last executing test programs:

2m0.943455562s ago: executing program 0 (id=690):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)={0x38, r1, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffc}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

2m0.900540532s ago: executing program 0 (id=693):
r0 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000044000)=<r1=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_gettime(r1, 0x0)
rt_sigsuspend(&(0x7f0000000000), 0x8)

2m0.009198545s ago: executing program 0 (id=706):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x13c)

1m59.076158327s ago: executing program 0 (id=755):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000700)={[{@nouid32}, {@grpjquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@bsdgroups}]}, 0x3, 0x56a, &(0x7f0000001900)="$eJzs3c1rHOUfAPDvbHb7/vs1hVJURAI9WKndNIkvFTzUo2ixoPe6JNNQsumW7KY0sWB7sBcvUgQRC+Jd7x6L/4B/RUELRUrQg5fIbGbTbXc3b900affzgWmfZ2aSZ77zzPfJMzu7bAADayT7pxDxckR8k0QcbttWjHzjyMp+Sw+vT2ZLEsvLn/6VRJKva+2f5P8fzCsvRcRvX0WcLHS2W19YnKlUq+lcXh9tzF4ZrS8snro0W5lOp9PL4xMTZ96eGH/v3Xf6Fusb5//5/pO7H575+vjSd7/cP3I7ibNxKN/WHsdTuNFeGYmR/JyU4uwTO471obHdJNnpA2BLhvI8L0U2BhwutbIeePF9GRHLwIBKNpn/e40X8IJozQNa9/Z9ug9+bjz4YOUGqDP+4sprI7GveW90YCl57M4ou98d7kP7WRu//nnndrZE/16HAFjXjZsRcbpY7Bz/knz827rTG9jnyTaMf/Ds3M3mP292m/8UVuc/0WX+c7BL7m7FyGoLKzrzv3C/D830lM3/3u86/119aDU8lNf+15zzlZKLl6ppNrb9PyJORGlvVl/rec6ZpXvLvba1z/+yJWu/NRfMj+N+ce/jPzNVaVSeJuZ2D25GvNJ1/pus9n/Spf+z83F+g20cS++81mvb+vFvr+WfIl7v2v+Pnmglaz+fHG1eD6Otq6LT37eO/d6r/Z2OP+v/A2vHP5y0P6+tb76NH/f9m/battXrf0/yWbO8J193rdJozI1F7Ek+7lw//uhnW/XW/ln8J46vPf51u/73R8TnG4z/1tGfX916/Nsri39qU/2/+cK9j774oVf7G+v/t5qlE/majYx/Gz3Apzl3AAAAAAAAsNsUIuJQJIXyarlQKJdX3t9xNA4UqrV64+TF2vzlqWh+VnY4SoXWk+7Dbe+HGMvfD9uqjz9Rn4iIIxHx7dD+Zr08WatO7XTwAAAAAAAAAAAAAAAAAAAAsEsc7PH5/8wfQzt9dMC285XfMLjWzf9+fNMTsCv5+w+DS/7D4JL/MLjkPwwu+Q+DS/7D4JL/MLjkPwAAAAAAAAAAAAAAAAAAAAAAAAAAAPTV+XPnsmV56eH1yaw+dXVhfqZ29dRUWp8pz85Plidrc1fK07XadDUtT9Zm1/t91Vrtyth4zF8bbaT1xmh9YfHCbG3+cuPCpdnKdHohLT2TqAAAAAAAAAAAAAAAAAAAAOD5Ul9YnKlUq+lcnwqFiOjrL1ToKGT9dqPYOs9J7OzxFHfLaVHoa2GnRyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeOS/AAAA//+PnzD5")
open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21)
r0 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x1284, 0x1, 0x2, 0x169}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r0, 0x100847c0, 0x0, 0x1, 0x0, 0x0)

1m58.986581268s ago: executing program 0 (id=759):
io_setup(0x2278, &(0x7f0000000180)=<r0=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
io_submit(r0, 0x1, &(0x7f0000000140)=[&(0x7f00000001c0)={0x0, 0x4, 0x0, 0x0, 0x0, r1, &(0x7f0000000200)=' ', 0x1, 0x0, 0x0, 0x2}])
io_destroy(r0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x58a, &(0x7f0000000b40)="$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")
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4042, &(0x7f00000000c0), 0x7, 0x4c6, &(0x7f0000000b00)="$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")

1m58.893486399s ago: executing program 0 (id=761):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='mm_page_free\x00', r1}, 0x18)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)

1m58.893269459s ago: executing program 32 (id=761):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='mm_page_free\x00', r1}, 0x18)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)

1m51.700984855s ago: executing program 1 (id=1114):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000600)=[{{&(0x7f0000000140)=@nfc_llcp, 0x0, &(0x7f0000000780)=[{&(0x7f0000000340)=""/180}, {&(0x7f0000000280)=""/122}, {&(0x7f0000000400)=""/165}, {&(0x7f00000004c0)=""/142}, {&(0x7f0000000640)=""/70}, {&(0x7f00000006c0)=""/179}], 0x0, &(0x7f0000000580)=""/70, 0x11}}], 0x40000000000029d, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x1e79, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1m51.606409926s ago: executing program 1 (id=1123):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x8000000, 0x0, 0x111, 0x2}}, 0x20)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

1m51.588591136s ago: executing program 1 (id=1124):
socket(0x2b, 0x80801, 0x1)
socket(0x2b, 0x1, 0x1)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)="6880a642beaf34317f0dd3122a90ad0d2b", 0x11}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb97}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
recvmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x60)

1m51.569190327s ago: executing program 1 (id=1126):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1m51.509409368s ago: executing program 1 (id=1128):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0xa5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x100000, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x4, 0x0, 0x0)

1m51.394022869s ago: executing program 1 (id=1138):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x2, @empty, 'veth1_to_batadv\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0xfffe, @local, 'lo\x00'}}, 0x1e)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x2c, 0x10, 0x1, 0x40000, 0x1, {0x0, 0x0, 0x0, 0x0, 0x30}, [@IFLA_VFINFO_LIST={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40091}, 0x4004014)

1m51.36694689s ago: executing program 33 (id=1138):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x2, @empty, 'veth1_to_batadv\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0xfffe, @local, 'lo\x00'}}, 0x1e)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x2c, 0x10, 0x1, 0x40000, 0x1, {0x0, 0x0, 0x0, 0x0, 0x30}, [@IFLA_VFINFO_LIST={0x4}, @IFLA_GROUP={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40091}, 0x4004014)

1m15.300612659s ago: executing program 6 (id=2612):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

1m15.264774799s ago: executing program 6 (id=2613):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffff31)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m15.21385256s ago: executing program 6 (id=2618):
r0 = perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8}, 0x8100, 0x7f, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
semtimedop(0x0, &(0x7f0000000280)=[{0x0, 0x1200, 0x1000}], 0x1, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}})

1m15.158810181s ago: executing program 6 (id=2620):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x2]})
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0)

1m15.049213452s ago: executing program 6 (id=2622):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)

1m14.642708198s ago: executing program 6 (id=2633):
openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{&(0x7f00000003c0)={0x2, 0x1, @local}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}], 0x1, 0x840)

1m14.620307128s ago: executing program 34 (id=2633):
openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{&(0x7f00000003c0)={0x2, 0x1, @local}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}], 0x1, 0x840)

36.410447786s ago: executing program 2 (id=4281):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x0, 0x1})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000380)={0x0, 0x2, 0x103fe, 0x2})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x0)

36.367977647s ago: executing program 2 (id=4287):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
mkdir(0x0, 0x0)

36.312506548s ago: executing program 2 (id=4291):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xb, 0x5, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r2, 0x0, &(0x7f0000000400)=""/214}, 0x20)

36.283371318s ago: executing program 2 (id=4294):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000300)='kfree\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

36.216816719s ago: executing program 2 (id=4296):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
shutdown(0xffffffffffffffff, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r2, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

36.13712005s ago: executing program 2 (id=4300):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x5, &(0x7f0000000680)=0xffffde5f, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

36.091730461s ago: executing program 35 (id=4300):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2b, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x5, &(0x7f0000000680)=0xffffde5f, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.49968967s ago: executing program 4 (id=5670):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1008002, &(0x7f00000003c0)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.243200884s ago: executing program 8 (id=5684):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xfc, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)

1.192041274s ago: executing program 8 (id=5687):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x52, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='setgroups\x00')
close_range(r2, 0xffffffffffffffff, 0x0)

1.101159926s ago: executing program 8 (id=5690):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004001)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
sendmsg(r0, &(0x7f0000000880)={0x0, 0x500, &(0x7f0000000840)=[{&(0x7f0000000780)="a9", 0xfffffdef}], 0x11}, 0x0)

813.45442ms ago: executing program 7 (id=5698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x38, r3, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffc}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

811.8178ms ago: executing program 7 (id=5700):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r2, &(0x7f0000002a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

760.1649ms ago: executing program 7 (id=5702):
r0 = socket$nl_route(0x10, 0x3, 0x0)
unshare(0x20600)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, 0x0, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)

659.393882ms ago: executing program 7 (id=5703):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffc}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x6, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu|00\t&&')

599.785562ms ago: executing program 7 (id=5705):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6, 0x0, 0x0, 0x0, 0x0, r1})

560.006923ms ago: executing program 7 (id=5706):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
r0 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r1, &(0x7f0000001140)=[{&(0x7f0000000700)=""/206, 0xce}], 0x1)

425.988514ms ago: executing program 5 (id=5710):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
write$selinux_validatetrans(r0, 0x0, 0x79)

425.429455ms ago: executing program 3 (id=5711):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000010000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond_slave_1\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}]}}]}, 0x8c}}, 0x0)

419.449945ms ago: executing program 4 (id=5712):
unshare(0xa000200)
semtimedop(0x0, &(0x7f0000000000)=[{0x2, 0x40, 0x1800}], 0x1, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
unshare(0x20060400)

361.790906ms ago: executing program 3 (id=5713):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0b00000007000000ab0000000800000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000f40)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
write$binfmt_register(r2, &(0x7f0000000140)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, 'M', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)

361.318486ms ago: executing program 5 (id=5714):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)={0x2c, r3, 0x1, 0xd0, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800)

361.048436ms ago: executing program 4 (id=5715):
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x101880, 0x9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
finit_module(r0, 0x0, 0x3)

360.379655ms ago: executing program 3 (id=5716):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x4, 0x7ffc1ff8}]})
getrusage(0xffffffffffffffff, 0x0)

360.058406ms ago: executing program 5 (id=5717):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000142020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000e02800850000007000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000240)={0x9, 0x3f00})

350.975496ms ago: executing program 4 (id=5718):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r2, &(0x7f0000001000)={&(0x7f0000000080)={0x2, 0x29, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x14}, @multicast2}}}], 0x20}, 0x4)

