T17536] vhci_hcd vhci_hcd.0: pdev(7) rhport(1) sockfd(6) [ 253.309357][T17536] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 253.325477][T17525] vhci_hcd vhci_hcd.0: Device attached [ 253.339879][T17536] vhci_hcd vhci_hcd.0: Device attached [ 253.360690][T17540] netlink: 'syz.6.6068': attribute type 11 has an invalid length. [ 253.380951][T17537] vhci_hcd: connection closed [ 253.381144][ T30] vhci_hcd vhci_hcd.7: stop threads [ 253.381849][T17526] usbip_core: unknown command [ 253.387371][ T30] vhci_hcd vhci_hcd.7: release socket [ 253.397330][T17526] vhci_hcd: unknown pdu 125819603 [ 253.397345][T17526] usbip_core: unknown command [ 253.430595][ T30] vhci_hcd vhci_hcd.7: disconnect device [ 253.438766][ T30] vhci_hcd vhci_hcd.7: stop threads [ 253.444752][ T30] vhci_hcd vhci_hcd.7: release socket [ 253.450292][ T30] vhci_hcd vhci_hcd.7: disconnect device [ 253.496769][T17555] loop8: detected capacity change from 0 to 128 [ 253.499438][T17557] sch_tbf: burst 0 is lower than device sit0 mtu (1480) ! [ 253.505966][ T3395] vhci_hcd vhci_hcd.7: vhci_device speed not set [ 253.538486][T17559] tipc: Enabling of bearer rejected, media not registered [ 253.557707][T17555] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 253.588590][T17555] ext4 filesystem being mounted at /420/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 253.629662][T17555] EXT4-fs warning (device loop8): ext4_dirblock_csum_verify:375: inode #2: comm syz.8.6074: No space for directory leaf checksum. Please run e2fsck -D. [ 253.647990][T17555] EXT4-fs error (device loop8): __ext4_find_entry:1626: inode #2: comm syz.8.6074: checksumming directory block 0 [ 253.715730][T17575] loop9: detected capacity change from 0 to 1024 [ 253.727140][T13435] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 253.751621][T17575] EXT4-fs (loop9): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 253.781792][T17575] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.813301][T17575] EXT4-fs error (device loop9): ext4_map_blocks:833: inode #15: block 3: comm syz.9.6081: lblock 3 mapped to illegal pblock 3 (length 3) [ 253.848800][T17575] EXT4-fs (loop9): Remounting filesystem read-only [ 253.920853][T17238] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 254.081629][T17627] batadv0: entered promiscuous mode [ 254.096309][T17627] 8021q: adding VLAN 0 to HW filter on device macsec1 [ 254.106863][T17627] batadv0: left promiscuous mode [ 254.132766][T17624] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6104'. [ 254.396979][T17660] loop8: detected capacity change from 0 to 8192 [ 254.626621][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 254.626643][ T28] audit: type=1400 audit(1776302445.785:1315): avc: denied { ioctl } for pid=17682 comm="syz.6.6132" path="/858/file0" dev="tmpfs" ino=4385 ioctlcmd=0x128b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 254.677287][T17687] netlink: 'syz.0.6134': attribute type 1 has an invalid length. [ 254.783116][T17701] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6141'. [ 255.033403][ T12] netdevsim netdevsim9 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 255.044008][ T12] netdevsim netdevsim9 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 255.057286][ T12] netdevsim netdevsim9 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 255.073462][ T12] netdevsim netdevsim9 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 255.291071][T17774] netlink: 'syz.7.6175': attribute type 1 has an invalid length. [ 255.337388][T17780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 255.346380][T17780] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 255.479793][ T28] audit: type=1400 audit(1776302446.635:1316): avc: denied { write } for pid=17792 comm="syz.8.6185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 255.504134][ T28] audit: type=1326 audit(1776302446.665:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.529248][ T28] audit: type=1326 audit(1776302446.665:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.555643][ T28] audit: type=1326 audit(1776302446.665:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.590699][ T28] audit: type=1326 audit(1776302446.665:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.625294][ T28] audit: type=1326 audit(1776302446.665:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.641153][T17804] netlink: 'syz.8.6191': attribute type 10 has an invalid length. [ 255.656672][ T28] audit: type=1326 audit(1776302446.665:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.686001][ T28] audit: type=1326 