last executing test programs: 2m21.279894245s ago: executing program 1 (id=3093): capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0xa6, 0x0, &(0x7f0000000180)="e3ef7f670000ec6783b4241544940000009550f50ac311e0f0544b00aab05400f16b2882a631a8af3a439e1432fa00228f11b0f472aeeb58d909c57270d30b5b85990747c7e37312f7eb8286ea199ecd22221ad7dade9e2b670d2dce18dd851fe6b48b3188c3764958b51a9aafc271972b28397406e611e1c0d1a8ecafe2e82d1df01e507e1c0c7f8093da6e376297d1c18eecdde56d5eb156d7ddf449d9e50010acfa620c4d", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1}, 0x50) r0 = syz_open_dev$sg(&(0x7f0000000140), 0xa, 0x8001) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 2m21.259746935s ago: executing program 1 (id=3096): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000380)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0xfffe, 0x8, @mcast2, 0x9}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00) 2m21.226089766s ago: executing program 1 (id=3098): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020206b1af8ff00000000bfa100000000000007010000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x20, 0x4, &(0x7f0000000480)=@framed={{}, [@ldst={0x1, 0x1, 0x4, 0x0, 0x1, 0x6}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000005"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2m21.131192499s ago: executing program 1 (id=3099): syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000001240)='./file2\x00', 0x2000080, &(0x7f00000003c0)=ANY=[@ANYRES64=0x0, @ANYRESHEX, @ANYBLOB="9a6c01d97557fe6fa6988edac9d750c94e48f976693942dbd85f5342631026fe6514a89d2be1c8a436a3d448a663e5cb279167517537bcca85df16b7ad217b1352e9d15a66f775a6414e474da9cfa1691c9f79e9c64646bed6b343173ebb53187320bfa4e3958b65bb0bafc5add4"], 0xfb, 0x11ff, &(0x7f0000002480)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x145042, 0x52) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r0, 0x0) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000040)) 2m20.936758174s ago: executing program 1 (id=3104): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x24000, 0x0) 2m20.897425445s ago: executing program 1 (id=3105): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="1400000010"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x24040840) 2m5.790411284s ago: executing program 32 (id=3105): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="1400000010"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x24040840) 1m37.42421781s ago: executing program 2 (id=3961): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000f00)=0x1000000, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0_macvtap\x00', 0x0}) sendmmsg$inet(r0, &(0x7f0000002240)=[{{&(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000180)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], 0x20}}], 0x1, 0x40014) 1m37.363381102s ago: executing program 2 (id=3963): io_setup(0x4, &(0x7f00000014c0)=0x0) r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00') io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0xfffe, r1, 0x0}]) syz_mount_image$ext4(&(0x7f00000009c0)='ext4\x00', &(0x7f0000000540)='./file0\x00', 0x804718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x1}}]}, 0x0, 0x492, &(0x7f0000000ec0)="$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") 1m37.037209651s ago: executing program 2 (id=3975): unshare(0x20060400) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003d00000095"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r0, r1, 0x7, 0x0, @void}, 0x10) 1m36.937354363s ago: executing program 2 (id=3977): mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000002240)='./file0\x00', 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x1, 0x2c8, &(0x7f0000000780)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181) mount$bpf(0x200000000000, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x10454ca, 0x0) 1m36.69779193s ago: executing program 2 (id=3981): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x4040001) sendmmsg$inet(r0, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x4000810) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[], 0x70}, 0x19}, 0x20040814) 1m36.480239326s ago: executing program 2 (id=3986): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000a80)={r1, 0x0, "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"}, &(0x7f0000000180)=0xfebd) 1m36.33436628s ago: executing program 33 (id=3986): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000a80)={r1, 0x0, "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"}, &(0x7f0000000180)=0xfebd) 1m23.602555213s ago: executing program 0 (id=4264): sendmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)=@generic={0x8, "b6f50627203260156c5f961c174ddddc003dcd50304ebb5fb4626d469c197dd3997a8c4faddaa0ae8e9eb1ecaeaa373c5322f651af26f8010a0295e0f0516d39fa2761b716c91c09f47ed164fa5b5cb80d9be18c473e3bc3e41eb0d25f2fc2021c2d802966a8c8aa736a31ea03dbd80fbbd8300ec9c6d687c016a4541eb1"}, 0x80, 0x0, 0x0, 0x0, 0x18, 0x68000000}, 0x4000) r0 = socket$kcm(0xa, 0x5, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002280)=ANY=[@ANYBLOB="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"/3636], &(0x7f0000000040)='GPL\x00', 0x4, 0xfdc0, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x70) setsockopt$sock_attach_bpf(r0, 0x29, 0x22, &(0x7f0000000100)=r1, 0x120) 1m23.576383084s ago: executing program 0 (id=4265): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x2a0471a, &(0x7f0000000280)={[{@init_itable}]}, 0x82, 0x48f, &(0x7f0000000840)="$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") r0 = open(&(0x7f0000000100)='./file0\x00', 0x80400, 0x2) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000088) renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x2) 1m23.467233867s ago: executing program 0 (id=4266): bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="d8070000", @ANYRES32=0x0, @ANYRES32], 0x20) r0 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000000)=0x2, 0x4) sendmmsg$inet6(r0, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002'], 0x38}}], 0x1, 0x0) 1m23.429748368s ago: executing program 0 (id=4268): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x8) 1m23.35087178s ago: executing program 0 (id=4269): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="10000000040000000800000002"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020205d0af8ff00000000bea100000000000007010000f8ffffffb702000008000000b7030000ffee0000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x74, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xd, 0x4, 0x4, 0xc, 0x0, r0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1m23.248898773s ago: executing program 0 (id=4274): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002080)=@newtaction={0x1b0, 0x30, 0x101, 0x70bd2b, 0x25dfdbfe, {}, [{0x64, 0x1, [@m_simple={0x60, 0x18, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '\t\x00\x00\x00\x00'}]}, {0x25, 0x6, "c92acebef543cf5eac95ff99fd6f0f8ca3945cf1e27303fef4d7edee9dc07b8c20"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1}}}}]}, {0x138, 0x1, [@m_simple={0x134, 0x2, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, 'flow\x00'}, @TCA_DEF_DATA={0xa, 0x3, '\xbb\xbb\xbb\xbb\xbb\xbb'}]}, {0xed, 0x6, "ebc6d23aaa5ba80d0f802173a723fcfa0cf2d0ebb06113a27802ae394942b641c58b2d19d2d38e2d3aefaedd845a777ce244c34529788bec9caea801696b43e73eba1d5f57253ded4007888d4dfb2d4d560cc3a21e5362d7322c39e51b110d62a241245060777b51d51b8fcc7955bce8eb39b61de1a07ec7afee370d347a3b49abb46b7a9f9ec6665756470dd6da3aea92b2edf57087696c04062aab4f6f9e50e211d5c76cc688c9cb720e5bdccf4bb3196cf0f75fb75876546c9e412aa7cc9df037ac35cc6aa024fd58553bae1e43269f38a1efa0e0313a62abf3b8f01c0ba4a79e663fa8d815b20f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x4000880}, 0x20000080) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f, 0xa1}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400}) 1m23.207256874s ago: executing program 34 (id=4274): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002080)=@newtaction={0x1b0, 0x30, 0x101, 0x70bd2b, 0x25dfdbfe, {}, [{0x64, 0x1, [@m_simple={0x60, 0x18, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '\t\x00\x00\x00\x00'}]}, {0x25, 0x6, "c92acebef543cf5eac95ff99fd6f0f8ca3945cf1e27303fef4d7edee9dc07b8c20"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1}}}}]}, {0x138, 0x1, [@m_simple={0x134, 0x2, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, 'flow\x00'}, @TCA_DEF_DATA={0xa, 0x3, '\xbb\xbb\xbb\xbb\xbb\xbb'}]}, {0xed, 0x6, "ebc6d23aaa5ba80d0f802173a723fcfa0cf2d0ebb06113a27802ae394942b641c58b2d19d2d38e2d3aefaedd845a777ce244c34529788bec9caea801696b43e73eba1d5f57253ded4007888d4dfb2d4d560cc3a21e5362d7322c39e51b110d62a241245060777b51d51b8fcc7955bce8eb39b61de1a07ec7afee370d347a3b49abb46b7a9f9ec6665756470dd6da3aea92b2edf57087696c04062aab4f6f9e50e211d5c76cc688c9cb720e5bdccf4bb3196cf0f75fb75876546c9e412aa7cc9df037ac35cc6aa024fd58553bae1e43269f38a1efa0e0313a62abf3b8f01c0ba4a79e663fa8d815b20f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x4000880}, 0x20000080) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f, 0xa1}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400}) 2.1732123s ago: executing program 7 (id=6311): perf_event_open(&(0x7f0000000100)={0xdbab175147a344e5, 0x80, 0x4, 0xd4, 0x4, 0xe8, 0x0, 0x1, 0x40, 0xc, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0xfff, 0x8}, 0x8c01, 0x5b6f, 0x4, 0x6, 0x4, 0x0, 0x200, 0x0, 0xffff0001, 0x0, 0x4}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0xb) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_pid(r1, &(0x7f0000000000), 0xfdef) recvmsg$unix(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/79, 0xce80}], 0x300}, 0x0) 2.090990182s ago: executing program 7 (id=6314): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000a80)={r1, 0x0, "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"}, &(0x7f0000000180)=0xfebd) 1.197056237s ago: executing program 7 (id=6352): openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x1) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 1.145320518s ago: executing program 4 (id=6354): sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000002c0)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x100}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x9}]}]}, 0x48}}, 0x44000) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008"], 0x48}}, 0x0) sendmmsg$inet(r0, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0) 1.115136199s ago: executing program 5 (id=6355): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x82, &(0x7f0000000200)={r1, 0x8001, 0x4}, &(0x7f00000002c0)=0x8) 1.005401172s ago: executing program 5 (id=6356): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) epoll_create(0x6) 1.004685442s ago: executing program 4 (id=6357): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="07000000040000008000000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000020000850000001b000000b700000000000000180100002120732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) 940.821134ms ago: executing program 3 (id=6359): r0 = socket$inet6(0xa, 0x3, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000200)=0xffffffff, 0x4) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x80000, @loopback, 0x7}, 0x1c) 916.164835ms ago: executing program 4 (id=6361): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x40000007, 0x510, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0xfff, 0x3}, 0x0, 0x10005, 0x22, 0x4, 0x0, 0x20005, 0xa, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) bind$inet(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a300000000084000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000000838001180090001006c61737400000000280002800c00024000000000000000090800014000000ba308000140000010000800014000003f5e980000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000006c0003806800008008000340000000025c0002"], 0x164}, 0x1, 0x0, 0x0, 0x4000819}, 0x0) 825.640237ms ago: executing program 3 (id=6362): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file2\x00', 0x0, &(0x7f0000000780)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}]}, 0x3, 0x546, &(0x7f0000000180)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x100, 0x62) file_getattr(r0, &(0x7f0000000000)='./file2\x00', &(0x7f0000000040), 0x18, 0x1000) setxattr$security_capability(&(0x7f00000000c0)='./file2\x00', &(0x7f0000000100), 0x0, 0x0, 0x2) 800.288728ms ago: executing program 4 (id=6364): perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000020000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000808500000073000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="928e04b416cac951c35f7f4586e6", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 741.49728ms ago: executing program 6 (id=6365): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000000)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={r2, 0x500}, &(0x7f0000000100)=0x8) 544.846695ms ago: executing program 3 (id=6366): r0 = fsopen(&(0x7f0000000300)='binfmt_misc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x1, 0x7) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0) 501.112926ms ago: executing program 4 (id=6367): syz_clone3(&(0x7f0000000080)={0x180801400, &(0x7f0000000000)=0xffffffffffffffff, 0x0, 0x0, {0x3d}, 0x0, 0x0, 0x0, 0x0}, 0x58) pidfd_send_signal(r0, 0x21, 0x0, 0x0) waitid$P_PIDFD(0x3, r0, 0x0, 0x40000004, 0x0) process_madvise(r0, 0x0, 0x0, 0x19, 0x0) 480.446047ms ago: executing program 6 (id=6368): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000ac0)=@newtfilter={0x4c, 0x2c, 0xf3f, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xffff, 0xffe0}, {}, {0x4, 0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1446}, @TCA_FLOW_MASK={0x8, 0x6, 0x7c8c}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0) 407.408838ms ago: executing program 3 (id=6369): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xe) capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2) 405.438318ms ago: executing program 6 (id=6370): socketpair$unix(0x1, 0x2, 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=@base={0xb, 0x100, 0x1108, 0x1, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000002c0), 0xb, r0}, 0x38) 376.17403ms ago: executing program 4 (id=6371): perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x7, 0x520, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbffffffc, 0x0, @perf_bp={0x0, 0x1}, 0x8, 0x1224, 0x0, 0x5, 0x8, 0x20005, 0x6, 0x0, 0x0, 0x0, 0x2000000020000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) 342.261531ms ago: executing program 6 (id=6372): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x404c2, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) mount$9p_fd(0x0, &(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000040), 0x1004014, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@uname={'uname', 0x3d, 'wfdno'}}]}}) 311.071552ms ago: executing program 3 (id=6373): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000100)={[{@barrier}, {@nodioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2796}}, {@barrier}, {@auto_da_alloc}, {@inlinecrypt}]}, 0x1, 0x5a2, &(0x7f00000003c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x51) fallocate(r0, 0x0, 0x9, 0x10001) copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0x863, 0x863, 0x0) 307.213262ms ago: executing program 7 (id=6374): r0 = memfd_create(&(0x7f0000001240)='[\v\xdbX\xae[\x1a\xad\xd1md\xc8\x85HX\xa9%\f\x1a,\xe2\x9c\xb4\xd7\xbc\xf1\xb3\x86\xe2/Op\xd0\xa2\x82\x1eb;(\xb5\xe1j\xc8\f\xe5\x89\x17\xee|J\x90=5\xed\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q%\x8a\xda\x05\x00f\xe3j%\x00\x00\x1c#\xc6\xd8\xdbD\x92P\xe16W\x10\xdau\xc7\x8f\xaa\x8d\xa9\x97\x9d\xcb\x1e\x80\xe7\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\xbdD\xcc\'\xa2\xaf`\xf6L\x0e\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecM\xe4H\xb7\xaf\xa8\x96dh\xa9\xab > \xac\x00O^\x14\xcbv\x17Hkb\xe7\xcb\x9d;\xd2\x9f\x05\xd1\x00\x8b\xd3\x9f\a\x99^v\xf7\xfa\xe5\xf0h\x87l\xd9\x15\xd2\x87~?