332.132056ms ago: executing program 5 (id=5719):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$cgroup_freezer_state(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x2, 0x82, 0x0, 0x8404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x3200, 0x100000000010001, 0x6, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x5}, 0x0, 0x1, 0xffffffffffffffff, 0x0)

314.740196ms ago: executing program 4 (id=5720):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x2, @perf_config_ext={0x2000000000000000, 0x8}, 0x1000, 0x5dd8, 0x100000, 0x5, 0x0, 0xb, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffbffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="fd8d00000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB="0a0009000180c2000000fdff08000b"], 0x30}}, 0x0)

217.497357ms ago: executing program 8 (id=5721):
io_setup(0x8, &(0x7f00000002c0)=<r0=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioprio_set$pid(0x1, 0x0, 0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000140)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, r1}])

217.087327ms ago: executing program 5 (id=5722):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0xfffffffffffffffe}, 0x18)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

207.412688ms ago: executing program 5 (id=5723):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1008002, &(0x7f00000003c0)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

171.586468ms ago: executing program 8 (id=5724):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000002c0)={[{@inlinecrypt}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@errors_remount}, {@data_err_ignore}, {@jqfmt_vfsv1}, {@nodelalloc}, {@grpquota}, {@noload}, {@nouid32}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = creat(&(0x7f0000000080)='./file1\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x0, 0x8000c62)
write$cgroup_subtree(r0, &(0x7f00000000c0)={[{0x2d, 'net'}]}, 0x5)
lseek(r0, 0x4, 0x4)

169.800938ms ago: executing program 3 (id=5725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='selinux_audited\x00', r1, 0x0, 0x480000000}, 0x18)
fcntl$lock(r2, 0x5, &(0x7f0000000080)={0x679d10ad2bf2765c, 0x0, 0x62, 0xedd, 0xffffffffffffffff})

169.538618ms ago: executing program 4 (id=5726):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000002540)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

69.647499ms ago: executing program 3 (id=5727):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r0)
inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000180)='.\x00', 0xe4000926)
rmdir(&(0x7f0000000100)='./control\x00')

19.40803ms ago: executing program 3 (id=5728):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'rr\x00', 0x2a, 0x84, 0x47}, 0x2c)

0s ago: executing program 8 (id=5729):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
brk(0x400000ffc020)

kernel console output (not intermixed with test programs):