audit(1776302446.665:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.710806][ T28] audit: type=1326 audit(1776302446.665:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17794 comm="syz.7.6186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 255.712461][T17804] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 255.736956][T17806] netlink: 'syz.8.6191': attribute type 10 has an invalid length. [ 255.746406][T17804] team0: Port device netdevsim1 added [ 255.758539][T17806] team0: Port device netdevsim1 removed [ 255.766370][T17806] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 255.776310][T17806] netdevsim netdevsim8 netdevsim1: entered promiscuous mode [ 255.795391][T17806] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 255.806333][T17808] loop7: detected capacity change from 0 to 4096 [ 255.833788][T17808] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.882239][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.012510][T17831] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6202'. [ 256.038228][T17836] loop8: detected capacity change from 0 to 128 [ 256.053694][T17836] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 256.080667][T17836] ext4 filesystem being mounted at /446/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 256.115972][T17841] loop7: detected capacity change from 0 to 1024 [ 256.125030][T17841] ext3: Unknown parameter 'noacl' [ 256.180954][T13435] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 256.303084][T17855] loop8: detected capacity change from 0 to 8192 [ 256.475567][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.488345][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.511206][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.527574][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.544023][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.556411][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.567202][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.575275][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.598373][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.615049][T11579] hid-generic 0000:0002:0006.0006: unknown main item tag 0x0 [ 256.625222][T11579] hid-generic 0000:0002:0006.0006: hidraw0: HID v0.02 Device [syz1] on syz0 [ 256.650114][T17896] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6234'. [ 256.777001][T17914] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6242'. [ 256.821955][T17918] vxcan2: entered allmulticast mode [ 257.006014][T17931] netlink: 40 bytes leftover after parsing attributes in process `syz.7.6250'. [ 257.079261][T17939] xt_hashlimit: size too large, truncated to 1048576 [ 257.099073][T17941] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 257.209056][T17953] tipc: Enabling of bearer rejected, failed to enable media [ 257.306809][T17966] sg_write: data in/out 1943752830/4056 bytes for SCSI command 0xda-- guessing data in; [ 257.306809][T17966] program syz.7.6266 not setting count and/or reply_len properly [ 257.394331][T17978] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6271'. [ 257.466584][T17990] x_tables: ip_tables: policy.0 match: invalid size 312 (kernel) != (user) 320 [ 257.505133][T17996] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6281'. [ 257.808239][T18033] openvswitch: netlink: Missing key (keys=40, expected=80) [ 257.852328][T18030] loop8: detected capacity change from 0 to 8192 [ 257.873263][T18039] sctp: [Deprecated]: syz.7.6302 (pid 18039) Use of int in maxseg socket option. [ 257.873263][T18039] Use struct sctp_assoc_value instead [ 257.966472][T18050] loop9: detected capacity change from 0 to 128 [ 258.008003][T18050] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 258.010538][T18058] sctp: [Deprecated]: syz.8.6309 (pid 18058) Use of int in maxseg socket option. [ 258.010538][T18058] Use struct sctp_assoc_value instead [ 258.041626][T18050] ext4 filesystem being mounted at /58/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 258.143485][T17238] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 258.172048][T18074] netlink: 'syz.6.6319': attribute type 3 has an invalid length. [ 258.239507][T18082] SELinux: failed to load policy [ 258.244902][T18084] sg_write: data in/out 26076/10 bytes for SCSI command 0x0-- guessing data in; [ 258.244902][T18084] program syz.7.6323 not setting count and/or reply_len properly [ 258.281188][T18081] netlink: 212412 bytes leftover after parsing attributes in process `syz.8.6321'. [ 258.328865][T18091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6326'. [ 