\xb1\x9d\xc1\x92`\x8a\r\xfc\xeb\x14\xd1\x94\fv\x8a\xe3\x1d\x0fj}\x9f\xedsc\xd3\xee\xe6cXw\xa1\xbc\xd0o\xf9\x9cJ\b\x00\xd8;\\ik0+\xc8\xf2\x87\xdf\t\x97\x9dB\xc1\xa0\xa71\xf25GU|]A\x1eel \x8ff\xc6\nt\xd0\x91\x9d\x8c\xa4\xe5\xde\x06\x00\xffE\xf4\x96#\x92-9\xe5\xa7\xf8%\xb0I\xd4\x91r\xbf\x1bOS\xee}\x16\x87\x05\xf2\xb9\x81\x14\xe2NZ\\I\xd0[\xc4\xf2\"\x87\xf5\xb8\x95.M\xb1S\xbd\xe4i\x00\xc1b\t]?}0\t\xebV\xbci\xa5\x05\xca\xb6\xc22\x7fL\x89&\xa0\xcfMULr0rs\xb4\n\xa6)\xe23\xf0\x8d\x9dO\xb9\xc9\x83\xabS\x013\"\x1b\x97K\x17\x16\x89\a\xee\xc903\xad\x15\x1cH\xd2\x95\x91\xb4$\x1b\xbf\xaf\xf5\x9b\xc2\x85\xe7[\xe5\xfb}\x1d@f2\x11\x13Y\x98\xa4\xecWEE\x9eI\x05\v\x11\xad\x93!^T\xe5N\xf6LI\x9a6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\x1a\xc9(a\x06>g\xe5\x00:\x9au\xef\x14\t\x1f8E\x86\xcb\xd0e\x17\xfb\xc1', 0x3) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) write$binfmt_script(r0, &(0x7f0000001440)={'#! ', './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0'}, 0x1002) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 276.019052ms ago: executing program 5 (id=6375): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401) r1 = fcntl$dupfd(r0, 0x406, r0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000380)=@urb_type_control={0x2, {0x1, 0x1}, 0x5, 0x0, &(0x7f0000000000)={0x1, 0xf, 0x1, 0xfff, 0x3}, 0x8, 0x1, 0x81, 0x0, 0x4, 0x23d88362, &(0x7f0000000840)}) 210.936084ms ago: executing program 6 (id=6376): r0 = semget$private(0x0, 0x6, 0x0) semtimedop(r0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0) semop(r0, &(0x7f00000000c0)=[{0x4, 0x0, 0x800}, {0x2}], 0x2) semctl$IPC_RMID(r0, 0x0, 0x0) 210.623034ms ago: executing program 7 (id=6377): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x1000481, &(0x7f0000000640), 0x1, 0x5b9, &(0x7f0000000680)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) setreuid(0xee01, 0xee01) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x7, 0x8, 0xfffffffffffffffe, 0x8, 0x100802, 0x5}) 162.317456ms ago: executing program 5 (id=6378): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xc}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x4c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xfff2, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_CLASSID={0x8, 0x1, {0x0, 0x9}}, @TCA_FLOWER_KEY_CT_ZONE_MASK={0x6, 0x5e, 0x401}, @TCA_FLOWER_KEY_CT_ZONE={0x6}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20045010}, 0x0) 113.109617ms ago: executing program 5 (id=6379): syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]}) close_range(r0, 0xffffffffffffffff, 0x200000000000000) 89.888747ms ago: executing program 5 (id=6380): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@bridge_delvlan={0x24, 0x70, 0x1, 0x0, 0x25dfdbfd, {0x7, 0x0, 0x0, r2}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x1}}}]}, 0x24}}, 0x0) 53.291479ms ago: executing program 7 (id=6381): r0 = inotify_init1(0x80800) inotify_add_watch(r0, &(0x7f0000000080)='.\x00', 0x2000775) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 45.344009ms ago: executing program 6 (id=6382): perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x207, &(0x7f0000000340)={[{@debug}, {@abort}, {@noauto_da_alloc}]}, 0x5, 0x46f, &(0x7f0000001200)="$eJzs3M1vFOUfAPDv7G7hx2v3h/gCoqJoJL60tKBy8KKJiQdNTPSAx1oKQRZqaE2ENLYYghcTJeFuTLyY+Bd48kTUk4lXvBsSYriAelkz3dllu91tt91tt3U/n2To83Sf3ef7nZln55kZpgH0rYPpP0nEzoi4GRGDEZGrb7CtsqTt7t2ZGf/rzsx4EuXyu38m6dvi7p2Z8WrTJPu5o1IppB+Uu5JEsUm/UxcvnR0rlSYuZPXh6XMfDU9dvPTimXNjpydOT5wfPX782NGRV14efakreaYx3d3/6eSBfW++f+3t8RPXPvj5+0q85fL1G0cW5NEdAxExU1snjZ7pbmc9t6uunBR6GAgrsjUiCtneejMGI39ld+21wXjjs54GB6ypcrlcHm398lwZ+A9LotcRAL1RPdCn57/VpX4C8M/aTj967vZrlROgNO972VJ5pRCXszYDDee33XQwIk7M/f11ukTD9RQAgLXwYzr/eaHJ/K8Y8VBdu93ZvaFiRPw/IvZExAMRsTciHoxK24cj4pEV9n+wob54/pO7tbrM2pPO/17N7m0tnP/V7oIV81lt13z+A8mpM6WJI9k6ORwDW9P6SNNPTyLm0p+/fdmq//r5X7qk/VfnglkctwpbF77n5Nj0WMeJZ25fjthfaJZ/EoX7WcS+iNi/yj7OPPfdgYW/yddKy+e/hC7cZyp/E/FsZfvPRUP+VcnS9yeH/xeliSPD1b1isV9+vfpOq/47yr8L0u2/ven+X8u/mNTfr51a9BFbluvj6u+ftzynWe3+vyV5b0Hnn4xNT18YidiSvLX493UXuKv1avs0/8OHmo//PXF/TTwaEelO/FhEPB4RT2SxPxkRT0XEoSXy/+n1pz9cff5rK81/dkXbf+WF/NkbP7Tqv73tf6xamQ+qne+/dgPsZN0BAADAZpGLiJ2R5IZq5VxuaKjy/+X3xvZcaXJq+vlTkx+fP1l5RqAYA7nqla7BuuuhI9m14Wp9NKvPZvWj2XXj6/lt8/Wh8cnSyV4nD31uR4vxn/oj3+vogDXneS3oX8Y/9K/Vj3/fHLDZLTOKc+sVB7D+HMWhfzUb/7M9iANYf47/0L9q4/+rNhrXPe7V+PAmsPk4/kP/Mv6hL3XyXP+GKMS3EUu3STZKqCsqfNHJ2wvrEGHkNsaKWsfCaD6ih2EU2v2rFnGxPNtxp73+ZgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiOfwMAAP//Oyno9g==") openat$ptp0(0xffffffffffffff9c, 0x0, 0x100, 0x0) syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f000001f940)) 0s ago: executing program 3 (id=6383): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x40e02, 0x0) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) kernel console output (not intermixed with test programs): 0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14636 comm="syz.6.4713" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9b6126cdd9 code=0x0 [ 195.896270][T14667] Process accounting resumed [ 196.110184][T14694] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 196.116696][T14694] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 196.154788][T14698] netlink: 56 bytes leftover after parsing attributes in process `syz.5.4737'. [ 196.192279][T14703] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=14703 comm=syz.4.4738 [ 196.285688][T14711] netlink: 152 bytes leftover after parsing attributes in process `syz.5.4740'. [ 196.331406][T14716] netlink: 'syz.6.4742': attribute type 13 has an invalid length. [ 196.362199][T14716] gretap0: refused to change device tx_queue_len [ 196.383187][T14716] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 196.722601][T14737] set_capacity_and_notify: 1 callbacks suppressed [ 196.722618][T14737] loop4: detected capacity change from 0 to 128 [ 196.890407][ T28] audit: type=1326 audit(2000000076.699:11609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 196.980078][ T28] audit: type=1326 audit(2000000076.729:11610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.042220][ T28] audit: type=1326 audit(2000000076.729:11611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.084381][T14751] loop4: detected capacity change from 0 to 1024 [ 197.106824][ T28] audit: type=1326 audit(2000000076.729:11612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.183547][ T28] audit: type=1326 audit(2000000076.729:11613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.207443][ T28] audit: type=1326 audit(2000000076.729:11614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.231675][ T28] audit: type=1326 audit(2000000076.729:11615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.255892][ T28] audit: type=1326 audit(2000000076.729:11616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.279790][ T28] audit: type=1326 audit(2000000076.729:11617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.303726][ T28] audit: type=1326 audit(2000000076.729:11618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14738 comm="syz.4.4752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 197.652633][T14790] netlink: 'syz.6.4768': attribute type 12 has an invalid length. [ 197.669866][T14790] netlink: 'syz.6.4768': attribute type 29 has an invalid length. [ 197.698853][T14790] netlink: 148 bytes leftover after parsing attributes in process `syz.6.4768'. [ 197.725899][T14790] netlink: 'syz.6.4768': attribute type 1 has an invalid length. [ 197.745246][T14790] netlink: 'syz.6.4768': attribute type 2 has an invalid length. [ 198.111055][T14833] loop7: detected capacity change from 0 to 128 [ 198.429671][T14857] loop7: detected capacity change from 0 to 1024 [ 198.856133][T14890] loop4: detected capacity change from 0 to 512 [ 198.943124][T14898] geneve2: entered promiscuous mode [ 198.963617][T14898] geneve2: entered allmulticast mode [ 199.096050][T14913] tap0: tun_chr_ioctl cmd 35111 [ 199.135259][T14917] loop4: detected capacity change from 0 to 512 [ 199.165891][T14917] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #12: comm syz.4.4813: missing EA_INODE flag [ 199.185759][T14920] __nla_validate_parse: 7 callbacks suppressed [ 199.185775][T14920] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4814'. [ 199.206162][T14917] loop4: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117 [ 199.207894][T14917] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.4813: error while reading EA inode 12 err=-117 [ 199.217111][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 199.217148][ C1] EXT4-fs (loop4): initial error at time 2000000079: ext4_xattr_inode_iget:441: inode 12 [ 199.217185][ C1] EXT4-fs (loop4): last error at time 2000000079: ext4_xattr_inode_iget:441: inode 12 [ 199.256374][T14917] loop4: lost filesystem error report for type 5 error -117 [ 199.257922][T14917] EXT4-fs (loop4): 1 orphan inode deleted [ 199.271656][T14917] EXT4-fs mount: 20 callbacks suppressed [ 199.271676][T14917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.336495][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.381120][T14928] netlink: 236 bytes leftover after parsing attributes in process `syz.3.4819'. [ 199.397977][T14928] netlink: 236 bytes leftover after parsing attributes in process `syz.3.4819'. [ 199.517874][T14941] gretap1: entered allmulticast mode [ 199.564023][T14947] rdma_op ffff8881022c6580 conn xmit_rdma 0000000000000000 [ 199.646719][T14949] loop3: detected capacity change from 0 to 8192 [ 199.669406][T14949] bio_check_eod: 2949 callbacks suppressed [ 199.669423][T14949] syz.3.4828: attempt to access beyond end of device [ 199.669423][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.690184][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.700399][T14949] syz.3.4828: attempt to access beyond end of device [ 199.700399][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.740818][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.781071][ T30] tipc: Subscription rejected, illegal request [ 199.782087][T14949] syz.3.4828: attempt to access beyond end of device [ 199.782087][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.830071][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.851533][T14949] syz.3.4828: attempt to access beyond end of device [ 199.851533][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.868457][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.877394][T14949] syz.3.4828: attempt to access beyond end of device [ 199.877394][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.891355][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.899870][T14949] syz.3.4828: attempt to access beyond end of device [ 199.899870][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.914284][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.923393][T14949] syz.3.4828: attempt to access beyond end of device [ 199.923393][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.937104][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.945666][T14949] syz.3.4828: attempt to access beyond end of device [ 199.945666][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.959690][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.969199][T14949] syz.3.4828: attempt to access beyond end of device [ 199.969199][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 199.983226][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 199.991780][T14949] syz.3.4828: attempt to access beyond end of device [ 199.991780][T14949] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 200.005961][T14949] Buffer I/O error on dev loop3, logical block 57847, async page read [ 201.925838][T14973] loop5: detected capacity change from 0 to 1024 [ 201.968892][T14973] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.167621][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.230861][T15000] loop6: detected capacity change from 0 to 512 [ 202.252243][T15007] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4853'. [ 202.277279][T15000] EXT4-fs: Ignoring removed oldalloc option [ 202.291336][T15007] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4853'. [ 202.310789][T15000] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 202.345136][T15000] EXT4-fs error (device loop6): ext4_iget_extra_inode:5128: inode #11: comm syz.6.4850: corrupted in-inode xattr: invalid ea_ino [ 202.358757][T15000] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 202.359907][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 202.376301][ C1] EXT4-fs (loop6): initial error at time 2000000082: ext4_iget_extra_inode:5128: inode 11 [ 202.380206][T15000] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.4850: couldn't read orphan inode 11 (err -117) [ 202.386821][ C1] EXT4-fs (loop6): last error at time 2000000082: ext4_iget_extra_inode:5128: inode 11 [ 202.419258][T15000] loop6: lost filesystem error report for type 5 error -117 [ 202.431480][T15000] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.594748][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.610292][T15032] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4865'. [ 202.620588][T15028] loop7: detected capacity change from 0 to 512 [ 202.621302][T15032] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4865'. [ 202.636127][T15029] loop5: detected capacity change from 0 to 512 [ 202.647160][T15028] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 202.660879][T15032] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4865'. [ 202.685697][T15028] EXT4-fs (loop7): 1 truncate cleaned up [ 202.696987][T15037] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4867'. [ 202.724597][T15028] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.813288][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 202.813348][ T28] audit: type=1400 audit(2000000082.619:11626): avc: denied { setattr } for pid=15027 comm="syz.7.4864" name="bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 202.948829][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.123972][T15072] loop6: detected capacity change from 0 to 1024 [ 203.154967][T15072] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.306433][T15080] loop5: detected capacity change from 0 to 8192 [ 203.336305][T15080] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 203.383109][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.445663][T15080] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 203.454810][T15080] FAT-fs (loop5): Filesystem has been set read-only [ 203.462203][T15080] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 203.472301][T15080] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 203.566687][T10879] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 203.996797][ T28] audit: type=1400 audit(2000000083.799:11627): avc: denied { create } for pid=15121 comm="syz.3.4906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 204.026092][ T28] audit: type=1400 audit(2000000083.819:11628): avc: denied { connect } for pid=15121 comm="syz.3.4906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 204.057713][T15126] loop5: detected capacity change from 0 to 512 [ 204.061116][ T28] audit: type=1400 audit(2000000083.819:11629): avc: denied { write } for pid=15121 comm="syz.3.4906" path="socket:[42571]" dev="sockfs" ino=42571 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 204.086057][T15126] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 204.131625][T15126] EXT4-fs (loop5): 1 truncate cleaned up [ 204.141262][T15126] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.185564][T15131] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4909'. [ 204.223135][T15131] netlink: 'syz.7.4909': attribute type 15 has an invalid length. [ 204.247549][T15131] netlink: 'syz.7.4909': attribute type 25 has an invalid length. [ 204.260007][T15131] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4909'. [ 204.351138][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.825320][T15158] loop4: detected capacity change from 0 to 1024 [ 204.858587][T15158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 205.385303][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.447815][T15169] loop4: detected