[  105.944979][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.952734][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.960547][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.968336][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.976221][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.984054][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.991909][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  105.999715][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.007535][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.015323][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.023131][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.030962][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.038706][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.046486][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.054285][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.062074][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.069865][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.077620][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.085565][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.093475][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.101264][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.109012][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.116889][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.124696][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.132490][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.140272][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.148087][ T3467] hid-generic 0000:0000:20000000.0008: unknown main item tag 0x0
[  106.194993][ T3467] hid-generic 0000:0000:20000000.0008: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  106.207736][T10914] unsupported nla_type 52263
[  106.241853][T10918] xt_hashlimit: max too large, truncated to 1048576
[  106.250224][T10918] Cannot find set identified by id 0 to match
[  106.275093][T10922] netlink: 'syz.5.3231': attribute type 3 has an invalid length.
[  106.435333][   T29] kauditd_printk_skb: 293 callbacks suppressed
[  106.435349][   T29] audit: type=1400 audit(1746157108.866:3743): avc:  denied  { write } for  pid=10949 comm="syz.2.3243" name="protocols" dev="proc" ino=4026532513 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  106.496972][T10955] block device autoloading is deprecated and will be removed.
[  106.516099][T10955] bio_check_eod: 101 callbacks suppressed
[  106.516175][T10955] syz.2.3246: attempt to access beyond end of device
[  106.516175][T10955] md33: rw=2048, sector=0, nr_sectors = 8 limit=0
[  106.517600][   T29] audit: type=1400 audit(1746157108.956:3744): avc:  denied  { execute } for  pid=10960 comm="syz.3.3248" path="/629/file1" dev="tmpfs" ino=3262 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  106.619836][   T29] audit: type=1400 audit(1746157109.056:3745): avc:  denied  { sqpoll } for  pid=10968 comm="syz.5.3249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  106.640610][T10965] loop7: detected capacity change from 0 to 512
[  106.661158][T10971] tipc: Started in network mode
[  106.666364][T10971] tipc: Node identity ac14140f, cluster identity 4711
[  106.686603][T10971] tipc: New replicast peer: 255.255.255.255
[  106.693175][T10971] tipc: Enabled bearer <udp:syz2>, priority 10
[  106.771476][T10965] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.784997][T10982] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  106.794419][T10965] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.805190][   T29] audit: type=1400 audit(1746157109.226:3746): avc:  denied  { mount } for  pid=10964 comm="syz.7.3250" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  106.829896][   T29] audit: type=1400 audit(1746157109.266:3747): avc:  denied  { write } for  pid=10964 comm="syz.7.3250" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  106.853925][   T29] audit: type=1400 audit(1746157109.266:3748): avc:  denied  { add_name } for  pid=10964 comm="syz.7.3250" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  106.876085][   T29] audit: type=1400 audit(1746157109.276:3749): avc:  denied  { create } for  pid=10964 comm="syz.7.3250" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  106.947332][   T29] audit: type=1400 audit(1746157109.386:3750): avc:  denied  { read append open } for  pid=10964 comm="syz.7.3250" path="/94/bus/pids.current" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  107.013909][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.024983][   T29] audit: type=1400 audit(1746157109.426:3751): avc:  denied  { write } for  pid=10964 comm="syz.7.3250" path="/94/bus/bus" dev="loop7" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  107.047963][   T29] audit: type=1400 audit(1746157109.426:3752): avc:  denied  { ioctl } for  pid=10964 comm="syz.7.3250" path="/94/bus/pids.current" dev="loop7" ino=18 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  107.608973][T10967] gtp (10967) used greatest stack depth: 5456 bytes left
[  107.699714][   T23] tipc: Node number set to 2886997007
[  107.971339][T11092] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3307'.
[  107.980359][T11092] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3307'.
[  107.995881][T11092] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3307'.
[  108.148249][T11120] IPVS: Error connecting to the multicast addr
[  108.158101][T11123] loop4: detected capacity change from 0 to 128
[  108.165313][T11123] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  108.260694][T11133] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3320'.
[  108.272019][T11133] netem: change failed
[  108.314095][T11138] loop4: detected capacity change from 0 to 128
[  108.443058][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.443058][ T4580] loop4: rw=1, sector=153, nr_sectors = 8 limit=128
[  108.456936][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.456936][ T4580] loop4: rw=1, sector=169, nr_sectors = 8 limit=128
[  108.470876][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.470876][ T4580] loop4: rw=1, sector=185, nr_sectors = 8 limit=128
[  108.485176][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.485176][ T4580] loop4: rw=1, sector=201, nr_sectors = 8 limit=128
[  108.500249][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.500249][ T4580] loop4: rw=1, sector=217, nr_sectors = 8 limit=128
[  108.514365][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.514365][ T4580] loop4: rw=1, sector=233, nr_sectors = 8 limit=128
[  108.528061][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.528061][ T4580] loop4: rw=1, sector=249, nr_sectors = 8 limit=128
[  108.541806][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.541806][ T4580] loop4: rw=1, sector=265, nr_sectors = 8 limit=128
[  108.556355][ T4580] kworker/u8:18: attempt to access beyond end of device
[  108.556355][ T4580] loop4: rw=1, sector=281, nr_sectors = 8 limit=128
[  108.623405][T11158] loop4: detected capacity change from 0 to 512
[  108.630776][T11158] EXT4-fs: Ignoring removed orlov option
[  108.654012][T11158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.669874][T11158] ext4 filesystem being mounted at /632/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.708964][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.292837][T11188] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  109.528889][T11205] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  109.537390][T11205] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  109.569752][T11205] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  109.628398][T11211] netlink: 'syz.2.3354': attribute type 1 has an invalid length.
[  109.636431][T11211] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3354'.
[  109.655776][T11214] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  109.656015][T11205] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  109.662391][T11214] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  109.662626][T11214] vhci_hcd vhci_hcd.0: Device attached
[  109.670849][T11205] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  109.699915][T11215] vhci_hcd: connection closed
[  109.700240][ T4575] vhci_hcd: stop threads
[  109.709222][ T4575] vhci_hcd: release socket
[  109.713702][ T4575] vhci_hcd: disconnect device
[  109.844483][T11230] lo: entered allmulticast mode
[  109.850407][T11228] lo: left allmulticast mode
[  109.906150][T11233] loop4: detected capacity change from 0 to 512
[  109.963191][T11233] EXT4-fs (loop4): 1 orphan inode deleted
[  109.972839][T11233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.020284][T11233] ext4 filesystem being mounted at /643/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.101226][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.209927][T11190] syz.5.3344 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  110.223827][T11190] CPU: 0 UID: 0 PID: 11190 Comm: syz.5.3344 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  110.223893][T11190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  110.223905][T11190] Call Trace:
[  110.223911][T11190]  <TASK>
[  110.223918][T11190]  __dump_stack+0x1d/0x30
[  110.223939][T11190]  dump_stack_lvl+0xe8/0x140
[  110.223957][T11190]  dump_stack+0x15/0x1b
[  110.223974][T11190]  dump_header+0x81/0x220
[  110.224007][T11190]  oom_kill_process+0x334/0x3f0
[  110.224105][T11190]  out_of_memory+0x979/0xb80
[  110.224127][T11190]  ? css_next_descendant_pre+0x138/0x160
[  110.224161][T11190]  mem_cgroup_out_of_memory+0x13d/0x190
[  110.224193][T11190]  try_charge_memcg+0x5e2/0x870
[  110.224252][T11190]  obj_cgroup_charge_pages+0xb7/0x1a0
[  110.224273][T11190]  __memcg_kmem_charge_page+0x9f/0x170
[  110.224298][T11190]  __alloc_frozen_pages_noprof+0x188/0x360
[  110.224368][T11190]  alloc_pages_mpol+0xb3/0x250
[  110.224390][T11190]  alloc_pages_noprof+0x90/0x130
[  110.224411][T11190]  __vmalloc_node_range_noprof+0x6a4/0xdf0
[  110.224444][T11190]  __kvmalloc_node_noprof+0x2f3/0x4d0
[  110.224463][T11190]  ? ip_set_alloc+0x1f/0x30
[  110.224487][T11190]  ? ip_set_alloc+0x1f/0x30
[  110.224508][T11190]  ? __kmalloc_cache_noprof+0x189/0x320
[  110.224567][T11190]  ip_set_alloc+0x1f/0x30
[  110.224590][T11190]  hash_netiface_create+0x282/0x740
[  110.224660][T11190]  ? __pfx_hash_netiface_create+0x10/0x10
[  110.224721][T11190]  ip_set_create+0x3c9/0x960
[  110.224755][T11190]  ? __nla_parse+0x40/0x60
[  110.224774][T11190]  nfnetlink_rcv_msg+0x4c3/0x590
[  110.224810][T11190]  netlink_rcv_skb+0x120/0x220
[  110.224912][T11190]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  110.224938][T11190]  nfnetlink_rcv+0x16b/0x1690
[  110.224968][T11190]  ? __list_del_entry_valid_or_report+0x65/0x130
[  110.225060][T11190]  ? __rmqueue_pcplist+0x9f7/0xbe0
[  110.225144][T11190]  ? should_fail_ex+0x30/0x280
[  110.225172][T11190]  ? selinux_nlmsg_lookup+0x99/0x8b0
[  110.225244][T11190]  ? selinux_netlink_send+0x59f/0x5f0
[  110.225266][T11190]  ? __rcu_read_unlock+0x34/0x70
[  110.225285][T11190]  ? __netlink_lookup+0x266/0x2a0
[  110.225304][T11190]  netlink_unicast+0x59e/0x670
[  110.225373][T11190]  netlink_sendmsg+0x58b/0x6b0
[  110.225400][T11190]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.225487][T11190]  __sock_sendmsg+0x142/0x180
[  110.225514][T11190]  ____sys_sendmsg+0x31e/0x4e0
[  110.225586][T11190]  ___sys_sendmsg+0x17b/0x1d0
[  110.225616][T11190]  __x64_sys_sendmsg+0xd4/0x160
[  110.225640][T11190]  x64_sys_call+0x2999/0x2fb0
[  110.225661][T11190]  do_syscall_64+0xd0/0x1a0
[  110.225682][T11190]  ? clear_bhb_loop+0x25/0x80
[  110.225709][T11190]  ? clear_bhb_loop+0x25/0x80
[  110.225726][T11190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.225742][T11190] RIP: 0033:0x7efc8d28e969
[  110.225757][T11190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.225775][T11190] RSP: 002b:00007efc8b8f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  110.225794][T11190] RAX: ffffffffffffffda RBX: 00007efc8d4b5fa0 RCX: 00007efc8d28e969
[  110.225886][T11190] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  110.225898][T11190] RBP: 00007efc8d310ab1 R08: 0000000000000000 R09: 0000000000000000
[  110.225910][T11190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.225922][T11190] R13: 0000000000000000 R14: 00007efc8d4b5fa0 R15: 00007ffc3c901ca8
[  110.225938][T11190]  </TASK>
[  110.225945][T11190] memory: usage 307200kB, limit 307200kB, failcnt 144
[  110.573003][T11190] memory+swap: usage 307776kB, limit 9007199254740988kB, failcnt 0
[  110.580917][T11190] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  110.588200][T11190] Memory cgroup stats for /syz5:
[  110.588483][T11190] cache 0
[  110.596678][T11190] rss 0
[  110.599519][T11190] shmem 0
[  110.602595][T11190] mapped_file 0
[  110.606245][T11190] dirty 0
[  110.609349][T11190] writeback 0
[  110.612831][T11190] workingset_refault_anon 36
[  110.617596][T11190] workingset_refault_file 0
[  110.622173][T11190] swap 589824
[  110.625823][T11190] swapcached 0
[  110.629407][T11190] pgpgin 94275
[  110.632932][T11190] pgpgout 94272
[  110.636487][T11190] pgfault 107931
[  110.640152][T11190] pgmajfault 1548
[  110.643868][T11190] inactive_anon 0
[  110.647676][T11190] active_anon 0
[  110.651204][T11190] inactive_file 12288
[  110.655250][T11190] active_file 0
[  110.658763][T11190] unevictable 0
[  110.662321][T11190] hierarchical_memory_limit 314572800
[  110.667740][T11190] hierarchical_memsw_limit 9223372036854771712
[  110.674084][T11190] total_cache 0
[  110.677575][T11190] total_rss 0
[  110.680937][T11190] total_shmem 0
[  110.684420][T11190] total_mapped_file 0
[  110.688538][T11190] total_dirty 0
[  110.692046][T11190] total_writeback 0
[  110.695926][T11190] total_workingset_refault_anon 36
[  110.701099][T11190] total_workingset_refault_file 0
[  110.706191][T11190] total_swap 589824
[  110.710273][T11190] total_swapcached 0
[  110.714313][T11190] total_pgpgin 94275
[  110.718242][T11190] total_pgpgout 94272
[  110.722259][T11190] total_pgfault 107931
[  110.726422][T11190] total_pgmajfault 1548
[  110.730619][T11190] total_inactive_anon 0
[  110.734855][T11190] total_active_anon 0
[  110.738971][T11190] total_inactive_file 12288
[  110.743612][T11190] total_active_file 0
[  110.747629][T11190] total_unevictable 0