258.386051][T18095] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6328'. [ 258.590583][T18131] netlink: 'syz.9.6346': attribute type 10 has an invalid length. [ 258.720946][T18153] The dccp option matching is deprecated and scheduled to be removed in 2027. [ 258.720946][T18153] Please contact the netfilter-devel mailing list or update your nftables rules. [ 259.209770][T18204] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) ! [ 259.433783][T18229] netlink: 'syz.8.6390': attribute type 11 has an invalid length. [ 259.437758][T18231] Unknown options in mask 5 [ 260.000711][T18289] loop8: detected capacity change from 0 to 512 [ 260.008184][T18283] __nla_validate_parse: 5 callbacks suppressed [ 260.008199][T18283] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6417'. [ 260.008233][T18283] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6417'. [ 260.045194][T18291] loop7: detected capacity change from 0 to 512 [ 260.063289][T18291] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 260.083694][T18291] EXT4-fs (loop7): 1 truncate cleaned up [ 260.096842][T18289] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.101459][T18291] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.125911][T18289] ext4 filesystem being mounted at /485/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 260.151021][T18291] EXT4-fs error (device loop7): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.7.6421: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 260.151404][T18291] EXT4-fs (loop7): Remounting filesystem read-only [ 260.151420][T18291] EXT4-fs warning (device loop7): ext4_rename_delete:3729: inode #2: comm syz.7.6421: Deleting old file: nlink 4, error=-117 [ 260.154771][ T28] kauditd_printk_skb: 81 callbacks suppressed [ 260.154784][ T28] audit: type=1400 audit(1776302451.315:1406): avc: denied { create } for pid=18290 comm="syz.7.6421" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 260.227725][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.247845][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.282500][T18306] loop7: detected capacity change from 0 to 1024 [ 260.328189][T18306] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002] [ 260.342964][T18306] System zones: 0-1, 3-36 [ 260.358637][T18306] EXT4-fs error (device loop7): ext4_orphan_get:1423: comm syz.7.6425: bad orphan inode 134217728 [ 260.378648][T18306] loop7: lost filesystem error report for type 5 error -117 [ 260.379641][T18306] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.440136][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.461479][T18328] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6436'. [ 260.662364][T18360] loop9: detected capacity change from 0 to 512 [ 260.669606][T18360] EXT4-fs: Ignoring removed nobh option [ 260.680908][T18360] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 260.702160][T18360] EXT4-fs (loop9): 1 truncate cleaned up [ 260.709983][T18360] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.739188][T17238] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.981348][T18392] netlink: 20 bytes leftover after parsing attributes in process `syz.7.6466'. [ 261.063086][ T28] audit: type=1326 audit(1776302452.215:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.120341][ T28] audit: type=1326 audit(1776302452.215:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.151907][ T28] audit: type=1326 audit(1776302452.215:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.177217][ T28] audit: type=1326 audit(1776302452.215:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.212591][ T28] audit: type=1326 audit(1776302452.215:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.271441][ T28] audit: type=1326 audit(1776302452.215:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18395 comm="syz.0.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd8086c819 code=0x7ffc0000 [ 261.324756][ T28] audit: type=1400 audit(1776302452.245:1413): avc: denied { create } for pid=18401 comm="syz.0.6471" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1 [ 261.371823][ T28] audit: type=1400 audit(1776302452.525:1414): avc: denied { create } for pid=18432 comm="syz.6.6486" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=mctp_socket permissive=1 [ 261.431992][T18439] loop7: detected capacity change from 0 to 512 [ 261.453717][T18445] netlink: 96 bytes leftover after parsing attributes in process `syz.9.6501'. [ 261.469794][T18445] netlink: 36 bytes leftover after parsing attributes in process `syz.9.6501'. [ 261.476030][T18439] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 