capacity change from 0 to 512 [ 205.460688][T15169] EXT4-fs: Ignoring removed i_version option [ 205.482273][T15169] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 205.511342][T15169] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4923: invalid indirect mapped block 4294967295 (level 1) [ 205.528590][T15169] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 205.529907][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 205.531628][T15169] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4923: invalid indirect mapped block 4294967295 (level 1) [ 205.539103][ C0] EXT4-fs (loop4): initial error at time 2000000085: ext4_free_branches:1023: inode 11 [ 205.569335][ C0] EXT4-fs (loop4): last error at time 2000000085: ext4_free_branches:1023: inode 11 [ 205.586461][T15169] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 205.611447][T15169] EXT4-fs (loop4): 2 truncates cleaned up [ 205.644319][T15179] loop5: detected capacity change from 0 to 1024 [ 205.654481][T15169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.679573][T15179] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 205.693935][T15179] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869) [ 205.719192][T15179] EXT4-fs error (device loop5): ext4_get_journal_inode:5896: comm syz.5.4928: inode #1: comm syz.5.4928: iget: illegal inode # [ 205.733882][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.740413][T15179] loop5: lost filesystem error report for type 5 error -117 [ 205.746147][T15179] EXT4-fs (loop5): no journal found [ 205.753697][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 205.753723][ C1] EXT4-fs (loop5): initial error at time 2000000085: ext4_get_journal_inode:5896 [ 205.753754][ C1] EXT4-fs (loop5): last error at time 2000000085: ext4_get_journal_inode:5896 [ 205.824345][T15179] EXT4-fs (loop5): can't get journal size [ 205.836461][T15179] EXT4-fs (loop5): failed to initialize system zone (-22) [ 205.850474][T15179] EXT4-fs (loop5): mount failed [ 205.915281][T15179] netlink: 268 bytes leftover after parsing attributes in process `syz.5.4928'. [ 205.953790][T15179] netlink: 136 bytes leftover after parsing attributes in process `syz.5.4928'. [ 205.980832][T15179] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4928'. [ 206.248841][T15220] program syz.5.4947 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 206.713555][T15247] isofs_fill_super: bread failed, dev=loop7, iso_blknum=16, block=32 [ 206.759864][T15245] loop4: p2 p3 p7 [ 206.781526][ T28] audit: type=1400 audit(2000000086.589:11630): avc: denied { write } for pid=15244 comm="syz.4.4958" name="loop4p2" dev="devtmpfs" ino=1672 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 206.844935][ T28] audit: type=1400 audit(2000000086.589:11631): avc: denied { open } for pid=15244 comm="syz.4.4958" path="/dev/loop4p2" dev="devtmpfs" ino=1672 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 207.077703][T15257] set_capacity_and_notify: 1 callbacks suppressed [ 207.077720][T15257] loop4: detected capacity change from 0 to 8192 [ 207.121540][T15257] bio_check_eod: 13594 callbacks suppressed [ 207.121615][T15257] syz.4.4964: attempt to access beyond end of device [ 207.121615][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.172984][T15257] buffer_io_error: 13594 callbacks suppressed [ 207.173005][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.210140][T15257] syz.4.4964: attempt to access beyond end of device [ 207.210140][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.229189][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.238037][T15257] syz.4.4964: attempt to access beyond end of device [ 207.238037][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.275522][T15263] netlink: 4556 bytes leftover after parsing attributes in process `syz.3.4966'. [ 207.296811][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.319964][T15257] syz.4.4964: attempt to access beyond end of device [ 207.319964][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.357704][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.390226][T15257] syz.4.4964: attempt to access beyond end of device [ 207.390226][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.417621][T15274] loop5: detected capacity change from 0 to 512 [ 207.431589][T15274] EXT4-fs: Ignoring removed oldalloc option [ 207.439687][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.467134][T15274] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 207.473500][T15257] syz.4.4964: attempt to access beyond end of device [ 207.473500][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.499863][T15274] EXT4-fs error (device loop5): ext4_iget_extra_inode:5128: inode #11: comm syz.5.4971: corrupted in-inode xattr: invalid ea_ino [ 207.526160][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.535675][T15274] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 207.539566][T15274] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.4971: couldn't read orphan inode 11 (err -117) [ 207.544631][T15257] syz.4.4964: attempt to access beyond end of device [ 207.544631][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.548983][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 207.549003][ C1] EXT4-fs (loop5): initial error at time 2000000087: ext4_iget_extra_inode:5128 [ 207.562665][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.574298][ C1] : inode 11 [ 207.574320][ C1] EXT4-fs (loop5): last error at time 2000000087: ext4_iget_extra_inode:5128: inode 11 [ 207.582145][T15257] syz.4.4964: attempt to access beyond end of device [ 207.582145][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.589986][ C1] [ 207.627792][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.636324][T15257] syz.4.4964: attempt to access beyond end of device [ 207.636324][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.650150][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.655756][T15274] loop5: lost filesystem error report for type 5 error -117 [ 207.658398][T15257] syz.4.4964: attempt to access beyond end of device [ 207.658398][T15257] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 207.670422][T15274] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.680594][T15257] Buffer I/O error on dev loop4, logical block 57847, async page read [ 207.905041][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.980061][T15294] netlink: 47 bytes leftover after parsing attributes in process `syz.5.4981'. [ 208.236037][T15301] netlink: 72 bytes leftover after parsing attributes in process `syz.6.4983'. [ 208.262901][T15301] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4983'. [ 208.478103][T15314] netlink: 68 bytes leftover after parsing attributes in process `syz.7.4989'. [ 208.528229][T15314] netlink: 48 bytes leftover after parsing attributes in process `syz.7.4989'. [ 209.276034][T15329] pim6reg: entered allmulticast mode [ 209.321760][T15329] team0: entered allmulticast mode [ 209.349383][T15329] team_slave_0: entered allmulticast mode [ 209.371128][T15329] team_slave_1: entered allmulticast mode [ 209.503196][ T28] audit: type=1400 audit(2000000089.309:11632): avc: denied { listen } for pid=15340 comm="syz.6.5003" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 209.695994][ T28] audit: type=1326 audit(2000000089.499:11633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15357 comm="syz.4.5012" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x0 [ 209.748591][T15361] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5011'. [ 209.792223][T15366] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 209.940591][T15375] netem: change failed [ 210.097001][T15383] loop6: detected capacity change from 0 to 128 [ 210.188604][T15389] loop7: detected capacity change from 0 to 512 [ 210.215399][T15392] loop6: detected capacity change from 0 to 256 [ 210.264253][T15389] EXT4-fs error (device loop7): ext4_ext_check_inode:521: inode #16: comm syz.7.5024: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 2048(2048) [ 210.294001][T15392] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 210.308115][T15398] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5028'. [ 210.343930][T15389] loop7: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 210.344450][T15389] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.5024: couldn't read orphan inode 16 (err -117) [ 210.354008][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 210.354035][ C0] EXT4-fs (loop7): initial error at time 2000000090: ext4_ext_check_inode:521: inode 16 [ 210.354071][ C0] EXT4-fs (loop7): last error at time 2000000090: ext4_ext_check_inode:521: inode 16 [ 210.394605][T15389] loop7: lost filesystem error report for type 5 error -117 [ 210.396442][T15389] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.417048][T15389] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.472717][T15389] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #3: comm syz.7.5024: corrupted inode contents [ 210.473846][ T28] audit: type=1400 audit(2000000090.279:11634): avc: denied { link } for pid=15386 comm="syz.7.5024" name="file1" dev="loop7" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 210.521622][T15389] EXT4-fs error (device loop7): ext4_dirty_inode:6587: inode #3: comm syz.7.5024: mark_inode_dirty error [ 210.562623][T15389] EXT4-fs error (device loop7): ext4_do_update_inode:5690: inode #3: comm syz.7.5024: corrupted inode contents [ 210.606636][T15389] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #3: comm syz.7.5024: mark_inode_dirty error [ 210.629737][T15413] loop6: detected capacity change from 0 to 256 [ 210.640665][T15389] Quota error (device loop7): write_blk: dquota write failed [ 210.680205][T15389] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota [ 210.700430][T15389] EXT4-fs error (device loop7): ext4_acquire_dquot:7034: comm syz.7.5024: Failed to acquire dquot type 0 [ 210.706809][T15415] sctp: [Deprecated]: syz.5.5035 (pid 15415) Use of struct sctp_assoc_value in delayed_ack socket option. [ 210.706809][T15415] Use struct sctp_sack_info instead [ 210.806477][ T28] audit: type=1400 audit(2000000090.609:11635): avc: denied { cpu } for pid=15418 comm="syz.5.5038" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 210.832216][T15417] loop6: detected capacity change from 0 to 1024 [ 210.838084][T15419] loop5: detected capacity change from 0 to 512 [ 210.852601][T15417] EXT4-fs: quotafile must be on filesystem root [ 210.873167][T15417] netlink: 72 bytes leftover after parsing attributes in process `syz.6.5036'. [ 210.891588][T15419] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 210.895418][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.956465][T15419] EXT4-fs (loop5): failed to initialize system zone (-117) [ 210.979837][T15419] EXT4-fs (loop5): mount failed [ 211.241855][T15442] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5046'. [ 211.609218][T15457] vhci_hcd vhci_hcd.3: invalid port number 254 [ 211.637802][T15461] program syz.3.5056 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 211.648560][T15457] vhci_hcd vhci_hcd.3: GetPortErrorCount req not supported for USB 2.0 roothub [ 211.797285][T15476] loop3: detected capacity change from 0 to 1024 [ 211.817536][T15476] EXT4-fs: quotafile must be on filesystem root [ 211.836974][T15476] netlink: 72 bytes leftover after parsing attributes in process `syz.3.5064'. [ 212.388518][T15500] loop7: detected capacity change from 0 to 256 [ 212.660916][T15517] loop4: detected capacity change from 0 to 512 [ 212.678158][T15517] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 212.699215][T15517] EXT4-fs (loop4): 1 truncate cleaned up [ 212.705930][T15517] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 212.857434][T15522] netlink: 'syz.5.5084': attribute type 1 has an invalid length. [ 212.890718][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.987359][T15533] loop7: detected capacity change from 0 to 512 [ 213.020241][T15533] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.035632][T15527] loop4: detected capacity change from 0 to 8192 [ 213.047254][T15539] program syz.3.5090 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 213.067244][ T28] audit: type=1400 audit(2000000092.869:11636): avc: denied { mount } for pid=15537 comm="syz.5.5091" name="/" dev="bdev" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bdev_t tclass=filesystem permissive=1 [ 213.208933][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.403755][T15560] loop7: detected capacity change from 0 to 8192 [ 213.415612][T15562] hub 8-0:1.0: USB hub found [ 213.434180][T15562] hub 8-0:1.0: 8 ports detected [ 213.441984][T15560] bio_check_eod: 3881 callbacks suppressed [ 213.442015][T15560] syz.7.5099: attempt to access beyond end of device [ 213.442015][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.509988][T15560] buffer_io_error: 3881 callbacks suppressed [ 213.510008][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.550083][T15560] syz.7.5099: attempt to access beyond end of device [ 213.550083][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.581348][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.621867][T15560] syz.7.5099: attempt to access beyond end of device [ 213.621867][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.637716][T15571] loop3: detected capacity change from 0 to 2048 [ 213.660100][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.668843][T15560] syz.7.5099: attempt to access beyond end of device [ 213.668843][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.689820][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.699429][T15560] syz.7.5099: attempt to access beyond end of device [ 213.699429][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.700163][T15571] loop3: p1 p2 [ 213.714746][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.733542][T15560] syz.7.5099: attempt to access beyond end of device [ 213.733542][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.784903][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.794347][T15560] syz.7.5099: attempt to access beyond end of device [ 213.794347][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.808601][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.817477][T15560] syz.7.5099: attempt to access beyond end of device [ 213.817477][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.839961][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.883817][T15560] syz.7.5099: attempt to access beyond end of device [ 213.883817][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 213.893101][T10925] udevd[10925]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 213.910000][T10873] udevd[10873]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 213.938532][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 213.957506][T15560] syz.7.5099: attempt to access beyond end of device [ 213.957506][T15560] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 214.004242][T15560] Buffer I/O error on dev loop7, logical block 57847, async page read [ 214.177320][T15605] ref_ctr_offset mismatch. inode: 0x14d5 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 214.242704][T15612] program syz.5.5124 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 214.438390][T15629] loop5: detected capacity change from 0 to 1024 [ 214.471562][T15629] EXT4-fs: Ignoring removed bh option [ 214.504413][T15629] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 214.573739][T15629] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 214.619093][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.906267][T15661] netlink: 48 bytes leftover after parsing attributes in process `syz.6.5146'. [ 215.136860][T15667] loop6: detected capacity change from 0 to 1024 [ 215.158100][T15667] EXT4-fs: Ignoring removed bh option [ 215.172705][T15667] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 215.194313][T15674] dummy0: entered allmulticast mode [ 215.206233][T15667] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 215.225023][T15673] dummy0: left allmulticast mode [ 215.246322][T15667] EXT4-fs error (device loop6): __ext4_fill_super:5596: inode #2: comm syz.6.5149: iget: special inode unallocated [ 215.277509][T15667] loop6: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 215.280099][T15667] EXT4-fs (loop6): Remounting filesystem read-only [ 215.295991][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 215.296055][ C1] EXT4-fs (loop6): initial error at time 2000000095: __ext4_fill_super:5596: inode 2 [ 215.296168][ C1] EXT4-fs (loop6): last error at time 2000000095: __ext4_fill_super:5596: inode 2 [ 215.327649][T15667] EXT4-fs (loop6): get root inode failed [ 215.334949][T15667] EXT4-fs (loop6): mount failed [ 215.448280][T15684] loop6: detected capacity change from 0 to 512 [ 215.486793][T15687] loop4: detected capacity change from 0 to 512 [ 215.532476][T15687] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 215.567095][T15687] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 215.607610][T15687] System zones: 0-1, 15-15, 18-18, 34-34 [ 215.622711][T15687] EXT4-fs (loop4): orphan cleanup on readonly fs [ 215.647718][T15687] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0 [ 215.679752][T15687] EXT4-fs warning (device loop4): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 215.742448][T15687] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 215.767078][T15687] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5158: bg 0: block 40: padding at end of block bitmap is not set [ 215.818661][T15687] loop4: lost filesystem error report for type 5 error -117 [ 215.818805][T15687] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 215.826259][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 215.826282][ C0] EXT4-fs (loop4): initial error at time 2000000095: ext4_validate_block_bitmap:441 [ 215.826303][ C0] EXT4-fs (loop4): last error at time 2000000095: ext4_validate_block_bitmap:441 [ 215.887879][T15687] loop4: lost filesystem error report for type 5 error -117 [ 215.888053][T15687] EXT4-fs (loop4): 1 truncate cleaned up [ 215.917294][T15711] vhci_hcd vhci_hcd.3: invalid port number 254 [ 215.926930][T15687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 215.950100][T15711] vhci_hcd vhci_hcd.3: GetPortErrorCount req not supported for USB 2.0 roothub [ 215.970925][T15687] EXT4-fs (loop4): shut down requested (2) [ 215.977244][T15687] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 215.991266][T15687] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 216.009963][ T28] audit: type=1400 audit(2000000095.809:11637): avc: denied { mounton } for pid=15686 comm="syz.4.5158" path="/1039/file2/file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 216.051701][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.232605][T15726] EXT4-fs: Ignoring removed bh option [ 216.272481][T15735] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5178'. [ 216.276631][T15726] EXT4-fs: Ignoring removed oldalloc option [ 216.301695][T15726] EXT4-fs: Ignoring removed nobh option [ 216.307728][T15726] EXT4-fs (loop7): bad geometry: bigalloc file system with non-zero first_data_block [ 216.307728][T15726] [ 216.323242][T15738] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.5180'. [ 216.333471][T15738] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.5180'. [ 216.687430][T15768] EXT4-fs: Ignoring removed oldalloc option [ 216.718029][T15768] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 216.751760][T15768] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #11: comm syz.3.5192: corrupted in-inode xattr: invalid ea_ino [ 216.794492][T15768] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 216.794730][T15768] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.5192: couldn't read orphan inode 11 (err -117) [ 216.803956][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 216.804000][ C0] EXT4-fs (loop3): initial error at time 2000000096: ext4_iget_extra_inode:5128: inode 11 [ 216.804039][ C0] EXT4-fs (loop3): last error at time 2000000096: ext4_iget_extra_inode:5128: inode 11 [ 216.897285][T15768] loop3: lost filesystem error report for type 5 error -117 [ 216.906311][T15768] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.172751][T15779] netlink: 'syz.5.5196': attribute type 12 has an invalid length. [ 217.185407][T15779] netlink: 'syz.5.5196': attribute type 29 has an invalid length. [ 217.193720][T15779] netlink: 148 bytes leftover after parsing attributes in process `syz.5.5196'. [ 217.203698][T15779] netlink: 'syz.5.5196': attribute type 1 has an invalid length. [ 217.204744][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.221832][T15779] netlink: 'syz.5.5196': attribute type 2 has an invalid length. [ 217.322953][T15785] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 217.346799][T15785] ext4 filesystem being mounted at /345/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 217.361998][T15785] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.5198: corrupted xattr block 33: invalid checksum [ 217.376785][T15785] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop5 ino=15 [ 217.392947][T15785] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.5198: corrupted xattr block 33: invalid checksum [ 217.416368][T15789] EXT4-fs warning (device loop5): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 217.442037][T15785] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop5 ino=15 [ 217.466961][ T28] audit: type=1400 audit(2000000097.269:11638): avc: denied { unlink } for pid=15784 comm="syz.5.5198" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 217.467552][T15785] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2972: inode #15: comm syz.5.5198: corrupted xattr block 33: invalid checksum [ 217.523948][T15785] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -74 [ 217.524565][T15785] EXT4-fs warning (device loop5): ext4_evict_inode:287: xattr delete (err -74) [ 217.617708][T15796] set_capacity_and_notify: 4 callbacks suppressed [ 217.617803][T15796] loop7: detected capacity change from 0 to 256 [ 217.633544][T15796] vfat: Unknown parameter 'io#harset' [ 217.645797][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.206471][ T28] audit: type=1400 audit(2000000098.009:11639): avc: denied { getopt } for pid=15855 comm="syz.7.5240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 218.330537][T15862] loop6: detected capacity change from 0 to 8192 [ 218.395292][T15869] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5235'. [ 218.411385][T15872] loop3: detected capacity change from 0 to 512 [ 218.443076][T15872] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.455849][T15862] bio_check_eod: 4461 callbacks suppressed [ 218.455868][T15862] syz.6.5231: attempt to access beyond end of device [ 218.455868][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.499372][T15862] syz.6.5231: attempt to access beyond end of device [ 218.499372][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.515655][T15862] syz.6.5231: attempt to access beyond end of device [ 218.515655][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.530092][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.540618][T15862] buffer_io_error: 4463 callbacks suppressed [ 218.540634][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.567704][T15862] syz.6.5231: attempt to access beyond end of device [ 218.567704][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.594213][T15883] loop3: detected capacity change from 0 to 512 [ 218.614964][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.635908][T15883] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5239: bg 0: block 393: padding at end of block bitmap is not set [ 218.658698][T15862] syz.6.5231: attempt to access beyond end of device [ 218.658698][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.669818][T15883] loop3: lost filesystem error report for type 5 error -117 [ 218.677326][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.679437][T15883] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 218.685330][T15862] syz.6.5231: attempt to access beyond end of device [ 218.685330][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.693064][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 218.693086][ C1] EXT4-fs (loop3): initial error at time 2000000098: ext4_validate_block_bitmap:441 [ 218.702091][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.715328][ C1] [ 218.715339][ C1] EXT4-fs (loop3): last error at time 2000000098: ext4_validate_block_bitmap:441 [ 218.722954][T15862] syz.6.5231: attempt to access beyond end of device [ 218.722954][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.732079][ C1] [ 218.732885][T15886] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5243'. [ 218.740530][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.785779][T15881] loop4: detected capacity change from 0 to 1024 [ 218.790739][T15886] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.800074][T15883] loop3: lost filesystem error report for type 5 error -117 [ 218.800506][T15881] EXT4-fs: Ignoring removed bh option [ 218.801906][T15883] EXT4-fs (loop3): 2 truncates cleaned up [ 218.818938][T15881] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 218.829864][T15881] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 218.836238][T15886] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.845976][T15881] EXT4-fs error (device loop4): __ext4_fill_super:5596: inode #2: comm syz.4.5241: iget: special inode unallocated [ 218.847833][T15886] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.862915][T15883] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.868519][T15881] loop4: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 218.880964][T15862] syz.6.5231: attempt to access beyond end of device [ 218.880964][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.890137][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 218.890169][ C1] EXT4-fs (loop4): initial error at time 2000000098: __ext4_fill_super:5596: inode 2 [ 218.890209][ C1] EXT4-fs (loop4): last error at time 2000000098: __ext4_fill_super:5596: inode 2 [ 218.905531][T15886] bridge_slave_0: left allmulticast mode [ 218.910555][T15881] EXT4-fs (loop4): Remounting filesystem read-only [ 218.931980][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.936375][T15881] EXT4-fs (loop4): get root inode failed [ 218.942789][T15862] syz.6.5231: attempt to access beyond end of device [ 218.942789][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 218.950657][T15881] EXT4-fs (loop4): mount failed [ 218.978487][T15886] bridge_slave_0: left promiscuous mode [ 218.991398][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 218.996952][T15886] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.026003][T15862] syz.6.5231: attempt to access beyond end of device [ 219.026003][T15862] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 219.045973][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.053960][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 219.082860][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 219.095449][T15862] Buffer I/O error on dev loop6, logical block 57847, async page read [ 219.117528][T15892] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 219.157338][T15892] pim6reg: entered allmulticast mode [ 219.292874][T15910] dummy0: entered allmulticast mode [ 219.316150][T15912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5256'. [ 219.352607][T15908] dummy0: left allmulticast mode [ 219.396521][T15917] loop3: detected capacity change from 0 to 256 [ 220.315070][T15935] loop4: detected capacity change from 0 to 128 [ 220.362672][T15936] loop3: detected capacity change from 0 to 512 [ 220.390310][T15936] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 220.423038][T15936] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.5275: iget: bad i_size value: 38620345925642 [ 220.440482][T15936] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 220.440660][T15936] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.5275: couldn't read orphan inode 15 (err -117) [ 220.449948][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 220.449973][ C0] EXT4-fs (loop3): initial error at time 2000000100: ext4_orphan_get:1397: inode 15 [ 220.450012][ C0] EXT4-fs (loop3): last error at time 2000000100: ext4_orphan_get:1397: inode 15 [ 220.489962][T15942] loop5: detected capacity change from 0 to 8192 [ 220.497113][T15936] loop3: lost filesystem error report for type 5 error -117 [ 220.504764][T15936] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.543936][ T28] audit: type=1400 audit(2000000100.339:11640): avc: denied { bind } for pid=15951 comm="syz.7.5270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 220.628966][ T3373] kernel write not supported for file /517/uid_map (pid: 3373 comm: kworker/1:4) [ 220.659076][T15960] EXT4-fs (loop3): shut down requested (1) [ 220.766736][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.361604][T16001] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5294'. [ 221.475628][T16012] loop5: detected capacity change from 0 to 256 [ 221.833442][T16018] EXT4-fs: Ignoring removed bh option [ 221.852202][T16018] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 221.875146][T16018] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 221.898568][T16018] EXT4-fs error (device loop3): __ext4_fill_super:5596: inode #2: comm syz.3.5303: iget: special inode unallocated [ 221.920042][T16018] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 221.923441][T16018] EXT4-fs (loop3): Remounting filesystem read-only [ 221.932665][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 221.932733][ C1] EXT4-fs (loop3): initial error at time 2000000101: __ext4_fill_super:5596: inode 2 [ 221.932861][ C1] EXT4-fs (loop3): last error at time 2000000101: __ext4_fill_super:5596: inode 2 [ 222.056296][T16018] EXT4-fs (loop3): get root inode failed [ 222.072626][T16018] EXT4-fs (loop3): mount failed [ 222.231417][T16027] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c198, mo2=0002] [ 222.272676][T16027] System zones: 1-12 [ 222.294294][T16027] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.5306: corrupted in-inode xattr: e_value size too large [ 222.343274][T16027] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 222.345668][T16027] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.5306: couldn't read orphan inode 15 (err -117) [ 222.354977][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 222.355003][ C0] EXT4-fs (loop3): initial error at time 2000000102: ext4_iget_extra_inode:5128: inode 15 [ 222.355042][ C0] EXT4-fs (loop3): last error at time 2000000102: ext4_iget_extra_inode:5128: inode 15 [ 222.417149][T16027] loop3: lost filesystem error report for type 5 error -117 [ 222.417751][T16027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.491645][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.704202][T16050] set_capacity_and_notify: 3 callbacks suppressed [ 222.704221][T16050] loop3: detected capacity change from 0 to 128 [ 222.739393][T16050] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 222.788046][T16052] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5316'. [ 222.923670][T16066] loop6: detected capacity change from 0 to 512 [ 222.950365][T16066] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.985762][T16066] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 223.063672][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.476152][T16110] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5343'. [ 223.737973][T16134] dummy0: entered promiscuous mode [ 223.760547][T16134] dummy0: left promiscuous mode [ 223.776510][T16136] netlink: 60 bytes leftover after parsing attributes in process `syz.6.5355'. [ 223.811575][ T28] audit: type=1400 audit(2000000103.619:11641): avc: denied { getopt } for pid=16137 comm="syz.5.5356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 223.887727][ T28] audit: type=1400 audit(2000000103.689:11642): avc: denied { accept } for