[  110.751759][T11190] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3344,pid=11189,uid=0
[  110.766824][T11190] Memory cgroup out of memory: Killed process 11189 (syz.5.3344) total-vm:95796kB, anon-rss:936kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0
[  110.945156][T11279] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  111.023177][T11287] loop7: detected capacity change from 0 to 1024
[  111.037019][T11289] xt_CT: No such helper "pptp"
[  111.048968][T11287] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.093144][T11287] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.127207][T11287] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000.
[  111.153407][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.156368][T11296] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  111.228003][T11305] ALSA: seq fatal error: cannot create timer (-22)
[  111.346868][T11334] loop7: detected capacity change from 0 to 2048
[  111.381268][T11334] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.399571][T11334] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  111.431402][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.454044][   T29] kauditd_printk_skb: 344 callbacks suppressed
[  111.454068][   T29] audit: type=1400 audit(1746157113.896:4097): avc:  denied  { name_bind } for  pid=11349 comm="syz.3.3411" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  111.503625][   T29] audit: type=1400 audit(1746157113.946:4098): avc:  denied  { execute } for  pid=11354 comm="syz.5.3413" path="/604/cpu.stat" dev="tmpfs" ino=3139 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.527316][   T29] audit: type=1400 audit(1746157113.946:4099): avc:  denied  { getopt } for  pid=11354 comm="syz.5.3413" lport=13 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  111.581729][   T29] audit: type=1400 audit(1746157114.026:4100): avc:  denied  { write } for  pid=11364 comm="syz.5.3416" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  111.607486][   T29] audit: type=1400 audit(1746157114.046:4101): avc:  denied  { read } for  pid=11364 comm="syz.5.3416" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  111.691059][   T29] audit: type=1400 audit(1746157114.076:4102): avc:  denied  { execmem } for  pid=11373 comm="syz.3.3421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  111.711213][   T29] audit: type=1400 audit(1746157114.106:4103): avc:  denied  { read } for  pid=11376 comm="syz.7.3422" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.736020][   T29] audit: type=1400 audit(1746157114.106:4104): avc:  denied  { open } for  pid=11376 comm="syz.7.3422" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.760723][   T29] audit: type=1400 audit(1746157114.106:4105): avc:  denied  { ioctl } for  pid=11376 comm="syz.7.3422" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.789729][   T29] audit: type=1400 audit(1746157114.226:4106): avc:  granted  { setsecparam } for  pid=11382 comm="syz.2.3425" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  112.010334][T11420] loop4: detected capacity change from 0 to 512
[  112.033420][T11418] SELinux: failed to load policy
[  112.081091][T11420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.094557][T11429] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  112.119926][T11420] ext4 filesystem being mounted at /667/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.144590][T11437] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  112.188376][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.346281][T11456] loop4: detected capacity change from 0 to 1024
[  112.353752][T11456] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.374050][T11456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.396215][T11456] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  112.440775][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.531465][T11480] ------------[ cut here ]------------
[  112.537121][T11480] WARNING: CPU: 1 PID: 11480 at mm/page_alloc.c:4946 __alloc_frozen_pages_noprof+0x218/0x360
[  112.547775][T11480] Modules linked in:
[  112.551992][T11480] CPU: 1 UID: 0 PID: 11480 Comm: syz.4.3460 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  112.565074][T11480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  112.575477][T11480] RIP: 0010:__alloc_frozen_pages_noprof+0x218/0x360
[  112.582678][T11480] Code: 83 3d 63 b5 50 05 02 72 0e 48 83 b8 a0 fb ff ff 00 0f 84 48 ff ff ff 81 ca 00 01 00 00 e9 3d ff ff ff c6 05 52 b2 4c 05 01 90 <0f> 0b 90 31 c0 eb 84 a9 00 00 08 00 75 52 44 89 f1 81 e1 7f ff ff
[  112.602676][T11480] RSP: 0018:ffffc9000187fa40 EFLAGS: 00010246
[  112.608840][T11480] RAX: eb556d9851fd7000 RBX: 000000000000000e RCX: 0000000000000000
[  112.616965][T11480] RDX: 0000000000000000 RSI: 000000000000000e RDI: 0000000000040dc0
[  112.625129][T11480] RBP: 0000000000000dc0 R08: ffff888118752b98 R09: 0000000000000000
[  112.633295][T11480] R10: ffff888117fea588 R11: 0001888117fea588 R12: ffffc9000187fd38
[  112.641496][T11480] R13: 000000000000fed8 R14: 0000000000040dc0 R15: 0000000000000000
[  112.649685][T11480] FS:  00007faaf4c276c0(0000) GS:ffff8882aef50000(0000) knlGS:0000000000000000
[  112.658839][T11480] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  112.665600][T11480] CR2: 000020000000f000 CR3: 00000001226ea000 CR4: 00000000003506f0
[  112.673772][T11480] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  112.681952][T11480] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  112.690107][T11480] Call Trace:
[  112.693552][T11480]  <TASK>
[  112.696585][T11480]  __alloc_pages_noprof+0x9/0x20
[  112.701650][T11480]  ___kmalloc_large_node+0x73/0x130
[  112.706992][T11480]  __kmalloc_large_node_noprof+0x16/0xa0
[  112.712846][T11480]  __kmalloc_noprof+0x2ab/0x3e0
[  112.717801][T11480]  ? hashtab_init+0x9b/0xe0
[  112.722514][T11480]  ? common_read+0x3f/0x300
[  112.727171][T11480]  hashtab_init+0x9b/0xe0
[  112.731706][T11480]  symtab_init+0x2c/0x40
[  112.736027][T11480]  common_read+0x10b/0x300
[  112.740541][T11480]  ? __pfx_common_read+0x10/0x10
[  112.745560][T11480]  policydb_read+0x64f/0x1330
[  112.750449][T11480]  ? security_load_policy+0x90/0x890
[  112.755889][T11480]  security_load_policy+0xba/0x890
[  112.761090][T11480]  ? rep_movs_alternative+0x4a/0x90
[  112.766427][T11480]  sel_write_load+0x1d4/0x380
[  112.771351][T11480]  ? __pfx_sel_write_load+0x10/0x10
[  112.776694][T11480]  vfs_write+0x266/0x8d0
[  112.780994][T11480]  ? __rcu_read_unlock+0x4f/0x70
[  112.786030][T11480]  ? __fget_files+0x184/0x1c0
[  112.791021][T11480]  ksys_write+0xda/0x1a0
[  112.795436][T11480]  __x64_sys_write+0x40/0x50
[  112.800196][T11480]  x64_sys_call+0x2cdd/0x2fb0
[  112.804987][T11480]  do_syscall_64+0xd0/0x1a0
[  112.809581][T11480]  ? clear_bhb_loop+0x25/0x80
[  112.814441][T11480]  ? clear_bhb_loop+0x25/0x80
[  112.819217][T11480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.825352][T11480] RIP: 0033:0x7faaf65be969
[  112.829870][T11480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.850269][T11480] RSP: 002b:00007faaf4c27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.858951][T11480] RAX: ffffffffffffffda RBX: 00007faaf67e5fa0 RCX: 00007faaf65be969
[  112.867057][T11480] RDX: 000000000000ffa8 RSI: 0000200000000000 RDI: 0000000000000003
[  112.875214][T11480] RBP: 00007faaf6640ab1 R08: 0000000000000000 R09: 0000000000000000
[  112.883356][T11480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.891503][T11480] R13: 0000000000000000 R14: 00007faaf67e5fa0 R15: 00007ffd3559ee58
[  112.900017][T11480]  </TASK>
[  112.903135][T11480] ---[ end trace 0000000000000000 ]---
[  112.908811][T11480] SELinux: failed to load policy
[  112.975722][T11500] sch_tbf: burst 0 is lower than device lo mtu (81) !
[  113.072739][T11518] xt_TPROXY: Can be used only with -p tcp or -p udp
[  113.113358][T11526] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  113.119900][T11526] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  113.127518][T11526] vhci_hcd vhci_hcd.0: Device attached
[  113.135431][T11527] vhci_hcd: connection closed
[  113.135500][ T4575] vhci_hcd: stop threads
[  113.144851][ T4575] vhci_hcd: release socket
[  113.149608][ T4575] vhci_hcd: disconnect device
[  113.302177][T11559] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  113.313199][T11561] loop4: detected capacity change from 0 to 512
[  113.342558][T11561] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3501: bg 0: block 248: padding at end of block bitmap is not set
[  113.357443][T11561] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.3501: Failed to acquire dquot type 1
[  113.372964][T11561] EXT4-fs (loop4): 1 truncate cleaned up
[  113.380385][T11561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.394171][T11561] ext4 filesystem being mounted at /680/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.444544][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.455645][ T4588] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:26: Failed to release dquot type 1
[  113.550510][T11584] __nla_validate_parse: 23 callbacks suppressed
[  113.550522][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3509'.
[  113.567152][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3509'.
[  113.759971][T11605] bond0: entered promiscuous mode
[  113.765102][T11605] bond0: entered allmulticast mode
[  113.772481][T11605] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.793064][T11605] bond0 (unregistering): Released all slaves
[  114.066629][T11638] loop7: detected capacity change from 0 to 512
[  114.073309][T11638] EXT4-fs: Ignoring removed mblk_io_submit option
[  114.083909][T11638] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  114.116567][T11638] EXT4-fs (loop7): 1 truncate cleaned up
[  114.123155][T11638] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.157826][T11638] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  114.184694][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.296770][T11662] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3541'.
[  114.324454][T11664] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3542'.
[  114.333485][T11664] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3542'.
[  114.385561][T11670] loop7: detected capacity change from 0 to 128
[  114.683034][T11696] loop7: detected capacity change from 0 to 512
[  114.747293][T11710] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3566'.
[  114.821867][T11726] macvlan2: entered promiscuous mode
[  114.827333][T11726] bridge0: entered promiscuous mode
[  114.833395][T11726] bridge0: port 3(macvlan2) entered blocking state
[  114.841633][T11726] bridge0: port 3(macvlan2) entered disabled state
[  114.849008][T11726] macvlan2: entered allmulticast mode
[  114.854681][T11726] bridge0: entered allmulticast mode
[  114.861613][T11726] macvlan2: left allmulticast mode
[  114.866934][T11726] bridge0: left allmulticast mode
[  114.907737][T11726] bridge0: left promiscuous mode
[  114.987913][T11749] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3585'.
[  115.001013][T11749] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3585'.
[  115.083327][T11764] netlink: 5220 bytes leftover after parsing attributes in process `syz.5.3592'.
[  115.130041][T11771] macvlan0: entered promiscuous mode
[  115.135252][T11774] 9pnet: p9_errstr2errno: server reported unknown error �<jq
[  115.135373][T11771] bridge0: entered promiscuous mode
[  115.135776][T11771] bridge0: port 3(macvlan0) entered blocking state
[  115.149952][T11772] 9pnet_fd: Insufficient options for proto=fd
[  115.154800][T11771] bridge0: port 3(macvlan0) entered disabled state
[  115.168992][T11771] macvlan0: entered allmulticast mode
[  115.174482][T11771] bridge0: entered allmulticast mode
[  115.181564][T11771] macvlan0: left allmulticast mode
[  115.186706][T11771] bridge0: left allmulticast mode
[  115.192500][T11771] bridge0: left promiscuous mode
[  115.235179][T11781] mmap: syz.4.3600 (11781): VmData 29077504 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data.
[  115.265056][T11784] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3601'.
[  115.358283][T11796] loop4: detected capacity change from 0 to 1024
[  115.365648][T11796] EXT4-fs: Ignoring removed orlov option
[  115.371586][T11796] EXT4-fs: Ignoring removed nomblk_io_submit option
[  115.381739][T11796] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.430754][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.486904][T11814] bridge0: entered promiscuous mode
[  115.492489][T11814] macvlan2: entered promiscuous mode
[  115.499353][T11814] bridge0: port 3(macvlan2) entered blocking state
[  115.505985][T11814] bridge0: port 3(macvlan2) entered disabled state
[  115.512822][T11814] macvlan2: entered allmulticast mode
[  115.518282][T11814] bridge0: entered allmulticast mode
[  115.524185][T11814] macvlan2: left allmulticast mode
[  115.529392][T11814] bridge0: left allmulticast mode
[  115.535090][T11814] bridge0: left promiscuous mode
[  115.601428][T11821] loop4: detected capacity change from 0 to 512
[  115.611929][T11821] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.3616: corrupted in-inode xattr: invalid ea_ino
[  115.630533][T11821] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3616: couldn't read orphan inode 15 (err -117)
[  115.644489][T11821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.670803][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.705287][T11835] openvswitch: netlink: Message has 6 unknown bytes.
[  115.726687][T11837] netlink: 'syz.4.3623': attribute type 4 has an invalid length.
[  115.738394][T11837] netlink: 'syz.4.3623': attribute type 4 has an invalid length.
[  115.857255][T11851] loop7: detected capacity change from 0 to 512
[  115.863925][T11851] EXT4-fs: Ignoring removed i_version option
[  115.880671][T11851] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002]
[  115.888846][T11851] System zones: 0-2, 18-18, 34-35
[  115.894622][T11851] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.907333][T11851] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.927461][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.036886][T11862] netlink: 'syz.7.3632': attribute type 10 has an invalid length.
[  116.049287][T11862] team0: Device hsr_slave_0 failed to register rx_handler