261.480334][T18445] netlink: 60 bytes leftover after parsing attributes in process `syz.9.6501'. [ 261.508801][T18439] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters [ 261.527542][T18439] Quota error (device loop7): write_blk: dquota write failed [ 261.535061][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 261.535083][ C0] EXT4-fs (loop7): initial error at time 1776302452: ext4_mb_generate_buddy:1317 [ 261.535117][ C0] EXT4-fs (loop7): last error at time 1776302452: ext4_mb_generate_buddy:1317 [ 261.570432][T18439] EXT4-fs error (device loop7): ext4_acquire_dquot:7028: comm syz.7.6489: Failed to acquire dquot type 1 [ 261.583281][T18439] loop7: lost filesystem error report for type 5 error -28 [ 261.585358][T18439] EXT4-fs (loop7): 1 truncate cleaned up [ 261.600579][T18439] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.625898][T18439] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 261.666219][T18439] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 261.710427][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.819698][T18484] netlink: 'syz.7.6510': attribute type 13 has an invalid length. [ 261.840375][T18484] netlink: 14585 bytes leftover after parsing attributes in process `syz.7.6510'. [ 261.905646][T18496] netlink: 260 bytes leftover after parsing attributes in process `syz.9.6516'. [ 261.918262][T18497] loop7: detected capacity change from 0 to 512 [ 261.925426][T18496] netlink: 64 bytes leftover after parsing attributes in process `syz.9.6516'. [ 261.936566][T18497] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 261.952997][T18497] EXT4-fs error (device loop7): ext4_orphan_get:1423: comm syz.7.6515: bad orphan inode 131083 [ 261.953026][T18497] loop7: lost filesystem error report for type 5 error -117 [ 261.953512][T18497] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 262.041693][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.079380][T18517] netem: change failed [ 262.097594][T18523] loop7: detected capacity change from 0 to 256 [ 262.118606][T18523] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 262.162786][T18523] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 262.332108][T18551] sg_write: data in/out 458722/56 bytes for SCSI command 0x0-- guessing data in; [ 262.332108][T18551] program syz.0.6538 not setting count and/or reply_len properly [ 262.950882][T18651] loop7: detected capacity change from 0 to 512 [ 262.994160][T18651] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 263.083444][T18671] loop8: detected capacity change from 0 to 512 [ 263.106134][T18671] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 263.109549][T18675] loop7: detected capacity change from 0 to 512 [ 263.123759][T18675] EXT4-fs: Ignoring removed nobh option [ 263.150428][T18671] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 263.173926][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 263.180455][ C0] EXT4-fs (loop8): initial error at time 1776302454: ext4_mb_generate_buddy:1317 [ 263.189642][ C0] EXT4-fs (loop8): last error at time 1776302454: ext4_mb_generate_buddy:1317 [ 263.201270][T18671] EXT4-fs (loop8): 1 truncate cleaned up [ 263.220829][T18675] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2 [ 263.233432][T18671] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.251664][T18675] EXT4-fs error (device loop7): ext4_orphan_get:1397: inode #13: comm syz.7.6584: inode has both inline data and extents flags [ 263.266480][T18688] loop9: detected capacity change from 0 to 512 [ 263.266614][T18675] loop7: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 263.273025][T18675] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.6584: couldn't read orphan inode 13 (err -117) [ 263.282384][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 263.282407][ C1] EXT4-fs (loop7): initial error at time 1776302454: ext4_orphan_get:1397: inode 13 [ 263.282440][ C1] EXT4-fs (loop7): last error at time 1776302454: ext4_orphan_get:1397: inode 13 [ 263.321615][T18675] loop7: lost filesystem error report for type 5 error -117 [ 263.322643][T18675] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.325411][T18688] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 263.371106][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.385640][T18688] EXT4-fs error (device loop9): ext4_iget_extra_inode:5042: inode #15: comm syz.9.6588: corrupted in-inode xattr: e_value size too large [ 263.401605][T18688] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 263.401908][T18688] EXT4-fs error (device loop9): ext4_orphan_get:1402: comm syz.9.6588: couldn't read orphan inode 15 (err -117) [ 263.411754][ C0] EXT4-fs (loop9): error count since last fsck: 1 [ 263.411776][ C0] EXT4-fs (loop9): initial error at time 1776302454: ext4_iget_extra_inode:5042: inode 15 [ 263.411818][ C0] EXT4-fs (loop9): last error at time 1776302454: ext4_iget_extra_inode:5042: inode 15 [ 263.455446][T18688] loop9: lost filesystem error report for type 5 error -117 [ 263.456444][T18688] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.478449][T18697] netlink: 'syz.7.6590': attribute type 5 has an invalid length. [ 263.500360][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.519187][T17238] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.578720][T18705] loop7: detected capacity change from 0 to 512 [ 263.637532][T18705] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.655665][T18705] ext4 filesystem being mounted at /824/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 263.730053][T18724] loop9: detected capacity change from 0 to 256 [ 263.747833][T18724] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 263.773042][T18724] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 263.789196][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.030875][T18756] loop7: detected capacity change from 0 to 1024 [ 264.047966][T18756] EXT4-fs: Ignoring removed mblk_io_submit option [ 264.072664][T18756] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 264.089608][T18756] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 264.109813][T18756] EXT4-fs error (device loop7): __ext4_iget:5395: inode #12: block 13: comm syz.7.6608: invalid block [ 264.127444][T18756] EXT4-fs (loop7): Remounting filesystem read-only [ 264.150411][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.525283][T18794] sg_write: data in/out 422877/370 bytes for SCSI command 0x0-- guessing data in; [ 264.525283][T18794] program syz.0.6626 not setting count and/or reply_len properly [ 264.588190][ T3395] kernel read not supported for file /1746/net/ip6_flowlabel (pid: 3395 comm: kworker/0:4) [ 264.819416][T18819] vfat: Unknown parameter '01777777777777777777777ÿÿÿÿÿÿÿÿ' [ 265.283144][T18855] 9p: p9: multiple sources not supported [ 265.391585][T18872] __nla_validate_parse: 10 callbacks suppressed [ 265.391600][T18872] netlink: 60 bytes leftover after parsing attributes in process `syz.8.6664'. [ 265.410708][T18872] netlink: 64 bytes leftover after parsing attributes in process `syz.8.6664'. [ 265.749607][T18918] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6686'. [ 265.776965][T18918] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6686'. [ 265.789796][T18918] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6686'. [ 265.802150][T18918] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6686'. [ 265.879941][ T28] kauditd_printk_skb: 13 callbacks suppressed [ 265.879958][ T28] audit: type=1400 audit(1776302457.035:1425): avc: denied { create } for pid=18927 comm="syz.6.6691" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rxrpc_socket permissive=1 [ 266.029246][T18938] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.052510][T18938] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.125584][T17238] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.176640][T18960] netlink: 36 bytes leftover after parsing attributes in process `syz.6.6705'. [ 266.192473][T18962] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6704'. [ 266.220254][T18964] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6706'. [ 266.221059][T18962] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6704'. [ 266.243445][ T28] audit: type=1400 audit(1776302457.405:1426): avc: denied { firmware_load } for pid=18965 comm="syz.6.6707" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 266.470001][ T28] audit: type=1326 audit(1776302457.625:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.498672][T18995] tipc: Enabling of bearer rejected, failed to enable media [ 266.508643][ T28] audit: type=1326 audit(1776302457.625:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.534905][ T28] audit: type=1326 audit(1776302457.625:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.573759][ T28] audit: type=1326 audit(1776302457.625:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36ae1fd04e code=0x7ffc0000 [ 266.600858][ T28] audit: type=1326 audit(1776302457.625:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.631912][ T28] audit: type=1326 audit(1776302457.625:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.657561][ T28] audit: type=1326 