pid=16141 comm="syz.6.5357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 223.951909][ T28] audit: type=1400 audit(2000000103.729:11643): avc: denied { read } for pid=16139 comm="syz.4.5358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 224.512717][T16185] netlink: 192 bytes leftover after parsing attributes in process `syz.3.5378'. [ 224.618191][ T28] audit: type=1400 audit(2000000104.419:11644): avc: denied { getopt } for pid=16200 comm="syz.6.5383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 224.833378][ T28] audit: type=1326 audit(2000000104.639:11645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 224.879529][ T28] audit: type=1326 audit(2000000104.639:11646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 224.904718][ T28] audit: type=1326 audit(2000000104.669:11647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 224.929959][ T28] audit: type=1326 audit(2000000104.669:11648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 225.001572][ T28] audit: type=1326 audit(2000000104.669:11649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 225.066169][ T28] audit: type=1326 audit(2000000104.669:11650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16220 comm="syz.3.5394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 225.097389][T16236] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5401'. [ 225.558221][T16267] loop4: detected capacity change from 0 to 512 [ 225.590398][T16267] EXT4-fs: Ignoring removed orlov option [ 225.604085][T16267] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 225.655595][T16267] EXT4-fs (loop4): 1 orphan inode deleted [ 225.669274][T16267] EXT4-fs (loop4): 1 truncate cleaned up [ 225.697791][T16267] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.814914][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.978302][T16291] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5424'. [ 226.397036][T16317] loop7: detected capacity change from 0 to 512 [ 226.417102][T16317] ext3: Unknown parameter 'euid>00000000000000000000' [ 226.468562][T16320] netlink: 104 bytes leftover after parsing attributes in process `syz.4.5437'. [ 226.541755][T16322] loop5: detected capacity change from 0 to 512 [ 226.633862][T16333] loop5: detected capacity change from 0 to 128 [ 226.693392][ T3418] bio_check_eod: 23773 callbacks suppressed [ 226.693413][ T3418] kworker/u8:6: attempt to access beyond end of device [ 226.693413][ T3418] loop5: rw=1, sector=145, nr_sectors = 89 limit=128 [ 226.733928][T16335] loop7: detected capacity change from 0 to 8192 [ 227.215066][T16364] vcan0: tx address claim with dlc 0 [ 227.256295][T16366] loop5: detected capacity change from 0 to 7 [ 227.273259][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 227.286386][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.295622][ C0] buffer_io_error: 23771 callbacks suppressed [ 227.295641][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.310670][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.319857][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.360467][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.369702][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.377825][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.387229][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.389314][T16366] loop5: unable to read partition table [ 227.402613][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.411801][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.423693][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.432960][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.441598][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.450155][T16366] loop_reread_partitions: partition scan of loop5 (Äë¥ÖÛ¬£bñ2úævÒ i…L@U)óËÿ{õÁ72A§¥¥MÈS¾b•qÇ ¤â<ŸÀÛÖ1ðä8) failed (rc=-5) [ 227.450943][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.481296][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.490615][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.499639][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.508963][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.522092][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 227.723350][T16391] loop5: detected capacity change from 0 to 128 [ 227.799924][T16395] loop4: detected capacity change from 0 to 2368 [ 227.820485][T16395] iso9660: Unknown parameter 'ŠXðÓ-¥¤ô' [ 227.841103][T16400] loop5: detected capacity change from 0 to 512 [ 227.857604][T16400] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.857694][T16400] ext4 filesystem being mounted at /387/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.956816][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.035908][T16409] loop6: detected capacity change from 0 to 1024 [ 228.069815][T16409] EXT4-fs (loop6): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 228.108138][T16409] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #3: block 2: comm syz.6.5476: lblock 2 mapped to illegal pblock 2 (length 1) [ 228.159935][T16409] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 228.160088][T16409] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #3: block 48: comm syz.6.5476: lblock 0 mapped to illegal pblock 48 (length 1) [ 228.183358][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 228.183384][ C0] EXT4-fs (loop6): initial error at time 2000000107: ext4_map_blocks:791: inode 3: block 2 [ 228.183434][ C0] EXT4-fs (loop6): last error at time 2000000107: ext4_map_blocks:791: inode 3: block 2 [ 228.290462][T16409] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 228.290603][T16409] EXT4-fs error (device loop6): ext4_acquire_dquot:7034: comm syz.6.5476: Failed to acquire dquot type 0 [ 228.370503][T16409] loop6: lost filesystem error report for type 5 error -117 [ 228.370688][T16409] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 228.407219][T16409] loop6: lost filesystem error report for type 5 error -117 [ 228.407776][T16409] EXT4-fs error (device loop6): ext4_evict_inode:267: inode #11: comm syz.6.5476: mark_inode_dirty error [ 228.427854][T16409] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 228.427966][T16409] EXT4-fs warning (device loop6): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 228.452722][T16409] EXT4-fs (loop6): 1 orphan inode deleted [ 228.459741][T16409] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.473016][ T49] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 228.487761][ T49] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 228.487869][ T49] EXT4-fs error (device loop6): ext4_release_dquot:7070: comm kworker/u8:3: Failed to release dquot type 0 [ 228.512364][T16409] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.522031][T16409] EXT4-fs error (device loop6): __ext4_get_inode_loc:4885: comm syz.6.5476: Invalid inode table block 1 in block_group 0 [ 228.538108][T16409] loop6: lost filesystem error report for type 5 error -117 [ 228.538218][T16409] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 228.555471][T16409] loop6: lost filesystem error report for type 5 error -117 [ 228.555583][T16409] EXT4-fs error (device loop6): ext4_quota_off:7318: inode #3: comm syz.6.5476: mark_inode_dirty error [ 228.582838][T16409] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 228.768697][T16454] netdevsim netdevsim6: Direct firmware load for ..€ failed with error -2 [ 229.044220][T16469] vhci_hcd vhci_hcd.2: invalid port number 96 [ 229.056782][T16469] vhci_hcd vhci_hcd.2: default hub control req: 2000 vfffc i0060 l7 [ 229.165536][T16481] loop6: detected capacity change from 0 to 512 [ 229.177786][T16483] netlink: 9286 bytes leftover after parsing attributes in process `syz.4.5511'. [ 229.187714][T16481] EXT4-fs: Ignoring removed nobh option [ 229.195053][T16481] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 229.221940][T16481] EXT4-fs (loop6): 1 truncate cleaned up [ 229.238317][T16481] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.275602][ T28] kauditd_printk_skb: 16 callbacks suppressed [ 229.275664][ T28] audit: type=1400 audit(2000000109.079:11664): avc: denied { add_name } for pid=16480 comm="syz.6.5510" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 229.333127][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.490411][T16495] netlink: 'syz.6.5516': attribute type 4 has an invalid length. [ 229.770398][ T28] audit: type=1326 audit(2000000109.579:11665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 229.837873][ T28] audit: type=1326 audit(2000000109.609:11666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 229.920041][ T28] audit: type=1326 audit(2000000109.609:11667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 229.997526][ T28] audit: type=1326 audit(2000000109.609:11668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.058596][T16525] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5531'. [ 230.071833][ T28] audit: type=1326 audit(2000000109.609:11669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.155074][ T28] audit: type=1326 audit(2000000109.609:11670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.226196][ T28] audit: type=1326 audit(2000000109.609:11671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.279312][ T28] audit: type=1326 audit(2000000109.619:11672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.354674][ T28] audit: type=1326 audit(2000000109.619:11673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16512 comm="syz.6.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b6126cdd9 code=0x7ffc0000 [ 230.742862][T16547] loop6: detected capacity change from 0 to 8192 [ 230.754580][T16552] hub 9-0:1.0: USB hub found [ 230.771305][T16552] hub 9-0:1.0: 8 ports detected [ 230.815368][T16547] syz.6.5539: attempt to access beyond end of device [ 230.815368][T16547] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 230.835283][ T6892] hid_parser_main: 89 callbacks suppressed [ 230.835375][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.868143][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.889423][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.908738][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.924643][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x2 [ 230.950810][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.968212][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 230.993370][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x7 [ 231.023030][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 231.042880][ T6892] hid-generic 0000:0000:000E.0006: unknown main item tag 0x0 [ 231.072892][ T6892] hid-generic 0000:0000:000E.0006: hidraw0: HID v0.00 Device [syz0] on syz0 [ 231.143616][T16562] fido_id[16562]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 231.369611][T16568] loop6: detected capacity change from 0 to 4096 [ 231.424754][T16568] EXT4-fs error (device loop6): ext4_ext_check_inode:521: inode #4: comm syz.6.5548: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 231.470334][T16568] loop6: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117 [ 231.470622][T16568] EXT4-fs error (device loop6): ext4_quota_enable:7228: comm syz.6.5548: Bad quota inode: 4, type: 1 [ 231.479968][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 231.479995][ C1] EXT4-fs (loop6): initial error at time 2000000111: ext4_ext_check_inode:521: inode 4 [ 231.480032][ C1] EXT4-fs (loop6): last error at time 2000000111: ext4_ext_check_inode:521: inode 4 [ 231.518784][T16568] loop6: lost filesystem error report for type 5 error -117 [ 231.519030][T16568] EXT4-fs warning (device loop6): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 231.541792][T16568] EXT4-fs (loop6): mount failed [ 232.690485][T16639] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5579'. [ 232.713522][T16639] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5579'. [ 233.054947][T16651] program syz.5.5582 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 233.256584][T16662] team0: No ports can be present during mode change [ 233.335348][T16665] batadv0: entered promiscuous mode [ 233.368664][T16665] gretap0: entered promiscuous mode [ 233.393762][T16665] batadv0: left promiscuous mode [ 233.412828][T16665] gretap0: left promiscuous mode [ 233.891708][T16706] loop7: detected capacity change from 0 to 128 [ 233.975064][T16708] loop5: detected capacity change from 0 to 1024 [ 233.998211][T16708] EXT4-fs: Ignoring removed mblk_io_submit option [ 234.026632][T16708] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 234.042582][T16708] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 234.058063][T16708] EXT4-fs error (device loop5): ext4_ext_check_inode:521: inode #11: comm syz.5.5609: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 234.077222][T16708] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 234.077368][T16708] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.5609: couldn't read orphan inode 11 (err -117) [ 234.086714][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 234.086739][ C0] EXT4-fs (loop5): initial error at time 2000000113: ext4_ext_check_inode:521: inode 11 [ 234.086780][ C0] EXT4-fs (loop5): last error at time 2000000113: ext4_ext_check_inode:521: inode 11 [ 234.125048][T16708] loop5: lost filesystem error report for type 5 error -117 [ 234.127130][T16708] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.155275][T16708] EXT4-fs (loop5): shut down requested (1) [ 234.219326][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.322284][T16719] netlink: 'syz.5.5614': attribute type 15 has an invalid length. [ 234.703020][T16736] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5621'. [ 234.730193][T16736] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5621'. [ 234.760512][T16738] pim6reg: entered allmulticast mode [ 234.788871][T16738] pim6reg: left allmulticast mode [ 234.966364][T16751] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 234.966364][T16751] program syz.5.5628 not setting count and/or reply_len properly [ 235.052116][T16756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5630'. [ 235.908904][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 235.908922][ T28] audit: type=1326 audit(2000000115.709:11680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 235.995079][ T28] audit: type=1326 audit(2000000115.709:11681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.080401][ T28] audit: type=1326 audit(2000000115.749:11682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.132756][ T28] audit: type=1326 audit(2000000115.749:11683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.189102][ T28] audit: type=1326 audit(2000000115.749:11684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.234343][T16803] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5649'. [ 236.247997][T16802] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5648'. [ 236.265713][ T28] audit: type=1326 audit(2000000115.749:11685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.304123][ T28] audit: type=1326 audit(2000000115.749:11686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.375050][ T28] audit: type=1326 audit(2000000115.749:11687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16780 comm="syz.4.5642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 236.459982][ T28] audit: type=1400 audit(2000000116.259:11688): avc: denied { accept } for pid=16811 comm="syz.4.5654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 236.548379][ T28] audit: type=1400 audit(2000000116.349:11689): avc: denied { map } for pid=16823 comm="syz.4.5659" path="socket:[48393]" dev="sockfs" ino=48393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1 [ 236.594350][T16828] loop5: detected capacity change from 0 to 256 [ 236.801559][T16846] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 236.801559][T16846] program syz.6.5669 not setting count and/or reply_len properly [ 236.967321][T16858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5675'. [ 237.103873][T16875] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 