[  116.164887][T11884] IPv6: NLM_F_CREATE should be specified when creating new route
[  116.347274][T11905] loop7: detected capacity change from 0 to 164
[  116.357384][T11905] bio_check_eod: 103 callbacks suppressed
[  116.357403][T11905] syz.7.3652: attempt to access beyond end of device
[  116.357403][T11905] loop7: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  116.377340][T11905] syz.7.3652: attempt to access beyond end of device
[  116.377340][T11905] loop7: rw=0, sector=263328, nr_sectors = 4 limit=164
[  116.408354][T11911] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  116.497784][T11928] Invalid ELF header magic: != ELF
[  116.497812][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  116.497821][   T29] audit: type=1400 audit(1746157118.936:4310): avc:  denied  { module_load } for  pid=11927 comm="syz.2.3663" path="/sys/kernel/notes" dev="sysfs" ino=210 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  116.557216][T11932] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  116.568569][T11932] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  116.619386][T11945] ip6gre1: entered allmulticast mode
[  116.670445][   T29] audit: type=1400 audit(1746157119.116:4311): avc:  denied  { mount } for  pid=11951 comm="syz.2.3675" name="/" dev="hugetlbfs" ino=33270 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  116.697701][   T29] audit: type=1400 audit(1746157119.136:4312): avc:  denied  { watch } for  pid=11951 comm="syz.2.3675" path="/799/file0" dev="hugetlbfs" ino=33270 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  116.741003][   T29] audit: type=1400 audit(1746157119.186:4313): avc:  denied  { unmount } for  pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  116.811282][   T29] audit: type=1400 audit(1746157119.246:4314): avc:  denied  { mounton } for  pid=11971 comm="syz.7.3684" path="/170/bus" dev="tmpfs" ino=895 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  116.867873][T11982] netlink: 'syz.5.3687': attribute type 21 has an invalid length.
[  116.877501][T11982] netlink: 'syz.5.3687': attribute type 1 has an invalid length.
[  116.918488][   T29] audit: type=1400 audit(1746157119.346:4315): avc:  denied  { mount } for  pid=11984 comm="syz.7.3690" name="/" dev="ramfs" ino=33306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  116.950532][   T29] audit: type=1400 audit(1746157119.396:4316): avc:  denied  { getopt } for  pid=11990 comm="syz.5.3693" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  116.981646][   T29] audit: type=1400 audit(1746157119.416:4317): avc:  denied  { create } for  pid=11992 comm="syz.7.3694" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  117.003349][   T29] audit: type=1400 audit(1746157119.416:4318): avc:  denied  { write } for  pid=11992 comm="syz.7.3694" path="socket:[33314]" dev="sockfs" ino=33314 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  117.028560][   T29] audit: type=1400 audit(1746157119.416:4319): avc:  denied  { nlmsg_read } for  pid=11992 comm="syz.7.3694" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  117.209239][T12024] ip6gre3: entered allmulticast mode
[  117.250317][T12028] netlink: 'syz.5.3708': attribute type 29 has an invalid length.
[  117.260556][T12028] netlink: 'syz.5.3708': attribute type 29 has an invalid length.
[  117.322868][T12039] netlink: 'syz.7.3715': attribute type 21 has an invalid length.
[  117.336349][T12042] bridge0: entered allmulticast mode
[  117.343534][T12039] netlink: 'syz.7.3715': attribute type 1 has an invalid length.
[  117.353834][T12042] bridge_slave_1: left allmulticast mode
[  117.359861][T12042] bridge_slave_1: left promiscuous mode
[  117.365803][T12042] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.413879][T12042] bridge_slave_0: left promiscuous mode
[  117.419723][T12042] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.603642][T12074] ip6gre1: entered allmulticast mode
[  117.896257][T12135] ip6gre2: entered allmulticast mode
[  117.948572][T12146] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.964666][T12146] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.332668][T12222] loop4: detected capacity change from 0 to 1024
[  118.342401][T12222] EXT4-fs: Ignoring removed nomblk_io_submit option
[  118.377962][T12222] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.396193][T12222] EXT4-fs (loop4): shut down requested (0)
[  118.415132][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.578305][T12261] ALSA: seq fatal error: cannot create timer (-16)
[  118.647230][T12273] __nla_validate_parse: 16 callbacks suppressed
[  118.647243][T12273] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3827'.
[  118.662901][T12273] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3827'.
[  118.868998][T12304] netlink: 'syz.2.3843': attribute type 22 has an invalid length.
[  118.876901][T12304] netlink: 168 bytes leftover after parsing attributes in process `syz.2.3843'.
[  118.898885][T12307] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3844'.
[  118.940847][T12315] loop7: detected capacity change from 0 to 128
[  118.957809][T12315] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.971670][T12319] netlink: 9286 bytes leftover after parsing attributes in process `syz.4.3850'.
[  118.989745][T12315] ext4 filesystem being mounted at /209/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  119.097342][T12325] bond0: entered promiscuous mode
[  119.102610][T12325] bond0: entered allmulticast mode
[  119.112092][T12325] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.122009][ T9583] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  119.139246][T12325] bond0 (unregistering): Released all slaves
[  119.178091][T12349] sd 0:0:1:0: device reset
[  119.289104][T12363] sd 0:0:1:0: device reset
[  119.368161][T12380] vhci_hcd: invalid port number 96
[  119.373414][T12380] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  119.535392][T12407] bridge0: port 4(macvlan2) entered blocking state
[  119.542188][T12407] bridge0: port 4(macvlan2) entered disabled state
[  119.556599][T12407] macvlan2: entered allmulticast mode
[  119.565495][T12407] macvlan2: left allmulticast mode
[  119.692086][T12431] dvmrp5: entered allmulticast mode
[  119.700602][T12431] dvmrp5: left allmulticast mode
[  119.753686][T12437] xt_hashlimit: max too large, truncated to 1048576
[  119.958781][T12464] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  120.080367][T12472] SELinux: ebitmap: empty map
[  120.085430][T12472] SELinux: failed to load policy
[  120.175760][T12485] netlink: 8 bytes leftover after parsing attributes in process `��'.
[  120.193357][T12489] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  120.376855][T12510] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  120.493881][T12529] serio: Serial port ptm0
[  120.587197][T12535] loop7: detected capacity change from 0 to 512
[  120.595791][T12535] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  120.607695][T12535] EXT4-fs (loop7): 1 truncate cleaned up
[  120.616677][T12535] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.735282][T12541] sd 0:0:1:0: device reset
[  120.802369][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.442229][T12566] vhci_hcd: invalid port number 96
[  121.447520][T12566] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  121.515079][T12571] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  121.524103][T12571] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3962'.
[  121.539971][   T29] kauditd_printk_skb: 872 callbacks suppressed
[  121.540023][   T29] audit: type=1326 audit(1746157123.986:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe42b815927 code=0x7ffc0000
[  121.571844][   T29] audit: type=1326 audit(1746157123.986:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe42b7bab39 code=0x7ffc0000
[  121.595385][   T29] audit: type=1326 audit(1746157123.986:5194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe42b815927 code=0x7ffc0000
[  121.618851][   T29] audit: type=1326 audit(1746157123.986:5195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe42b7bab39 code=0x7ffc0000
[  121.642322][   T29] audit: type=1326 audit(1746157123.986:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe42b81e969 code=0x7ffc0000
[  121.665965][   T29] audit: type=1326 audit(1746157123.986:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe42b81e969 code=0x7ffc0000
[  121.689577][   T29] audit: type=1326 audit(1746157123.986:5198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fe42b81e969 code=0x7ffc0000
[  121.713153][   T29] audit: type=1326 audit(1746157123.986:5199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12572 comm="syz.2.3963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe42b81e969 code=0x7ffc0000
[  121.797053][   T29] audit: type=1326 audit(1746157124.216:5200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12585 comm="syz.4.3970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  121.820661][   T29] audit: type=1326 audit(1746157124.216:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12585 comm="syz.4.3970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  121.847627][T12592] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3973'.
[  121.987093][T12619] vhci_hcd: invalid port number 96
[  121.992525][T12619] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  122.084396][T12637] SELinux: security_context_str_to_sid (��) failed with errno=-22
[  122.321706][T12687] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  124.094030][T12784] IPv6: NLM_F_CREATE should be specified when creating new route
[  124.288976][T12809] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4071'.
[  124.301110][T12809] 0�X���: renamed from caif0
[  124.323156][T12809] 0�X���: entered allmulticast mode
[  124.328403][T12809] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  124.441136][T12830] netlink: 'syz.3.4079': attribute type 5 has an invalid length.
[  124.454404][T12832] dummy0 speed is unknown, defaulting to 1000
[  124.473908][T12832] lo speed is unknown, defaulting to 1000
[  124.480728][T12836] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4084'.
[  124.736005][T12860] loop7: detected capacity change from 0 to 512
[  124.760493][T12860] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  124.773317][T12860] EXT4-fs (loop7): 1 truncate cleaned up
[  124.779696][T12860] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.849769][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.454969][T12911] batadv_slave_1: entered promiscuous mode
[  125.470246][T12909] hub 2-0:1.0: USB hub found
[  125.480188][T12911] veth1_virt_wifi: entered promiscuous mode
[  125.489741][T12909] hub 2-0:1.0: 8 ports detected
[  125.500057][T12910] veth1_virt_wifi: left promiscuous mode
[  125.505799][T12910] batadv_slave_1: left promiscuous mode
[  125.556667][T12914] loop7: detected capacity change from 0 to 128
[  125.574201][T12916] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12916 comm=gtp
[  125.586504][T12916] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=12916 comm=gtp
[  125.829540][T12929] dummy0 speed is unknown, defaulting to 1000
[  125.854078][T12929] lo speed is unknown, defaulting to 1000
[  126.010303][T12948] loop7: detected capacity change from 0 to 1764
[  126.151246][T12970] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4138'.
[  126.205050][T12976] ip6t_rpfilter: unknown options
[  126.227535][T12980] serio: Serial port ptm0
[  126.340791][T12996] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4149'.
[  126.425444][T13007] SELinux: failed to load policy
[  126.552827][   T29] kauditd_printk_skb: 183 callbacks suppressed
[  126.552840][   T29] audit: type=1400 audit(1746157128.996:5385): avc:  denied  { create } for  pid=13020 comm="syz.4.4161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  126.580058][   T29] audit: type=1400 audit(1746157128.996:5386): avc:  denied  { write } for  pid=13020 comm="syz.4.4161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  126.600612][   T29] audit: type=1400 audit(1746157128.996:5387): avc:  denied  { read } for  pid=13020 comm="syz.4.4161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  126.626193][   T29] audit: type=1400 audit(1746157129.066:5388): avc:  denied  { bind } for  pid=13022 comm="syz.4.4162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  126.722328][   T29] audit: type=1400 audit(1746157129.166:5389): avc:  denied  { create } for  pid=13028 comm="syz.5.4165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  126.742822][   T29] audit: type=1400 audit(1746157129.166:5390): avc:  denied  { setopt } for  pid=13028 comm="syz.5.4165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  126.905628][    C1] dccp_v4_rcv: dropped packet with invalid checksum
[  126.960948][   T29] audit: type=1400 audit(1746157129.406:5391): avc:  denied  { read } for  pid=13048 comm="syz.4.4175" name="mISDNtimer" dev="devtmpfs" ino=248 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  126.984815][   T29] audit: type=1400 audit(1746157129.406:5392): avc:  denied  { open } for  pid=13048 comm="syz.4.4175" path="/dev/mISDNtimer" dev="devtmpfs" ino=248 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  127.011437][   T29] audit: type=1400 audit(1746157129.406:5393): avc:  denied  { ioctl } for  pid=13048 comm="syz.4.4175" path="/dev/mISDNtimer" dev="devtmpfs" ino=248 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  127.037712][   T29] audit: type=1400 audit(1746157129.476:5394): avc:  denied  { create } for  pid=13050 comm="syz.4.4176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  127.146918][T13067] dummy0 speed is unknown, defaulting to 1000
[  127.155025][T13067] lo speed is unknown, defaulting to 1000
[  127.170396][T13070] bridge_slave_0: left allmulticast mode
[  127.176162][T13070] bridge_slave_0: left promiscuous mode
[  127.182110][T13070] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.193525][T13070] bridge_slave_1: left allmulticast mode
[  127.199353][T13070] bridge_slave_1: left promiscuous mode
[  127.205416][T13070] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.218766][T13070] bond0: (slave bond_slave_1): Releasing backup interface
[  127.248177][T13070] team0: Port device team_slave_0 removed
[  127.268885][T13070] team0: Port device team_slave_1 removed