audit(1776302457.625:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.691973][ T28] audit: type=1326 audit(1776302457.625:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18992 comm="syz.7.6722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7f36ae23c819 code=0x7ffc0000 [ 266.916763][T19052] set_capacity_and_notify: 4 callbacks suppressed [ 266.916780][T19052] loop9: detected capacity change from 0 to 256 [ 267.177548][T19093] netlink: 'syz.7.6767': attribute type 2 has an invalid length. [ 267.710491][T19150] loop9: detected capacity change from 0 to 256 [ 267.858338][T19173] sg_write: data in/out 426972/130 bytes for SCSI command 0x0-- guessing data in; [ 267.858338][T19173] program syz.7.6805 not setting count and/or reply_len properly [ 268.042941][T19195] IPVS: Error connecting to the multicast addr [ 268.059735][T19196] netlink: 'syz.9.6816': attribute type 11 has an invalid length. [ 268.072835][T19198] loop7: detected capacity change from 0 to 512 [ 268.096352][T19198] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 268.116411][T19198] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 268.131285][T19198] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 268.141367][T19198] System zones: 0-2, 18-18, 34-35 [ 268.158202][T19198] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 268.200028][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.251754][T19210] loop7: detected capacity change from 0 to 1024 [ 268.281328][T19210] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.306209][T19210] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 268.367319][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.374212][T19225] tipc: Enabling of bearer rejected, failed to enable media [ 268.511132][T19239] IPVS: Scheduler module ip_vs_sip not found [ 268.646689][T19265] loop8: detected capacity change from 0 to 512 [ 268.656015][T19265] EXT4-fs: Ignoring removed orlov option [ 268.662562][T19265] EXT4-fs: test_dummy_encryption option not supported [ 268.848624][T19293] bridge0: entered promiscuous mode [ 268.926285][T19301] geneve1: entered promiscuous mode [ 268.932068][T19301] macsec2: entered promiscuous mode [ 268.939542][T19301] macsec2: entered allmulticast mode [ 268.946404][T19301] geneve1: entered allmulticast mode [ 269.803039][T19390] netlink: 'syz.6.6904': attribute type 13 has an invalid length. [ 269.811983][T19390] netlink: 'syz.6.6904': attribute type 14 has an invalid length. [ 269.924079][T19412] netlink: 'syz.8.6915': attribute type 1 has an invalid length. [ 269.958979][T19418] bridge0: port 3(syz_tun) entered blocking state [ 269.968052][T19418] bridge0: port 3(syz_tun) entered disabled state [ 269.976324][T19418] syz_tun: entered allmulticast mode [ 269.983844][T19418] syz_tun: entered promiscuous mode [ 270.277324][T19468] netlink: 'syz.6.6940': attribute type 21 has an invalid length. [ 270.539601][T19495] xt_hashlimit: size too large, truncated to 1048576 [ 270.792487][T11579] kernel read not supported for file /vga_arbiter (pid: 11579 comm: kworker/1:9) [ 271.198238][T19594] xt_hashlimit: size too large, truncated to 1048576 [ 271.358165][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 271.358181][ T28] audit: type=1326 audit(1776302462.515:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19611 comm="syz.0.7002" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd8086c819 code=0x0 [ 271.576625][ T28] audit: type=1400 audit(1776302462.735:1464): avc: denied { ioctl } for pid=19626 comm="syz.6.7009" path="socket:[57671]" dev="sockfs" ino=57671 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 271.777383][T19656] tipc: Enabling of bearer rejected, failed to enable media [ 271.930202][T19677] __nla_validate_parse: 21 callbacks suppressed [ 271.930218][T19677] netlink: 48 bytes leftover after parsing attributes in process `syz.6.7034'. [ 271.964806][T19681] sg_write: data in/out 431069/402 bytes for SCSI command 0x0-- guessing data in; [ 271.964806][T19681] program syz.9.7036 not setting count and/or reply_len properly [ 272.073697][T19695] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7043'. [ 272.124417][T19703] netlink: 48 bytes leftover after parsing attributes in process `syz.9.7047'. [ 272.202914][T19711] loop8: detected capacity change from 0 to 512 [ 272.249647][T19711] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.249721][T19711] ext4 filesystem being mounted at /583/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 272.281812][T19711] EXT4-fs error (device loop8): ext4_add_entry:2415: inode #12: comm syz.8.7051: Directory hole found for