237.103873][T16875] program syz.4.5683 not setting count and/or reply_len properly [ 237.202085][T16872] loop5: detected capacity change from 0 to 1024 [ 237.222913][T16872] EXT4-fs: Ignoring removed bh option [ 237.238557][T16872] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 237.258004][T16872] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 237.280940][T16872] EXT4-fs error (device loop5): __ext4_fill_super:5596: inode #2: comm syz.5.5678: iget: special inode unallocated [ 237.314978][T16872] loop5: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 237.316239][T16872] EXT4-fs (loop5): Remounting filesystem read-only [ 237.326169][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 237.326217][ C0] EXT4-fs (loop5): initial error at time 2000000117: __ext4_fill_super:5596: inode 2 [ 237.326301][ C0] EXT4-fs (loop5): last error at time 2000000117: __ext4_fill_super:5596: inode 2 [ 237.364693][T16872] EXT4-fs (loop5): get root inode failed [ 237.388328][T16872] EXT4-fs (loop5): mount failed [ 237.574857][T16916] loop6: detected capacity change from 0 to 512 [ 237.592122][T16916] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 237.655512][T16916] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fffff00) [ 237.697842][T16924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5707'. [ 237.715712][T16926] loop5: detected capacity change from 0 to 512 [ 237.944092][T16943] dummy0: entered promiscuous mode [ 237.986427][T16935] loop7: detected capacity change from 0 to 1024 [ 237.997764][T16943] dummy0: left promiscuous mode [ 238.013346][T16935] EXT4-fs: Ignoring removed bh option [ 238.039689][T16935] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 238.051015][T16935] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 238.077706][T16935] EXT4-fs error (device loop7): __ext4_fill_super:5596: inode #2: comm syz.7.5711: iget: special inode unallocated [ 238.117904][T16935] loop7: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 238.118204][T16935] EXT4-fs (loop7): Remounting filesystem read-only [ 238.127494][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 238.127544][ C0] EXT4-fs (loop7): initial error at time 2000000117: __ext4_fill_super:5596: inode 2 [ 238.127643][ C0] EXT4-fs (loop7): last error at time 2000000117: __ext4_fill_super:5596: inode 2 [ 238.214377][T16935] EXT4-fs (loop7): get root inode failed [ 238.236620][T16935] EXT4-fs (loop7): mount failed [ 238.536510][T16980] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 238.536510][T16980] program syz.3.5731 not setting count and/or reply_len properly [ 238.597151][T16983] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5733'. [ 238.681942][T16987] pim6reg0: tun_chr_ioctl cmd 2147767521 [ 238.792178][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.823354][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.856985][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.896384][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.926379][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.949247][T17001] loop3: detected capacity change from 0 to 1024 [ 238.963634][T17001] EXT4-fs: Ignoring removed bh option [ 238.971922][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 238.991418][T17001] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59032!=35945) [ 239.011353][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 239.020617][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 239.029154][T17001] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 239.058927][T17001] EXT4-fs error (device loop3): __ext4_fill_super:5596: inode #2: comm syz.3.5741: iget: special inode unallocated [ 239.065339][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5740'. [ 239.082338][T17001] loop3: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 239.082772][T17001] EXT4-fs (loop3): Remounting filesystem read-only [ 239.091983][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 239.092028][ C0] EXT4-fs (loop3): initial error at time 2000000118: __ext4_fill_super:5596: inode 2 [ 239.092099][ C0] EXT4-fs (loop3): last error at time 2000000118: __ext4_fill_super:5596: inode 2 [ 239.125308][T17001] EXT4-fs (loop3): get root inode failed [ 239.131152][T17001] EXT4-fs (loop3): mount failed [ 239.227262][T17015] netlink: 'syz.7.5747': attribute type 4 has an invalid length. [ 239.285656][T17022] loop6: detected capacity change from 0 to 1024 [ 239.292967][T17022] EXT4-fs: Ignoring removed bh option [ 239.333176][T17022] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 239.386765][T17022] EXT4-fs (loop6): shut down requested (1) [ 239.530489][T17034] pimreg: entered allmulticast mode [ 239.555027][T17034] pimreg: left allmulticast mode [ 239.590088][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.639692][T17038] netlink: 'syz.4.5758': attribute type 13 has an invalid length. [ 239.665908][T17036] loop6: detected capacity change from 0 to 256 [ 239.684585][T17036] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 239.725421][T17036] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 240.224204][T17062] loop6: detected capacity change from 0 to 128 [ 240.245119][T17064] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 240.245119][T17064] program syz.7.5764 not setting count and/or reply_len properly [ 240.292235][T17062] syz.6.5766: attempt to access beyond end of device [ 240.292235][T17062] loop6: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 240.428951][T17074] support for cryptoloop has been removed. Use dm-crypt instead. [ 240.552204][T17078] loop5: detected capacity change from 0 to 8192 [ 240.588586][T17078] syz.5.5778: attempt to access beyond end of device [ 240.588586][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.629237][T17078] buffer_io_error: 3 callbacks suppressed [ 240.629257][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.667316][T17078] syz.5.5778: attempt to access beyond end of device [ 240.667316][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.706682][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.726144][T17078] syz.5.5778: attempt to access beyond end of device [ 240.726144][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.766059][T17096] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 240.766059][T17096] program syz.7.5786 not setting count and/or reply_len properly [ 240.786730][T17093] bond2: option miimon: invalid value (18446744073709551615) [ 240.799303][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.819281][T17093] bond2: option miimon: allowed values 0 - 2147483647 [ 240.832215][T17078] syz.5.5778: attempt to access beyond end of device [ 240.832215][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.864855][T17093] bond2 (unregistering): Released all slaves [ 240.878326][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.910958][T17078] syz.5.5778: attempt to access beyond end of device [ 240.910958][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.929675][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.938651][T17078] syz.5.5778: attempt to access beyond end of device [ 240.938651][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 240.952925][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 240.990240][T17078] syz.5.5778: attempt to access beyond end of device [ 240.990240][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 241.011449][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 241.020632][T17078] syz.5.5778: attempt to access beyond end of device [ 241.020632][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 241.054777][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 241.078562][T17078] syz.5.5778: attempt to access beyond end of device [ 241.078562][T17078] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 241.112485][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 241.135885][T17078] Buffer I/O error on dev loop5, logical block 57847, async page read [ 241.193827][T17120] loop3: detected capacity change from 0 to 1024 [ 241.215673][T17120] EXT4-fs: Ignoring removed nobh option [ 241.243570][T17120] EXT4-fs: Ignoring removed bh option [ 241.271517][T17120] EXT4-fs (loop3): stripe (17) is not aligned with cluster size (16), stripe is disabled [ 241.294023][T17125] loop7: detected capacity change from 0 to 256 [ 241.312436][T17120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.385279][T17131] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 241.385279][T17131] program syz.6.5802 not setting count and/or reply_len properly [ 241.487627][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.499486][T17135] loop6: detected capacity change from 0 to 128 [ 241.671033][T17149] loop5: detected capacity change from 0 to 256 [ 241.713441][T17149] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 241.729793][T17149] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 241.834152][T17160] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 241.834152][T17160] program syz.4.5816 not setting count and/or reply_len properly [ 242.022695][T17176] loop4: detected capacity change from 0 to 256 [ 242.054093][T17176] FAT-fs (loop4): Directory bread(block 64) failed [ 242.064656][T17176] FAT-fs (loop4): Directory bread(block 65) failed [ 242.071650][T17176] FAT-fs (loop4): Directory bread(block 66) failed [ 242.078389][T17176] FAT-fs (loop4): Directory bread(block 67) failed [ 242.085412][T17176] FAT-fs (loop4): Directory bread(block 68) failed [ 242.092240][T17176] FAT-fs (loop4): Directory bread(block 69) failed [ 242.098876][T17176] FAT-fs (loop4): Directory bread(block 70) failed [ 242.106475][T17176] FAT-fs (loop4): Directory bread(block 71) failed [ 242.113439][T17176] FAT-fs (loop4): Directory bread(block 72) failed [ 242.120222][T17176] FAT-fs (loop4): Directory bread(block 73) failed [ 242.619352][T17200] ±ÿÿÿÿa–ïD: renamed from lo [ 242.800649][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 242.800777][ T28] audit: type=1400 audit(2000000122.609:11692): avc: denied { remount } for pid=17205 comm="syz.5.5837" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 242.801578][T17206] option changes via remount are deprecated (pid=17205 comm=syz.5.5837) [ 242.862263][ T28] audit: type=1400 audit(2000000122.669:11693): avc: denied { unmount } for pid=10879 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 242.960840][T17210] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 243.638216][T17241] batadv_slave_0: entered promiscuous mode [ 243.650690][T17239] batadv_slave_0: left promiscuous mode [ 243.790867][T17233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 243.813338][T17233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 243.907291][T17251] EXT4-fs (loop6): 1 truncate cleaned up [ 243.937550][T17251] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.030602][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.061530][T17273] can0: slcan on ttyS3. [ 244.087006][T17275] __nla_validate_parse: 49 callbacks suppressed [ 244.087025][T17275] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5869'. [ 244.102447][T17275] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5869'. [ 244.130105][T17273] can0 (unregistered): slcan off ttyS3. [ 244.275078][T17287] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5875'. [ 244.509932][T17292] set_capacity_and_notify: 2 callbacks suppressed [ 244.509951][T17292] loop6: detected capacity change from 0 to 256 [ 244.664508][T17303] loop6: detected capacity change from 0 to 512 [ 244.673352][T17304] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5881'. [ 244.696071][T17303] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 244.723011][T17303] EXT4-fs error (device loop6): ext4_orphan_get:1423: comm syz.6.5880: bad orphan inode 131083 [ 244.734067][T17303] loop6: lost filesystem error report for type 5 error -117 [ 244.735990][T17303] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.770734][T17303] EXT4-fs (loop6): shut down requested (0) [ 244.796786][T17303] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=12 [ 244.837920][T17303] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=12 [ 244.856665][ T28] audit: type=1400 audit(2000000124.659:11694): avc: denied { rename } for pid=17301 comm="syz.6.5880" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 244.951406][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.053606][T17317] loop5: detected capacity change from 0 to 4096 [ 245.070160][T17317] EXT4-fs error (device loop5): ext4_ext_check_inode:521: inode #4: comm syz.5.5898: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 245.089265][T17317] loop5: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117 [ 245.089904][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 245.105817][ C1] EXT4-fs (loop5): initial error at time 2000000124: ext4_ext_check_inode:521: inode 4 [ 245.111413][T17317] EXT4-fs error (device loop5): ext4_quota_enable:7228: comm syz.5.5898: Bad quota inode: 4, type: 1 [ 245.115578][ C1] EXT4-fs (loop5): last error at time 2000000124: ext4_ext_check_inode:521: inode 4 [ 245.142180][T17317] loop5: lost filesystem error report for type 5 error -117 [ 245.152233][T17327] loop3: detected capacity change from 0 to 512 [ 245.161052][T17317] EXT4-fs warning (device loop5): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 245.181954][T17317] EXT4-fs (loop5): mount failed [ 245.212871][T17327] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 245.224408][T17329] loop4: detected capacity change from 0 to 128 [ 245.233383][T17334] netlink: 'syz.6.5892': attribute type 1 has an invalid length. [ 245.241915][T17327] EXT4-fs error (device loop3): mb_free_blocks:2049: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 245.258982][T17332] netlink: 'syz.7.5893': attribute type 83 has an invalid length. [ 245.259942][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 245.273361][ C0] EXT4-fs (loop3): initial error at time 2000000125: mb_free_blocks:2049: inode 11: block 64 [ 245.280870][T17327] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #11: comm syz.3.5889: corrupted inode contents [ 245.283792][ C0] EXT4-fs (loop3): last error at time 2000000125: mb_free_blocks:2049: inode 11: block 64 [ 245.312794][T17329] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 245.319344][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.325740][T17327] EXT4-fs error (device loop3): ext4_dirty_inode:6587: inode #11: comm syz.3.5889: mark_inode_dirty error [ 245.347534][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.349016][T17329] ext4 filesystem being mounted at /1146/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 245.390535][T17327] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5889: invalid indirect mapped block 1 (level 1) [ 245.404014][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.410106][T17327] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #11: comm syz.3.5889: corrupted inode contents [ 245.437741][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.438772][T17327] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 245.459112][T17327] loop3: lost filesystem error report for type 5 error -117 [ 245.461199][T17327] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #11: comm syz.3.5889: corrupted inode contents [ 245.492201][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.493291][T17327] EXT4-fs error (device loop3): ext4_truncate:4690: inode #11: comm syz.3.5889: mark_inode_dirty error [ 245.543978][ T3300] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 245.560012][T17327] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 245.566473][T17327] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 245.605315][T17327] loop3: lost filesystem error report for type 5 error -117 [ 245.605744][T17327] EXT4-fs (loop3): 1 truncate cleaned up [ 245.611812][T17345] loop4: detected capacity change from 0 to 128 [ 245.625298][T17327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 245.683720][T17345] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 