[  127.278235][T13070] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.285747][T13070] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.296119][T13070] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.303797][T13070] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.330318][T13070] bond1: (slave ip6gre1): Releasing backup interface
[  127.346322][T13070] ip6gre1: left promiscuous mode
[  127.368803][ T3465] dummy0 speed is unknown, defaulting to 1000
[  127.413227][T13087] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13087 comm=gtp
[  127.425504][T13087] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=13087 comm=gtp
[  127.606033][T13099] dummy0 speed is unknown, defaulting to 1000
[  127.635400][T13099] lo speed is unknown, defaulting to 1000
[  127.882531][T13133] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4223'.
[  127.897470][T13133] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4223'.
[  127.905649][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  128.330573][T13203] serio: Serial port ptm0
[  128.494863][T13223] hub 2-0:1.0: USB hub found
[  128.500030][T13223] hub 2-0:1.0: 8 ports detected
[  128.575753][T13237] loop7: detected capacity change from 0 to 2048
[  128.601396][T13237] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.753233][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.905654][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  128.970785][T13260] loop7: detected capacity change from 0 to 1024
[  128.977623][T13260] EXT4-fs: Ignoring removed orlov option
[  128.983482][T13260] EXT4-fs: Ignoring removed nomblk_io_submit option
[  129.015441][T13260] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.047397][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.074717][T13272] hub 2-0:1.0: USB hub found
[  129.079522][T13272] hub 2-0:1.0: 8 ports detected
[  129.182840][T13288] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4284'.
[  129.192247][T13288] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4284'.
[  129.312911][T13310] netlink: 104 bytes leftover after parsing attributes in process `syz.3.4280'.
[  129.384189][T13322] IPv6: NLM_F_CREATE should be specified when creating new route
[  129.554754][ T4635] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  129.671271][ T4635] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  129.674096][T13358] netlink: 'syz.5.4308': attribute type 13 has an invalid length.
[  129.776310][T13358] 8021q: adding VLAN 0 to HW filter on device team0
[  129.877382][T13358] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  129.894944][ T4635] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  129.905639][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  129.989221][T13380] bridge_slave_0: left allmulticast mode
[  129.995199][T13380] bridge_slave_0: left promiscuous mode
[  130.000991][T13380] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.034665][T13380] bridge_slave_1: left allmulticast mode
[  130.040488][T13380] bridge_slave_1: left promiscuous mode
[  130.046223][T13380] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.076179][T13380] bond0: (slave bond_slave_0): Releasing backup interface
[  130.094954][T13380] bond0: (slave bond_slave_1): Releasing backup interface
[  130.119433][T13380] team0: Port device team_slave_0 removed
[  130.138284][T13380] team0: Port device team_slave_1 removed
[  130.154296][T13380] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  130.161831][T13380] batman_adv: batadv0: Removing interface: batadv_slave_0
[  130.181697][T13380] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  130.189198][T13380] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.240506][T13380] batadv1: left allmulticast mode
[  130.245586][T13380] batadv1: left promiscuous mode
[  130.250796][T13380] bridge0: port 3(batadv1) entered disabled state
[  130.274073][ T4635] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  130.363454][T13385] infiniband syz!: set down
[  130.368008][T13385] infiniband syz!: added team_slave_0
[  130.416247][T13385] RDS/IB: syz!: added
[  130.427644][T13394] netlink: 'syz.7.4319': attribute type 1 has an invalid length.
[  130.435503][T13394] netlink: 16179 bytes leftover after parsing attributes in process `syz.7.4319'.
[  130.454980][T13385] smc: adding ib device syz! with port count 1
[  130.470928][T13385] smc:    ib device syz! port 1 has pnetid 
[  130.544447][T13361] dummy0 speed is unknown, defaulting to 1000
[  130.583351][T13361] lo speed is unknown, defaulting to 1000
[  130.905683][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  130.951522][T13361] chnl_net:caif_netlink_parms(): no params data found
[  131.071106][T13453] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.4340'.
[  131.100192][T13453] netlink: zone id is out of range
[  131.112195][T13453] netlink: zone id is out of range
[  131.117350][T13453] netlink: del zone limit has 8 unknown bytes
[  131.160679][T13361] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.167821][T13361] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.183504][T13361] bridge_slave_0: entered allmulticast mode
[  131.190640][T13361] bridge_slave_0: entered promiscuous mode
[  131.198659][T13459] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  131.219650][ T4635] hsr_slave_0: left promiscuous mode
[  131.227399][ T4635] hsr_slave_1: left promiscuous mode
[  131.233599][ T4635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.243069][ T4635] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.244783][T13469] netlink: 432 bytes leftover after parsing attributes in process `syz.5.4348'.
[  131.299746][ T4635] team0 (unregistering): Port device team_slave_1 removed
[  131.318493][ T4635] team0 (unregistering): Port device C removed
[  131.382581][T13361] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.389751][T13361] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.400561][T13361] bridge_slave_1: entered allmulticast mode
[  131.413854][T13361] bridge_slave_1: entered promiscuous mode
[  131.426809][ T3467] lo speed is unknown, defaulting to 1000
[  131.432669][ T3467] infiniband syz0: ib_query_port failed (-19)
[  131.462507][T13361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.473490][T13361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.493747][T13361] team0: Port device team_slave_0 added
[  131.503685][T13361] team0: Port device team_slave_1 added
[  131.555899][T13361] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.562965][T13361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.588973][T13361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.614317][   T29] kauditd_printk_skb: 193 callbacks suppressed
[  131.614394][   T29] audit: type=1326 audit(131.637:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13497 comm="syz.3.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7fb5b8f6e969 code=0x7ffc0000
[  131.643443][   T29] audit: type=1326 audit(131.637:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13497 comm="syz.3.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5b8f6e969 code=0x7ffc0000
[  131.666350][   T29] audit: type=1326 audit(131.637:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13497 comm="syz.3.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5b8f6e969 code=0x7ffc0000
[  131.690198][T13361] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.697213][T13361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.723145][T13361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.777083][T13361] hsr_slave_0: entered promiscuous mode
[  131.788227][T13361] hsr_slave_1: entered promiscuous mode
[  131.801827][T13361] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  131.811004][T13361] Cannot create hsr debugfs directory
[  131.849898][ T4635] IPVS: stop unused estimator thread 0...
[  131.883118][   T29] audit: type=1400 audit(131.917:5591): avc:  denied  { bind } for  pid=13516 comm="syz.3.4368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  131.905621][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  131.912975][   T29] audit: type=1400 audit(131.947:5592): avc:  denied  { write } for  pid=13516 comm="syz.3.4368" path="socket:[39004]" dev="sockfs" ino=39004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  131.926165][T13361] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  131.946029][T13361] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  131.957592][T13361] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  131.972421][T13361] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  132.037553][T13361] 8021q: adding VLAN 0 to HW filter on device bond0
[  132.053310][T13361] 8021q: adding VLAN 0 to HW filter on device team0
[  132.064018][ T4620] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.071508][ T4620] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.113902][ T4636] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.121261][ T4636] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.132771][T13531] netlink: 220 bytes leftover after parsing attributes in process `syz.3.4374'.
[  132.178962][   T29] audit: type=1400 audit(132.207:5593): avc:  denied  { ioctl } for  pid=13538 comm="syz.5.4379" path="socket:[39067]" dev="sockfs" ino=39067 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  132.186826][T13361] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  132.215250][T13361] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  132.241030][   T29] audit: type=1400 audit(132.267:5594): avc:  denied  { read } for  pid=13542 comm="syz.3.4380" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  132.263794][   T29] audit: type=1400 audit(132.267:5595): avc:  denied  { open } for  pid=13542 comm="syz.3.4380" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  132.286972][   T29] audit: type=1400 audit(132.267:5596): avc:  denied  { ioctl } for  pid=13542 comm="syz.3.4380" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  132.338907][   T29] audit: type=1400 audit(132.367:5597): avc:  denied  { listen } for  pid=13552 comm="syz.5.4383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  132.383067][T13361] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.530875][T13361] veth0_vlan: entered promiscuous mode
[  132.545873][T13361] veth1_vlan: entered promiscuous mode
[  132.559220][T13596] netlink: 'syz.7.4396': attribute type 3 has an invalid length.
[  132.575091][T13361] veth0_macvtap: entered promiscuous mode
[  132.584181][T13361] veth1_macvtap: entered promiscuous mode
[  132.591329][T13600] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4398'.
[  132.604336][T13600] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4398'.
[  132.616291][T13361] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.629190][T13361] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.646168][T13361] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.654987][T13361] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.663765][T13361] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.672514][T13361] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.776237][T13617] SELinux:  Context system_u:object_r:mouse_device_t:s0 is not valid (left unmapped).
[  132.806078][T13624] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4409'.
[  132.815423][T13624] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4409'.
[  132.852514][T13627] dummy0 speed is unknown, defaulting to 1000
[  132.905650][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  132.923600][T13643] netlink: 'syz.5.4416': attribute type 3 has an invalid length.
[  133.006041][T13652] netlink: 'syz.7.4420': attribute type 1 has an invalid length.
[  133.250186][T13679] syzkaller1: entered promiscuous mode
[  133.255919][T13679] syzkaller1: entered allmulticast mode
[  133.275839][T13685] dummy0: left allmulticast mode
[  133.281181][T13685] bridge0: port 3(dummy0) entered disabled state
[  133.293517][T13685] bridge_slave_0: left allmulticast mode
[  133.299238][T13685] bridge_slave_0: left promiscuous mode
[  133.305016][T13685] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.319211][T13685] bridge_slave_1: left allmulticast mode
[  133.325168][T13685] bridge_slave_1: left promiscuous mode
[  133.331011][T13685] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.341053][T13685] team0: Port device team_slave_0 removed
[  133.347625][T13685] team0: Port device team_slave_1 removed
[  133.353916][T13685] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.357304][T13692] xt_hashlimit: max too large, truncated to 1048576
[  133.368386][T13685] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.396622][T13689] dummy0 speed is unknown, defaulting to 1000
[  133.579654][T13709] loop7: detected capacity change from 0 to 512
[  133.590363][T13709] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  133.606730][T13709] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  133.615551][T13709] System zones: 1-12
[  133.620514][T13709] EXT4-fs (loop7): 1 truncate cleaned up
[  133.626766][T13709] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.653185][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.697506][T13719] loop7: detected capacity change from 0 to 512
[  133.705781][T13719] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  133.728408][T13719] EXT4-fs (loop7): 1 truncate cleaned up
[  133.736211][T13719] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.794192][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.905812][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  134.021642][T13744] netlink: 'syz.4.4461': attribute type 21 has an invalid length.
[  134.036453][T13746] loop7: detected capacity change from 0 to 256
[  134.045668][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.056001][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.063520][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.070906][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.079254][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.087320][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.094797][T13746] FAT-fs (loop7): FAT read failed (blocknr 1281)
[  134.109652][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.116756][T13746] FAT-fs (loop7): FAT read failed (blocknr 1281)
[  134.125717][T13746] FAT-fs (loop7): Directory bread(block 1285) failed
[  134.175378][T13759] dummy0 speed is unknown, defaulting to 1000