htree leaf block 0 [ 272.302699][T19711] EXT4-fs (loop8): Remounting filesystem read-only [ 272.409003][ T28] audit: type=1326 audit(1776302463.565:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.444108][ T28] audit: type=1326 audit(1776302463.565:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.469984][ T28] audit: type=1326 audit(1776302463.565:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.501885][T19738] netlink: 84 bytes leftover after parsing attributes in process `syz.7.7064'. [ 272.512086][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.521799][T19738] openvswitch: netlink: Key type 30 is not supported [ 272.530552][ T28] audit: type=1326 audit(1776302463.565:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.530621][ T28] audit: type=1326 audit(1776302463.565:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.530645][ T28] audit: type=1326 audit(1776302463.565:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.530687][ T28] audit: type=1326 audit(1776302463.575:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19728 comm="syz.6.7058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307187c819 code=0x7ffc0000 [ 272.586001][T19744] netlink: 220 bytes leftover after parsing attributes in process `syz.7.7068'. [ 272.646127][T19746] netlink: 277 bytes leftover after parsing attributes in process `syz.6.7067'. [ 272.656410][T19744] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7068'. [ 272.656473][ T55] EXT4-fs (loop8): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 272.679414][ T55] Quota error (device loop8): write_blk: dquota write failed [ 272.690030][T19744] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7068'. [ 272.700205][T19744] tipc: MTU too low for tipc bearer [ 273.224687][T19816] loop8: detected capacity change from 0 to 512 [ 273.256106][T19819] dns_resolver: Unsupported content type (16) [ 273.277159][T19816] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 273.308464][T19816] ext4 filesystem being mounted at /590/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 273.382014][T13435] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.480028][T19849] loop8: detected capacity change from 0 to 128 [ 273.508794][T19849] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7115'. [ 273.765697][T19887] loop9: detected capacity change from 0 to 512 [ 273.781312][T19891] SELinux: policydb table sizes (0,0) do not match mine (8,7) [ 273.797483][T19891] SELinux: failed to load policy [ 273.806427][T19887] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2 [ 273.833415][T19887] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 273.841723][T19887] EXT4-fs error (device loop9): ext4_orphan_get:1423: comm syz.9.7134: bad orphan inode 13 [ 273.845407][T19899] macvtap1: entered promiscuous mode [ 273.853053][T19887] loop9: lost filesystem error report for type 5 error -117 [ 273.862141][T19887] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 273.883151][T19899] ip6gretap0: entered promiscuous mode [ 273.890435][T19899] macvtap1: entered allmulticast mode [ 273.897230][T19899] ip6gretap0: entered allmulticast mode [ 273.905668][T19899] ip6gretap0: left allmulticast mode [ 273.911268][T19899] ip6gretap0: left promiscuous mode [ 273.950725][T17238] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.056297][T19921] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1 [ 274.095385][T19924] netlink: 40 bytes leftover after parsing attributes in process `syz.8.7151'. [ 274.472730][T19955] loop8: detected capacity change from 0 to 8192 [ 274.519890][T19959] netlink: 'syz.8.7169': attribute type 46 has an invalid length. [ 275.932583][T20039] netlink: 'syz.7.7207': attribute type 10 has an invalid length. [ 275.968635][T20045] loop8: detected capacity change from 0 to 128 [ 276.207190][T20081] tipc: Failed to obtain node identity [ 276.220606][T20081] tipc: Enabling of bearer rejected, failed to enable media [ 276.314190][T20095] loop7: detected capacity change from 0 to 512 [ 276.417231][T20113] IPVS: sync thread started: state = MASTER, mcast_ifn = vcan0, syncid = 0, id = 0 [ 276.451433][T20115] tipc: Failed to obtain node identity [ 276.471798][T20115] tipc: Enabling of bearer rejected, failed to enable media [ 276.651822][T20145] loop7: detected capacity change from 0 to 2048 [ 276.687599][T20145] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.711837][T20145] ext4 filesystem being mounted at /941/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 276.754070][T10805] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.821269][T20162] loop7: detected capacity change from 0 to 128 [ 277.037680][T20189] __nla_validate_parse: 6 callbacks suppressed [ 277.037697][T20189] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7277'. [ 277.100746][T20194] netlink: 8 bytes leftover after parsing attributes in process `syz.9.7279'. [ 277.233844][T20207] loop8: detected capacity change from 0 to 128 [ 277.251642][T20207] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 277.291862][T20207] ext4 filesystem being mounted at /635/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.322147][T20207] EXT4-fs (loop8): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 ro. [ 277.338669][T20207] EXT4-fs (loop8): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. [ 277.387355][T13435] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 277.470929][T20221] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7292'. [ 277.859147][T20245] loop7: detected capacity change from 0 to 256 [ 277.878465][T20245] msdos: Bad value for 'fmask' [ 277.939478][T20251] bond1: option lacp_rate: invalid value (112) [ 277.947884][T20251] bond1 (unregistering): Released all slaves [ 278.200849][T20283] netlink: 16 bytes leftover after parsing attributes in process `syz.8.7321'. [ 278.273019][T20291] tipc: Enabling of bearer rejected, media not registered [ 278.347901][T20307] loop7: detected capacity change from 0 to 256 [ 278.376178][T20309] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7334'. [ 278.394991][T20307] FAT-fs (loop7): Directory bread(block 64) failed [ 278.420320][T20307] FAT-fs (loop7): Directory bread(block 65) failed [ 278.437803][T20307] FAT-fs (loop7): Directory bread(block 66) failed [ 278.446838][T20307] FAT-fs (loop7): Directory bread(block 67) failed [ 278.461466][T20309] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7334'. [ 278.462505][T20307] FAT-fs (loop7): Directory bread(block 68) failed [ 278.477913][T20307] FAT-fs (loop7): Directory bread(block 69) failed [ 278.484605][T20307] FAT-fs (loop7): Directory bread(block 70) failed [ 278.491548][T20307] FAT-fs (loop7): Directory bread(block 71) failed [ 278.501659][T20307] FAT-fs (loop7): Directory bread(block 72) failed [ 278.511777][T20307] FAT-fs (loop7): Directory bread(block 73) failed [ 278.701327][T20330] loop9: detected capacity change from 0 to 128 [ 278.710941][T20328] netlink: 348 bytes leftover after parsing attributes in process `syz.7.7342'. [ 278.757345][T20328] netlink: 348 bytes leftover after parsing attributes in process `syz.7.7342'. [ 278.846700][T20340] ================================================================== [ 278.855077][T20340] BUG: KCSAN: data-race in blkdev_open / queue_limits_commit_update [ 278.863341][T20340] [ 278.865764][T20340] read to 0xffff888102208bb0 of 4 bytes by task 17244 on cpu 1: [ 278.874012][T20340] blkdev_open+0x161/0x290 [ 278.878706][T20340] do_dentry_open+0x4be/0xa90 [ 278.884230][T20340] vfs_open+0x37/0x1e0 [ 278.888694][T20340] path_openat+0x1b70/0x2050 [ 278.893504][T20340] do_file_open+0x16c/0x290 [ 278.898418][T20340] do_sys_openat2+0x94/0x130 [ 278.903090][T20340] __x64_sys_openat+0xf2/0x120 [ 278.907875][T20340] x64_sys_call+0x1e39/0x3020 [ 278.912858][T20340] do_syscall_64+0x12c/0x3b0 [ 278.917745][T20340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.923729][T20340] [ 278.926225][T20340] write to 0xffff888102208b20 of 192 bytes by task 20340 on cpu 0: [ 278.934814][T20340] queue_limits_commit_update+0x4b/0x160 [ 278.940660][T20340] loop_configure+0x78c/0x9c0 [ 278.945615][T20340] lo_ioctl+0x1e1/0x13a0 [ 278.950317][T20340] blkdev_ioctl+0x387/0x460 [ 278.954917][T20340] __se_sys_ioctl+0xce/0x140 [ 278.959606][T20340] __x64_sys_ioctl+0x43/0x50 [ 278.964479][T20340] x64_sys_call+0x1563/0x3020 [ 278.969522][T20340] do_syscall_64+0x12c/0x3b0 [ 278.974114][T20340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.980103][T20340] [ 278.982599][T20340] Reported by Kernel Concurrency Sanitizer on: [ 278.989933][T20340] CPU: 0 UID: 0 PID: 20340 Comm: syz.7.7348 Not tainted syzkaller #0 PREEMPT(full) [ 279.000490][T20340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 279.012055][T20340] ================================================================== [ 279.041028][T20340] loop7: detected capacity change from 0 to 128 [ 279.049898][T20340] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 279.082654][T20340] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 279.101249][T20340] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 279.123160][T20340] FAT-fs (loop7): Filesystem has been set read-only