245.700050][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.834399][T17353] loop3: detected capacity change from 0 to 4096 [ 245.861679][T17360] gre0: left promiscuous mode [ 245.871067][T17353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.900778][T17360] gre0: left allmulticast mode [ 245.929725][T17360] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 245.986932][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.039269][ T28] audit: type=1400 audit(2000000125.839:11695): avc: denied { append } for pid=17363 comm="syz.5.5908" path="socket:[49489]" dev="sockfs" ino=49489 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 246.089394][T17366] netlink: 'syz.3.5907': attribute type 5 has an invalid length. [ 246.223336][T17380] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5915'. [ 246.583804][T17424] loop7: detected capacity change from 0 to 512 [ 246.603698][T17424] EXT4-fs (loop7): 1 truncate cleaned up [ 246.618825][T17424] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 246.666490][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.787760][T17440] loop5: detected capacity change from 0 to 512 [ 246.798605][T17440] ------------[ cut here ]------------ [ 246.804188][T17440] EA inode 11 i_nlink=2 [ 246.804216][T17440] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x313/0x350, CPU#0: syz.5.5940/17440 [ 246.819337][T17440] Modules linked in: [ 246.823329][T17440] CPU: 0 UID: 0 PID: 17440 Comm: syz.5.5940 Not tainted syzkaller #0 PREEMPT(full) [ 246.832862][T17440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 246.843028][T17440] RIP: 0010:ext4_xattr_inode_update_ref+0x332/0x350 [ 246.849721][T17440] Code: 54 5f 98 ff 4c 8d 2d bd 69 5c 05 49 8d 7e 40 e8 a4 1d b6 ff 49 8b 6e 40 4c 89 e7 e8 d8 18 b6 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 02 ff ff ff e8 df 6d d7 03 66 66 66 66 66 66 2e [ 246.869642][T17440] RSP: 0018:ffffc90000f8b778 EFLAGS: 00010246 [ 246.875804][T17440] RAX: ffff8881042770f8 RBX: ffff88810728e278 RCX: ffffffff81c0c968 [ 246.883887][T17440] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff871d3310 [ 246.892021][T17440] RBP: 000000000000000b R08: 000188810728e22b R09: 0000000000000000 [ 246.900174][T17440] R10: ffffffff893b0558 R11: 0000000000000004 R12: ffff88810728e228 [ 246.908214][T17440] R13: ffffffff871d3310 R14: ffff88810728e1e0 R15: 0000000000000001 [ 246.916339][T17440] FS: 00007fb2429a76c0(0000) GS:ffff8882ae8fe000(0000) knlGS:0000000000000000 [ 246.925379][T17440] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 246.932167][T17440] CR2: 000020000011d030 CR3: 000000014b7bc000 CR4: 00000000003506f0 [ 246.940638][T17440] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 246.948751][T17440] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 246.956833][T17440] Call Trace: [ 246.960201][T17440] [ 246.963173][T17440] ext4_xattr_inode_dec_ref_all+0x57c/0x8b0 [ 246.969193][T17440] ? errseq_check+0x2c/0x50 [ 246.973819][T17440] ext4_xattr_delete_inode+0x6c1/0x7a0 [ 246.979343][T17440] ? ext4_truncate+0x89f/0xa10 [ 246.984254][T17440] ext4_evict_inode+0xb16/0xe30 [ 246.989248][T17440] ? __pfx_ext4_evict_inode+0x10/0x10 [ 246.994756][T17440] evict+0x2af/0x510 [ 246.998753][T17440] ? __dquot_initialize+0x146/0x7c0 [ 247.004158][T17440] iput+0x41a/0x580 [ 247.008006][T17440] ext4_process_orphan+0x1a9/0x1c0 [ 247.013239][T17440] ext4_orphan_cleanup+0x69c/0x9f0 [ 247.018534][T17440] ext4_fill_super+0x3408/0x37c0 [ 247.023590][T17440] ? set_blocksize+0x14c/0x270 [ 247.028406][T17440] ? setup_bdev_super+0x30e/0x370 [ 247.033799][T17440] ? __pfx_ext4_fill_super+0x10/0x10 [ 247.039165][T17440] get_tree_bdev_flags+0x291/0x300 [ 247.044480][T17440] ? __pfx_ext4_fill_super+0x10/0x10 [ 247.049917][T17440] get_tree_bdev+0x1f/0x30 [ 247.054463][T17440] ext4_get_tree+0x1c/0x30 [ 247.058941][T17440] vfs_get_tree+0x57/0x1d0 [ 247.063544][T17440] do_new_mount+0x288/0x8d0 [ 247.068209][T17440] path_mount+0x4d0/0xbc0 [ 247.072696][T17440] __se_sys_mount+0x28c/0x2e0 [ 247.077569][T17440] __x64_sys_mount+0x67/0x80 [ 247.082355][T17440] x64_sys_call+0x2d61/0x3020 [ 247.087098][T17440] do_syscall_64+0x12c/0x3b0 [ 247.091941][T17440] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.097970][T17440] RIP: 0033:0x7fb243f4e04a [ 247.102493][T17440] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 247.122177][T17440] RSP: 002b:00007fb2429a6e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 247.130909][T17440] RAX: ffffffffffffffda RBX: 00007fb2429a6ee0 RCX: 00007fb243f4e04a [ 247.139041][T17440] RDX: 00002000000009c0 RSI: 0000200000000540 RDI: 00007fb2429a6ea0 [ 247.147259][T17440] RBP: 00002000000009c0 R08: 00007fb2429a6ee0 R09: 0000000000800718 [ 247.155373][T17440] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000540 [ 247.163523][T17440] R13: 00007fb2429a6ea0 R14: 000000000000048d R15: 0000200000000200 [ 247.171694][T17440] [ 247.174809][T17440] ---[ end trace 0000000000000000 ]--- [ 247.180945][T17440] EXT4-fs (loop5): 1 orphan inode deleted [ 247.187238][T17440] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 247.225996][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.277957][T17456] tipc: Started in network mode [ 247.285569][T17456] tipc: Node identity ac14140f, cluster identity 4711 [ 247.300321][T17456] tipc: Enabled bearer , priority 0 [ 247.630065][ T28] audit: type=1400 audit(2000000127.429:11696): avc: denied { mount } for pid=17476 comm="syz.3.5954" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 247.716850][T17487] netlink: 11562 bytes leftover after parsing attributes in process `syz.3.5958'. [ 248.012108][T17520] loop6: detected capacity change from 0 to 512 [ 248.024891][T17520] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.5975: invalid indirect mapped block 256 (level 2) [ 248.040472][T17520] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 248.041650][T17520] EXT4-fs (loop6): 2 truncates cleaned up [ 248.051076][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 248.051094][ C0] EXT4-fs (loop6): initial error at time 2000000127: ext4_free_branches:1023: inode 11 [ 248.051130][ C0] EXT4-fs (loop6): last error at time 2000000127: ext4_free_branches:1023: inode 11 [ 248.088525][T17520] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.103155][T17520] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1332: inode #12: block 7: comm syz.6.5975: path /407/file1/file0: bad entry in directory: directory entry overrun - offset=196864, inode=4278190093, rec_len=196860, size=60 fake=0 [ 248.138042][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.224085][T17530] syzkaller0: tun_chr_ioctl cmd 2148553947 [ 248.269582][T17535] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5981'. [ 248.329443][T17539] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 248.346449][T17539] EXT4-fs (loop7): 1 truncate cleaned up [ 248.353506][T17539] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.374249][ T28] audit: type=1400 audit(2000000128.179:11697): avc: denied { setattr } for pid=17538 comm="syz.7.5983" name="file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 248.420007][ T9] tipc: Node number set to 2886997007 [ 248.529590][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.549820][T17559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5992'. [ 248.593410][T17561] pimreg: entered allmulticast mode [ 248.599972][T17563] program syz.7.5993 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 248.621860][T17561] pimreg: left allmulticast mode [ 248.714213][T17572] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.728070][T17574] lo: left promiscuous mode [ 248.900319][T17574] tunl0: left promiscuous mode [ 248.906148][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.918854][T17574] gre0: left promiscuous mode [ 248.937864][T17574] gretap0: left promiscuous mode [ 248.950184][T17574] erspan0: left promiscuous mode [ 248.962914][T17574] ip_vti0: left promiscuous mode [ 248.979137][T17574] ip6_vti0: left promiscuous mode [ 248.988226][ T7410] hid_parser_main: 4 callbacks suppressed [ 248.988245][ T7410] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 249.000538][T17574] sit0: left promiscuous mode [ 249.010533][ T7410] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 249.021870][T17574] ip6tnl0: left promiscuous mode [ 249.062135][T17574] ip6gre0: left promiscuous mode [ 249.072635][T17574] syz_tun: left promiscuous mode [ 249.079190][T17574] ip6gretap0: left promiscuous mode [ 249.081834][T17587] fido_id[17587]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 249.088567][T17574] vcan0: left promiscuous mode [ 249.105529][T17574] ªªªªªª: left promiscuous mode [ 249.114165][T17574] nlmon0: left promiscuous mode [ 249.119687][T17574] batadv0: left promiscuous mode [ 249.125850][T17574] vxcan0: left promiscuous mode [ 249.131244][T17574] vxcan1: left promiscuous mode [ 249.136694][T17574] veth0: left promiscuous mode [ 249.149842][T17574] veth1: left promiscuous mode [ 249.155900][T17574] wg0: left promiscuous mode [ 249.161093][T17574] wg1: left promiscuous mode [ 249.166951][T17574] veth0_to_bridge: left promiscuous mode [ 249.174135][T17574] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 249.191617][T17582] netem: unknown loss type 0 [ 249.199119][T17582] netem: change failed [ 249.208506][T17597] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2560 sclass=netlink_xfrm_socket pid=17597 comm=syz.7.6009 [ 249.226119][T17589] batman_adv: batadv0: Adding interface: macvtap0 [ 249.234387][T17589] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 249.274075][T17589] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active [ 249.304354][ T28] audit: type=1326 audit(2000000129.079:11698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.347863][ T28] audit: type=1326 audit(2000000129.079:11699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.386883][ T28] audit: type=1326 audit(2000000129.079:11700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.414576][ T28] audit: type=1326 audit(2000000129.079:11701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.469400][T17604] bond1: option miimon: invalid value (18446744073709551615) [ 249.491554][ T28] audit: type=1326 audit(2000000129.079:11702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.494280][T17604] bond1: option miimon: allowed values 0 - 2147483647 [ 249.517067][ T28] audit: type=1326 audit(2000000129.079:11703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.547910][ T28] audit: type=1326 audit(2000000129.089:11704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.572724][ T28] audit: type=1326 audit(2000000129.089:11705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.597629][ T28] audit: type=1326 audit(2000000129.089:11706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17598 comm="syz.5.6010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb243f4cdd9 code=0x7ffc0000 [ 249.639323][T17604] bond1 (unregistering): Released all slaves [ 249.941043][T17621] set_capacity_and_notify: 2 callbacks suppressed [ 249.941060][T17621] loop6: detected capacity change from 0 to 512 [ 249.971447][T17621] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 249.987809][T17621] EXT4-fs (loop6): 1 truncate cleaned up [ 249.997761][T17621] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.056998][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.178400][T17645] bond1: option miimon: invalid value (18446744073709551615) [ 250.187261][T17645] bond1: option miimon: allowed values 0 - 2147483647 [ 250.199507][T17645] bond1 (unregistering): Released all slaves [ 250.492066][T17679] program syz.7.6046 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 250.956487][T17702] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6055'. [ 250.989587][T17702] netlink: 60 bytes leftover after parsing attributes in process `syz.6.6055'. [ 251.021408][T17702] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6055'. [ 251.085194][T17706] loop3: detected capacity change from 0 to 4096 [ 251.095626][T17706] EXT4-fs: Ignoring removed oldalloc option [ 251.116894][T17706] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.137313][T17706] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 251.155293][T17706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.196004][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.258256][T17724] loop3: detected capacity change from 0 to 512 [ 251.276444][T17724] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 251.293540][T17724] EXT4-fs (loop3): 1 truncate cleaned up [ 251.300719][T17724] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 251.319233][T17724] EXT4-fs (loop3): shut down requested (0) [ 251.327434][T17724] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 251.337769][T17724] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 251.358208][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.376456][T17716] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 251.387424][T17716] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.471177][ T6891] kernel read not supported for file /vcs (pid: 6891 comm: kworker/1:9) [ 251.597595][T17759] loop3: detected capacity change from 0 to 512 [ 251.605988][T17759] EXT4-fs: Ignoring removed orlov option [ 251.623654][T17759] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.637524][T17759] ext4 filesystem being mounted at /1231/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.656738][T17766] loop4: detected capacity change from 0 to 128 [ 251.671109][T17766] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 251.683897][T17766] ext4 filesystem being mounted at /1176/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.708018][ T3300] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 251.755668][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.820553][T17776] loop3: detected capacity change from 0 to 256 [ 251.912320][T17781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6089'. [ 252.104131][T17801] netlink: 112 bytes leftover after parsing attributes in process `syz.3.6099'. [ 252.264855][T17817] netlink: 'syz.3.6107': attribute type 1 has an invalid length. [ 252.299019][T17819] loop7: detected capacity change from 0 to 1024 [ 252.326813][T17819] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 252.404871][T17819] EXT4-fs warning (device loop7): empty_inline_dir:1767: bad inline directory (dir #12) - no `..' [ 252.464200][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.542870][T17835] loop7: detected capacity change from 0 to 256 [ 252.565509][T17835] vfat: Bad value for 'utf8' [ 252.627579][T17841] loop3: detected capacity change from 0 to 128 [ 252.687674][T17841] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 252.713684][T17841] ext4 filesystem being mounted at /1245/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 252.742506][ T3293] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 252.769477][T17849] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 253.701809][T17923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6156'. [ 253.748714][T17927] netlink: 204 bytes leftover after parsing attributes in process `syz.6.6158'. [ 253.764345][T17927] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6158'. [ 253.774606][T17929] loop3: detected capacity change from 0 to 512 [ 253.805860][T17929] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.827208][T17929] ext4 filesystem being mounted at /1258/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.943999][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.039201][ T28] kauditd_printk_skb: 420 callbacks suppressed [ 254.039219][ T28] audit: type=1400 audit(2000000133.840:12127): avc: denied { read } for pid=17949 comm="syz.7.6169" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 254.144457][T17957] bond2: option miimon: invalid value (18446744073709551615) [ 254.152418][T17957] bond2: option miimon: allowed values 0 - 2147483647 [ 254.162604][T17957] bond2 (unregistering): Released all slaves [ 254.329414][ T28] audit: type=1326 