[  134.358336][T13780] dummy0 speed is unknown, defaulting to 1000
[  134.365473][T13782] netlink: 140 bytes leftover after parsing attributes in process `syz.3.4476'.
[  134.427200][T13787] 9pnet: p9_errstr2errno: server reported unknown error �<jqz�PL�������<�p�� �#�
[  134.533449][T13801] netlink: 'syz.5.4485': attribute type 1 has an invalid length.
[  134.684326][T13825] Cannot find add_set index 0 as target
[  134.760145][T13835] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4501'.
[  134.799441][T13842] netem: change failed
[  134.804613][T13840] netlink: 'syz.4.4504': attribute type 21 has an invalid length.
[  134.814323][T13840] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4504'.
[  134.863786][T13850] bridge_slave_0: left promiscuous mode
[  134.869480][T13850] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.878530][T13850] bridge_slave_1: left allmulticast mode
[  134.884257][T13850] bridge_slave_1: left promiscuous mode
[  134.889982][T13850] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.904417][T13850] team0: Port device team_slave_0 removed
[  134.906501][T13856] openvswitch: netlink: Message has 6 unknown bytes.
[  134.910428][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  134.932342][T13850] team0: Port device team_slave_1 removed
[  134.942716][T13850] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.952408][T13850] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.964813][T13865] loop8: detected capacity change from 0 to 256
[  134.971832][T13850] bond0: (slave ip6gre1): Releasing backup interface
[  134.978587][T13850] ip6gre1: left promiscuous mode
[  134.978822][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.014858][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.030888][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.037759][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.057988][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.078995][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.097389][T13865] FAT-fs (loop8): FAT read failed (blocknr 1281)
[  135.105382][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.113615][T13865] FAT-fs (loop8): FAT read failed (blocknr 1281)
[  135.121585][T13865] FAT-fs (loop8): Directory bread(block 1285) failed
[  135.151373][T13878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4521'.
[  135.160617][T13878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4521'.
[  135.319088][T13898] bridge_slave_0: left allmulticast mode
[  135.324951][T13898] bridge_slave_0: left promiscuous mode
[  135.330699][T13898] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.345224][T13898] bridge_slave_1: left allmulticast mode
[  135.351258][T13898] bridge_slave_1: left promiscuous mode
[  135.357262][T13898] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.390500][T13898] bond0: (slave bond_slave_0): Releasing backup interface
[  135.414149][T13898] bond0: (slave bond_slave_1): Releasing backup interface
[  135.445802][T13898] team0: Port device team_slave_0 removed
[  135.458451][T13898] team0: Port device team_slave_1 removed
[  135.465545][T13898] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.473240][T13898] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.483005][T13898] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.490464][T13898] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.594017][T13929] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4544'.
[  135.657282][T13936] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4547'.
[  135.747312][T13956] SELinux: syz.3.4555 (13956) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  135.862891][T13970] xt_connbytes: Forcing CT accounting to be enabled
[  135.869792][T13970] Cannot find add_set index 0 as target
[  135.905677][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  135.941810][T13976] netlink: 'syz.8.4565': attribute type 21 has an invalid length.
[  135.950305][T13976] netlink: 132 bytes leftover after parsing attributes in process `syz.8.4565'.
[  136.062068][T13995] loop8: detected capacity change from 0 to 512
[  136.070096][T13995] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  136.082727][T13995] EXT4-fs (loop8): 1 truncate cleaned up
[  136.089130][T13995] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.112669][T13995] EXT4-fs error (device loop8): ext4_expand_extra_isize_ea:2798: inode #15: comm syz.8.4574: corrupted xattr block 33: invalid header
[  136.127859][T13995] EXT4-fs error (device loop8): ext4_xattr_delete_inode:2962: inode #15: comm syz.8.4574: corrupted xattr block 33: invalid header
[  136.139657][T14002] loop7: detected capacity change from 0 to 2048
[  136.142437][T13995] EXT4-fs warning (device loop8): ext4_evict_inode:279: xattr delete (err -117)
[  136.175889][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.207429][T14002]  loop7: unable to read partition table
[  136.213605][T14002] loop7: partition table beyond EOD, truncated
[  136.220060][T14002] loop_reread_partitions: partition scan of loop7 () failed (rc=-5)
[  136.274876][T14007] dummy0 speed is unknown, defaulting to 1000
[  136.611722][T14031] xt_connbytes: Forcing CT accounting to be enabled
[  136.618651][T14031] Cannot find add_set index 0 as target
[  136.643976][   T29] kauditd_printk_skb: 250 callbacks suppressed
[  136.644000][   T29] audit: type=1400 audit(136.677:5848): avc:  denied  { name_connect } for  pid=14034 comm="syz.8.4591" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  136.674822][   T29] audit: type=1400 audit(136.707:5849): avc:  denied  { listen } for  pid=14034 comm="syz.8.4591" lport=43719 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  136.697939][   T29] audit: type=1400 audit(136.707:5850): avc:  denied  { accept } for  pid=14034 comm="syz.8.4591" lport=43719 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  136.720903][   T29] audit: type=1400 audit(136.707:5851): avc:  denied  { read } for  pid=14034 comm="syz.8.4591" lport=43719 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  136.769667][   T29] audit: type=1400 audit(136.777:5852): avc:  denied  { setopt } for  pid=14034 comm="syz.8.4591" lport=43719 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  136.793351][   T29] audit: type=1400 audit(136.807:5853): avc:  denied  { write } for  pid=14036 comm="syz.7.4592" name="001" dev="devtmpfs" ino=168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  136.817084][T14037] vhci_hcd: invalid port number 0
[  136.848808][   T29] audit: type=1326 audit(136.877:5854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14043 comm="syz.7.4595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e1c37e969 code=0x7ffc0000
[  136.872358][   T29] audit: type=1326 audit(136.877:5855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14043 comm="syz.7.4595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e1c37e969 code=0x7ffc0000
[  136.895881][   T29] audit: type=1326 audit(136.877:5856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14043 comm="syz.7.4595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e1c37e969 code=0x7ffc0000
[  136.905626][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  136.919535][   T29] audit: type=1326 audit(136.877:5857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14043 comm="syz.7.4595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e1c37e969 code=0x7ffc0000
[  137.196471][T14068] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4605'.
[  137.205735][T14068] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4605'.
[  137.271483][T14078] IPv6: NLM_F_CREATE should be specified when creating new route
[  137.317626][T14084] loop8: detected capacity change from 0 to 512
[  137.340652][T14084] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  137.376911][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  137.465755][T14104] lo: entered promiscuous mode
[  137.470810][T14104] lo: entered allmulticast mode
[  137.634323][T14125] loop7: detected capacity change from 0 to 8192
[  137.643401][   T23] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  137.657713][T14138] loop8: detected capacity change from 0 to 1024
[  137.674012][T14138] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  137.681790][   T23] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  137.749198][ T3467] Process accounting resumed
[  137.876045][T14173] netlink: 'syz.8.4651': attribute type 7 has an invalid length.
[  137.905627][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  137.941374][   T23] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  137.991443][   T23] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  138.132192][T14209] binfmt_misc: register: failed to install interpreter file ./file0
[  138.163655][T14215] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.239993][ T3467] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  138.255703][T14225] loop7: detected capacity change from 0 to 1024
[  138.265624][ T3467] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  138.271194][T14228] loop8: detected capacity change from 0 to 1024
[  138.275575][T14225] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  138.293950][T14228] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  138.326798][T14228] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  138.336434][T14228] EXT4-fs (loop8): orphan cleanup on readonly fs
[  138.343716][T14228] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  138.354907][T14228] EXT4-fs (loop8): Remounting filesystem read-only
[  138.364326][T14228] EXT4-fs (loop8): 1 orphan inode deleted
[  138.371309][T14228] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  138.407580][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.442728][T14249] loop8: detected capacity change from 0 to 128
[  138.722321][T14271] loop7: detected capacity change from 0 to 1024
[  138.737194][T14271] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  138.769399][T14271] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  138.789145][T14271] EXT4-fs (loop7): orphan cleanup on readonly fs
[  138.811438][T14271] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5899: Corrupt filesystem
[  138.824811][T14271] EXT4-fs (loop7): Remounting filesystem read-only
[  138.832889][T14271] EXT4-fs (loop7): 1 orphan inode deleted
[  138.844953][T14271] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  138.867076][T14281] random: crng reseeded on system resumption
[  138.909629][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  138.942576][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.905627][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  139.977735][T14356] __nla_validate_parse: 19 callbacks suppressed
[  139.977761][T14356] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4734'.
[  139.993509][T14356] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4734'.
[  140.268464][T14371] loop8: detected capacity change from 0 to 8192
[  140.301335][T14371] vfat: Unknown parameter '&�#�0�!T�.yՄ��������*���#�'
[  140.420376][T14397] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  140.463468][T14397] SELinux: failed to load policy
[  140.870974][T14415] netlink: 'wg1': attribute type 3 has an invalid length.
[  140.905614][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  141.221466][T14435] tipc: Started in network mode
[  141.226565][T14435] tipc: Node identity ac14140f, cluster identity 4711
[  141.270049][T14435] tipc: New replicast peer: 255.255.255.83
[  141.276029][T14435] tipc: Enabled bearer <udp:�>, priority 10
[  141.681046][   T29] kauditd_printk_skb: 156 callbacks suppressed
[  141.681111][   T29] audit: type=1400 audit(141.717:6006): avc:  denied  { map_create } for  pid=14480 comm="syz.3.4787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  141.745911][T14491] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4792'.
[  141.755455][T14491] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4792'.
[  141.755750][   T29] audit: type=1400 audit(141.717:6007): avc:  denied  { map_read map_write } for  pid=14480 comm="syz.3.4787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  141.764692][T14491] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4792'.
[  141.783783][   T29] audit: type=1400 audit(141.717:6008): avc:  denied  { prog_load } for  pid=14480 comm="syz.3.4787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  141.783808][   T29] audit: type=1400 audit(141.717:6009): avc:  denied  { bpf } for  pid=14480 comm="syz.3.4787" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  141.783825][   T29] audit: type=1400 audit(141.717:6010): avc:  denied  { perfmon } for  pid=14480 comm="syz.3.4787" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  141.783872][   T29] audit: type=1400 audit(141.717:6011): avc:  denied  { prog_run } for  pid=14480 comm="syz.3.4787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  141.783898][   T29] audit: type=1400 audit(141.747:6012): avc:  denied  { read write } for  pid=13361 comm="syz-executor" name="loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  141.783920][   T29] audit: type=1400 audit(141.747:6013): avc:  denied  { open } for  pid=13361 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  141.783943][   T29] audit: type=1400 audit(141.747:6014): avc:  denied  { ioctl } for  pid=13361 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=108 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  141.784036][   T29] audit: type=1400 audit(141.767:6015): avc:  denied  { open } for  pid=14489 comm="syz.8.4792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  141.905656][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  142.076320][T14499] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  142.093911][T14497] dvmrp0: entered allmulticast mode
[  142.108609][T14504] loop8: detected capacity change from 0 to 128
[  142.119112][T14497] dvmrp0: left allmulticast mode
[  142.124251][T14499] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  142.134538][T14504] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  142.185453][T14504] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.274083][T14504] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4798: bg 0: block 496: padding at end of block bitmap is not set
[  142.311211][T14519] xt_hashlimit: max too large, truncated to 1048576