audit(2000000134.130:12128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 254.380856][ T28] audit: type=1326 audit(2000000134.130:12129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 254.405118][ T28] audit: type=1326 audit(2000000134.130:12130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 254.429925][ T28] audit: type=1326 audit(2000000134.130:12131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 254.436458][T17974] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 254.454321][ T28] audit: type=1326 audit(2000000134.130:12132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.3.6176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76e029cdd9 code=0x7ffc0000 [ 254.519484][T17974] [EXT4 FS bs=1024, gc=1, bpg=2304, ipg=32, mo=a843c018, mo2=0100] [ 254.531323][T17974] System zones: 2-12, 7-7 [ 254.536411][T17974] EXT4-fs (loop4): orphan cleanup on readonly fs [ 254.543877][T17974] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.6178: Block bitmap for bg 0 marked uninitialized [ 254.575231][T17974] loop4: lost filesystem error report for type 5 error -117 [ 254.579888][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 254.593743][ C1] EXT4-fs (loop4): initial error at time 2000000134: ext4_read_block_bitmap_nowait:517 [ 254.603574][ C1] EXT4-fs (loop4): last error at time 2000000134: ext4_read_block_bitmap_nowait:517 [ 254.620064][T17974] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 254.638201][T17974] loop4: lost filesystem error report for type 5 error -117 [ 254.640292][T17974] EXT4-fs (loop4): 1 orphan inode deleted [ 254.664965][T17974] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 254.697645][T17974] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 254.708762][T17974] [EXT4 FS bs=1024, gc=1, bpg=2304, ipg=32, mo=a843c018, mo2=0100] [ 254.724757][T17974] EXT4-fs error (device loop4): __ext4_remount:6837: comm syz.4.6178: Abort forced by user [ 254.742634][T17974] EXT4-fs (loop4): Remounting filesystem read-only [ 254.757030][T17974] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 254.787668][T17989] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 254.820026][T17989] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 254.847504][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.925250][T17997] EXT4-fs: Ignoring removed bh option [ 254.960224][T17997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 254.992555][ T30] bond0: (slave bond_slave_0): interface is now down [ 255.022859][ T30] bond0: (slave bond_slave_1): interface is now down [ 255.032766][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.042914][ T30] bond0: now running without any active interface! [ 255.246840][T18018] set_capacity_and_notify: 3 callbacks suppressed [ 255.246862][T18018] loop4: detected capacity change from 0 to 512 [ 255.296441][T18020] loop5: detected capacity change from 0 to 1764 [ 255.313085][T18024] ipvlan2: entered allmulticast mode [ 255.327459][T18024] bond0: entered allmulticast mode [ 255.334922][T18024] bond_slave_0: entered allmulticast mode [ 255.340907][T18024] bond_slave_1: entered allmulticast mode [ 255.347323][T18024] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 255.382490][ T28] audit: type=1326 audit(2000000135.190:12133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18025 comm="syz.4.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 255.437080][ T28] audit: type=1326 audit(2000000135.210:12134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18025 comm="syz.4.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 255.498943][ T28] audit: type=1326 audit(2000000135.210:12135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18025 comm="syz.4.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 255.533119][T18033] random: crng reseeded on system resumption [ 255.551379][ T28] audit: type=1326 audit(2000000135.220:12136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18025 comm="syz.4.6200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f32f540cdd9 code=0x7ffc0000 [ 255.600499][T18038] loop4: detected capacity change from 0 to 2048 [ 255.674935][T18047] hsr0: entered promiscuous mode [ 255.692141][T18038] loop4: p2 p3 p7 [ 255.797168][ T9] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 255.828674][ T9] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz1] on syz0 [ 255.844428][T18056] loop3: detected capacity change from 0 to 1764 [ 255.883052][T10873] udevd[10873]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 255.883364][T10924] udevd[10924]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 255.918390][T18063] udevd[18063]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 256.061663][T18072] random: crng reseeded on system resumption [ 256.197649][T18080] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6223'. [ 256.220291][T18080] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6223'. [ 256.285076][T18084] bpf: Bad value for 'uid' [ 256.311301][T18086] batman_adv: batadv0: Adding interface: macsec3 [ 256.327936][T18086] batman_adv: batadv0: The MTU of interface macsec3 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 256.360152][T18086] batman_adv: batadv0: Interface activated: macsec3 [ 256.444210][T18090] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=18090 comm=syz.5.6227 [ 256.685392][T18106] loop6: detected capacity change from 0 to 128 [ 256.950765][T18122] loop3: detected capacity change from 0 to 512 [ 256.968498][T18123] loop6: detected capacity change from 0 to 2048 [ 256.977120][T18122] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 256.988343][T18122] EXT4-fs (loop3): 1 truncate cleaned up [ 256.994699][T18122] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 257.033086][T18123] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 257.066362][T18123] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 257.119436][T18123] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 257.132805][T18123] EXT4-fs (loop6): This should not happen!! Data will be lost [ 257.132805][T18123] [ 257.143121][T18123] EXT4-fs (loop6): Total free blocks count 0 [ 257.149425][T18123] EXT4-fs (loop6): Free/Dirty block details [ 257.155548][T18123] EXT4-fs (loop6): free_blocks=2415919504 [ 257.212499][T18123] EXT4-fs (loop6): dirty_blocks=48 [ 257.234562][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.249953][T18123] EXT4-fs (loop6): Block reservation details [ 257.266467][T18123] EXT4-fs (loop6): i_reserved_data_blocks=3 [ 257.288044][T18132] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 257.375165][T12613] EXT4-fs warning (device loop6): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 257.880920][T18194] loop5: detected capacity change from 0 to 1024 [ 257.928838][T18194] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 257.946318][T18194] ext4 filesystem being mounted at /543/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 258.008045][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 258.082872][T18212] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6280'. [ 258.381983][T18222] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 258.407230][T18222] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 258.953836][T18236] loop4: detected capacity change from 0 to 512 [ 258.968645][T18236] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 258.989027][T18236] EXT4-fs (loop4): 1 truncate cleaned up [ 259.008525][T18236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.300616][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.356198][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 259.356225][ T28] audit: type=1400 audit(2000000139.160:12161): avc: denied { watch watch_reads } for pid=18256 comm="syz.4.6300" path="/1221/file1" dev="tmpfs" ino=6311 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 259.418636][T18257] Process accounting resumed [ 259.456952][ T28] audit: type=1400 audit(2000000139.260:12162): avc: denied { mount } for pid=18264 comm="syz.4.6305" name="/" dev="autofs" ino=51988 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 259.541671][T18271] loop5: detected capacity change from 0 to 512 [ 259.585519][T18271] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.602776][T18271] ext4 filesystem being mounted at /555/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 259.616474][T18271] EXT4-fs (loop5): shut down requested (1) [ 259.623890][T18271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop5 ino=15 [ 259.633334][T18271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop5 ino=15 [ 259.642501][ T28] audit: type=1400 audit(2000000139.460:12163): avc: denied { read } for pid=18270 comm="syz.5.6307" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 259.665530][T18271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop5 ino=15 [ 259.686015][T10879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.710061][T18277] netlink: 'syz.6.6309': attribute type 21 has an invalid length. [ 259.727082][T18277] netlink: 132 bytes leftover after parsing attributes in process `syz.6.6309'. [ 259.727081][T18279] sg_write: process 1200 (syz.5.6310) changed security contexts after opening file descriptor, this is not allowed. [ 260.124838][T18322] sctp: [Deprecated]: syz.5.6330 (pid 18322) Use of struct sctp_assoc_value in delayed_ack socket option. [ 260.124838][T18322] Use struct sctp_sack_info instead [ 260.255230][T18332] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6333'. [ 260.374783][T18345] set_capacity_and_notify: 1 callbacks suppressed [ 260.374803][T18345] loop4: detected capacity change from 0 to 128 [ 260.402120][T18345] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000f0b) [ 260.412981][T18345] FAT-fs (loop4): Filesystem has been set read-only [ 260.449983][T18345] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000f0b) [ 260.467616][T18345] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000f0b) [ 260.774984][T18372] bond1: ARP target 9.0.0.0 is already present [ 260.787748][T18372] bond1: option arp_ip_target: invalid value (9) [ 260.798461][T18372] bond1 (unregistering): Released all slaves [ 261.000183][T18389] loop6: detected capacity change from 0 to 512 [ 261.017007][T18391] netlink: 88 bytes leftover after parsing attributes in process `syz.4.6361'. [ 261.046100][T18393] loop3: detected capacity change from 0 to 512 [ 261.058763][T18389] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.076992][T18389] ext4 filesystem being mounted at /499/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 261.109132][T18393] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 261.122410][T18393] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 261.141490][T18393] System zones: 0-1, 15-15, 18-18, 34-34 [ 261.158332][T18393] EXT4-fs (loop3): orphan cleanup on readonly fs [ 261.179592][T18393] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 261.192203][T18393] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 261.209702][T18393] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 261.242969][T18393] EXT4-fs (loop3): 1 truncate cleaned up [ 261.249201][T18393] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 261.313417][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.359168][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.445716][ T28] audit: type=1400 audit(2000000141.250:12164): avc: denied { mount } for pid=18408 comm="syz.3.6366" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 261.630509][T18420] loop3: detected capacity change from 0 to 1024 [ 261.637719][T18420] EXT4-fs: inline encryption not supported [ 261.663790][T18424] usb usb7: usbfs: process 18424 (syz.5.6375) did not claim interface 0 before use [ 261.699378][T18420] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 261.726326][T18430] loop7: detected capacity change from 0 to 512 [ 261.748690][T18430] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 261.768873][T18420] ext4 filesystem being mounted at /1301/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.812895][T18420] EXT4-fs error (device loop3): ext4_map_blocks:833: inode #15: comm syz.3.6373: lblock 0 mapped to illegal pblock 0 (length 6) [ 261.855549][T13369] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.906717][T10925] ================================================================== [ 261.914872][T10925] BUG: KCSAN: data-race in set_nlink / set_nlink [ 261.921246][T10925] [ 261.923611][T10925] read to 0xffff8881070e9208 of 4 bytes by task 2980 on cpu 0: [ 261.931281][T10925] set_nlink+0x29/0xb0 [ 261.935392][T10925] kernfs_iop_permission+0x1e5/0x220 [ 261.940829][T10925] inode_permission+0x31f/0x3b0 [ 261.945756][T10925] link_path_walk+0x779/0xe30 [ 261.950479][T10925] path_lookupat+0x8c/0x500 [ 261.955196][T10925] filename_lookup+0x190/0x390 [ 261.960355][T10925] vfs_statx+0x96/0x170 [ 261.964828][T10925] vfs_fstatat+0x118/0x170 [ 261.969290][T10925] __se_sys_newfstatat+0x55/0x3e0 [ 261.974406][T10925] __x64_sys_newfstatat+0x55/0x70 [ 261.979479][T10925] x64_sys_call+0x2c64/0x3020 [ 261.984319][T10925] do_syscall_64+0x12c/0x3b0 [ 261.988958][T10925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.994989][T10925] [ 261.997347][T10925] write to 0xffff8881070e9208 of 4 bytes by task 10925 on cpu 1: [ 262.005184][T10925] set_nlink+0x99/0xb0 [ 262.009380][T10925] kernfs_iop_permission+0x1e5/0x220 [ 262.014722][T10925] inode_permission+0x31f/0x3b0 [ 262.019615][T10925] link_path_walk+0x779/0xe30 [ 262.024347][T10925] path_openat+0x1c6/0x2050 [ 262.029152][T10925] do_file_open+0x16c/0x290 [ 262.033693][T10925] do_sys_openat2+0x94/0x130 [ 262.038408][T10925] __x64_sys_openat+0xf2/0x120 [ 262.043297][T10925] x64_sys_call+0x1e39/0x3020 [ 262.048097][T10925] do_syscall_64+0x12c/0x3b0 [ 262.052808][T10925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.058853][T10925] [ 262.061281][T10925] value changed: 0x00000009 -> 0x00000008 [ 262.067109][T10925] [ 262.069471][T10925] Reported by Kernel Concurrency Sanitizer on: [ 262.075743][T10925] CPU: 1 UID: 0 PID: 10925 Comm: udevd Tainted: G W syzkaller #0 PREEMPT(full) [ 262.086408][T10925] Tainted: [W]=WARN [ 262.090233][T10925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 262.100456][T10925] ================================================================== [ 262.125132][ T3293] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 262.144023][T18441] loop6: detected capacity change from 0 to 512 [ 262.166571][T18441] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 262.204848][ T6891] kernel read not supported for file /rfkill (pid: 6891 comm: kworker/1:9) [ 262.226133][T18441] [EXT4 FS bs=1024, gc=1, bpg=2304, ipg=32, mo=a843c018, mo2=0100] [ 262.251289][T18441] System zones: 2-12, 7-7 [ 262.261832][T18441] EXT4-fs (loop6): orphan cleanup on readonly fs [ 262.275024][T18441] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.6382: Block bitmap for bg 0 marked uninitialized [ 262.333093][T18441] loop6: lost filesystem error report for type 5 error -117 [ 262.333473][T18441] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 262.340982][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 262.341015][ C0] EXT4-fs (loop6): initial error at time 2000000142: ext4_read_block_bitmap_nowait:517 [ 262.341064][ C0] EXT4-fs (loop6): last error at time 2000000142: ext4_read_block_bitmap_nowait:517 [ 262.396186][T18441] loop6: lost filesystem error report for type 5 error -117 [ 262.396763][T18441] EXT4-fs (loop6): 1 orphan inode deleted [ 262.436605][T18441] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 262.463206][T18441] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 262.488069][T18441] [EXT4 FS bs=1024, gc=1, bpg=2304, ipg=32, mo=a843c018, mo2=0100] [ 262.508709][T18441] EXT4-fs error (device loop6): __ext4_remount:6837: comm syz.6.6382: Abort forced by user [ 262.527381][T18441] EXT4-fs (loop6): Remounting filesystem read-only [ 262.548335][T18441] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 262.572901][T12613] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.