[  142.352995][T13361] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.384856][T14530] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4810'.
[  142.399762][ T3378] tipc: Node number set to 2886997007
[  142.439021][T14537] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4812'.
[  142.491745][T14543] loop7: detected capacity change from 0 to 2048
[  142.512912][T14543] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.712995][T14565] SELinux: security_context_str_to_sid (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.) failed with errno=-22
[  142.903945][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.913048][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  142.939777][T14577] netlink: 'syz.5.4830': attribute type 3 has an invalid length.
[  143.175897][T14599] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4836'.
[  143.200869][T14599] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  143.631726][T14649] lo: entered promiscuous mode
[  143.636650][T14649] lo: entered allmulticast mode
[  143.723071][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.731219][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.739226][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.753456][T14659] loop7: detected capacity change from 0 to 2048
[  143.771400][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.779383][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.787427][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.795418][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.803448][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.811376][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.819404][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.827371][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.835592][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.843548][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.851534][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.862563][T14659] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.899776][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.905625][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  143.907756][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.922455][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.930446][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.938523][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.946639][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.954682][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.962633][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.970610][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.978608][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.986546][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  143.994651][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  144.002593][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  144.002743][T14659] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.4865: bg 0: block 408: padding at end of block bitmap is not set
[  144.010569][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  144.033132][   T23] hid-generic 0000:0000:20000000.000C: unknown main item tag 0x0
[  144.047208][T14659] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  144.056215][   T23] hid-generic 0000:0000:20000000.000C: hidraw0: <UNKNOWN> HID v0.01 Device [syz0] on syz1
[  144.129425][ T4627] EXT4-fs (loop7): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 1 with error 28
[  144.141948][ T4627] EXT4-fs (loop7): This should not happen!! Data will be lost
[  144.141948][ T4627] 
[  144.152257][ T4627] EXT4-fs (loop7): Total free blocks count 0
[  144.158568][ T4627] EXT4-fs (loop7): Free/Dirty block details
[  144.164668][ T4627] EXT4-fs (loop7): free_blocks=16
[  144.169948][ T4627] EXT4-fs (loop7): dirty_blocks=16
[  144.175203][ T4627] EXT4-fs (loop7): Block reservation details
[  144.181330][ T4627] EXT4-fs (loop7): i_reserved_data_blocks=1
[  144.188579][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.268967][T14696] lo: left promiscuous mode
[  144.273620][T14696] lo: left allmulticast mode
[  144.279282][T14696] dummy0: left promiscuous mode
[  144.284732][T14696] 0�X���: left allmulticast mode
[  144.341530][T14699] binfmt_misc: register: failed to install interpreter file ./file2
[  144.448586][T14704] syzkaller0: entered promiscuous mode
[  144.454238][T14704] syzkaller0: entered allmulticast mode
[  144.730099][T14740] netlink: 'syz.3.4900': attribute type 13 has an invalid length.
[  144.738230][T14740] netlink: 24859 bytes leftover after parsing attributes in process `syz.3.4900'.
[  144.883447][T14762] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  144.892371][T14762] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  144.905628][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  144.921540][T14766] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4913'.
[  145.219929][T14795] SELinux: failed to load policy
[  145.262486][T14801] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4929'.
[  145.326030][T14814] geneve2: entered promiscuous mode
[  145.331360][T14814] geneve2: entered allmulticast mode
[  145.385368][T14824] netem: change failed
[  145.546689][T14856] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4954'.
[  145.612492][T14871] netlink: 'syz.5.4960': attribute type 10 has an invalid length.
[  145.620888][T14870] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4961'.
[  145.621518][T14867] loop8: detected capacity change from 0 to 512
[  145.659262][T14867] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.701325][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.737189][T14886] rdma_op ffff888118f43980 conn xmit_rdma 0000000000000000
[  145.756969][T14892] 9pnet_fd: Insufficient options for proto=fd
[  145.796696][T14900] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  145.806262][T14900] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  145.839525][T14905] ALSA: seq fatal error: cannot create timer (-19)
[  145.905632][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  146.206730][T14957] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  146.215637][T14957] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  146.268817][T14963] netlink: 56 bytes leftover after parsing attributes in process `syz.5.5000'.
[  146.708681][   T29] kauditd_printk_skb: 265 callbacks suppressed
[  146.708696][   T29] audit: type=1400 audit(146.737:6281): avc:  denied  { write } for  pid=14996 comm="syz.5.5016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  146.709369][T14997] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5016'.
[  146.752489][   T29] audit: type=1400 audit(146.787:6282): avc:  denied  { ioctl } for  pid=14998 comm="syz.3.5017" path="socket:[43741]" dev="sockfs" ino=43741 ioctlcmd=0xb101 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  146.783654][   T29] audit: type=1400 audit(146.817:6283): avc:  denied  { write } for  pid=15000 comm="syz.3.5018" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  146.831149][   T29] audit: type=1400 audit(146.857:6284): avc:  denied  { name_connect } for  pid=15006 comm="syz.5.5021" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  146.856083][T15007] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15007 comm=syz.5.5021
[  146.873528][   T29] audit: type=1400 audit(146.887:6285): avc:  denied  { create } for  pid=15006 comm="syz.5.5021" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  146.893729][   T29] audit: type=1400 audit(146.887:6286): avc:  denied  { write } for  pid=15006 comm="syz.5.5021" path="socket:[43751]" dev="sockfs" ino=43751 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  146.917558][   T29] audit: type=1400 audit(146.887:6287): avc:  denied  { nlmsg_read } for  pid=15006 comm="syz.5.5021" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  146.937844][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  146.944531][   T29] audit: type=1400 audit(146.907:6288): avc:  denied  { read } for  pid=15006 comm="syz.5.5021" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  146.969513][   T29] audit: type=1400 audit(146.997:6289): avc:  denied  { ioctl } for  pid=15009 comm="syz.5.5022" path="socket:[43752]" dev="sockfs" ino=43752 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  146.996805][T15010] wireguard0: entered promiscuous mode
[  147.002314][T15010] wireguard0: entered allmulticast mode
[  147.161773][T15033] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5032'.
[  147.173371][T15033] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5032'.
[  147.203447][   T29] audit: type=1400 audit(147.237:6290): avc:  denied  { wake_alarm } for  pid=15040 comm="syz.5.5033" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  147.300772][T15057] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  147.406376][T15073] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5049'.
[  147.634868][T15104] netlink: 'syz.3.5064': attribute type 1 has an invalid length.
[  147.655964][T15107] netlink: 'syz.5.5065': attribute type 10 has an invalid length.
[  147.658512][T15109] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5066'.
[  147.665551][T15107] team0: Device hsr_slave_0 failed to register rx_handler
[  147.687037][T15109] bond0: entered promiscuous mode
[  147.692529][T15109] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.811486][T15127] rdma_op ffff888118f42d80 conn xmit_rdma 0000000000000000
[  147.905644][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  148.737197][T15224] loop8: detected capacity change from 0 to 512
[  148.754375][T15224] EXT4-fs (loop8): 1 orphan inode deleted
[  148.762790][T15229] netlink: 'syz.7.5118': attribute type 1 has an invalid length.
[  148.770301][T15224] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.783107][ T4627] EXT4-fs error (device loop8): ext4_release_dquot:6971: comm kworker/u8:57: Failed to release dquot type 1
[  148.834715][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.905704][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  149.058398][T15258] netlink: 'wg1': attribute type 3 has an invalid length.
[  149.238950][T15264] loop7: detected capacity change from 0 to 512
[  149.270074][T15266] wireguard0: entered promiscuous mode
[  149.275584][T15266] wireguard0: entered allmulticast mode
[  149.284745][T15264] EXT4-fs (loop7): 1 orphan inode deleted
[  149.291169][T15264] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.312617][ T4627] EXT4-fs error (device loop7): ext4_release_dquot:6971: comm kworker/u8:57: Failed to release dquot type 1
[  149.336789][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.354876][T15276] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  149.445339][T15287] bond1: entered promiscuous mode
[  149.451111][T15287] 8021q: adding VLAN 0 to HW filter on device bond1
[  149.592001][T15305] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  149.592001][T15305]    program syz.7.5152 not setting count and/or reply_len properly
[  149.845452][T15331] loop8: detected capacity change from 0 to 512
[  149.875839][T15331] EXT4-fs: Ignoring removed nobh option
[  149.895448][T15331] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.5163: invalid indirect mapped block 256 (level 2)
[  149.909041][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  149.917668][T15331] EXT4-fs (loop8): 2 truncates cleaned up
[  149.927086][T15331] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.947598][T15331] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.5163: bg 0: block 5: invalid block bitmap
[  149.969963][T15331] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  149.982680][T15331] EXT4-fs (loop8): This should not happen!! Data will be lost
[  149.982680][T15331] 
[  149.992538][T15331] EXT4-fs (loop8): Total free blocks count 0
[  149.998807][T15331] EXT4-fs (loop8): Free/Dirty block details
[  150.004910][T15331] EXT4-fs (loop8): free_blocks=0
[  150.010002][T15331] EXT4-fs (loop8): dirty_blocks=66
[  150.015408][T15331] EXT4-fs (loop8): Block reservation details
[  150.021820][T15331] EXT4-fs (loop8): i_reserved_data_blocks=66
[  150.033010][ T4635] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  150.185564][T15371] xt_hashlimit: max too large, truncated to 1048576
[  150.233518][T15378] dvmrp0: entered allmulticast mode
[  150.242836][T15378] dvmrp0: left allmulticast mode
[  150.324692][T15390] netlink: 'syz.7.5189': attribute type 4 has an invalid length.
[  150.342881][T15392] SELinux: security_context_str_to_sid (aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.) failed with errno=-22
[  150.905620][    C0] dccp_v4_rcv: dropped packet with invalid checksum
[  150.994928][T15424] sd 0:0:1:0: device reset
[  151.035251][T15432] loop7: detected capacity change from 0 to 512
[  151.061396][T15432] EXT4-fs warning (device loop7): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  151.076879][T15432] EXT4-fs (loop7): mount failed
[  151.125498][T15446] loop9: detected capacity change from 0 to 7
[  151.139911][T15446] Buffer I/O error on dev loop9, logical block 0, async page read
[  151.147984][T15446] Buffer I/O error on dev loop9, logical block 0, async page read
[  151.156055][T15446]  loop9: unable to read partition table
[  151.163799][T15446] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  151.163799][T15446] 
U�������) failed (rc=-5)
[  151.222797][T15453] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.232094][T15453] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.265429][T15457] sd 0:0:1:0: device reset
[  151.477426][T15481] loop7: detected capacity change from 0 to 164
[  151.487309][T15481] rock: directory entry would overflow storage
[  151.493748][T15481] rock: sig=0x4f50, size=4, remaining=3
[  151.499366][T15481] iso9660: Corrupted directory entry in block 4 of inode 1792
[  151.566131][T15491] __nla_validate_parse: 11 callbacks suppressed
[  151.566173][T15491] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5230'.
[  151.743063][   T29] kauditd_printk_skb: 233 callbacks suppressed
[  151.743099][   T29] audit: type=1400 audit(151.777:6521): avc:  denied  { read write } for  pid=15494 comm=77DEA305FF07 name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  151.743755][T15499] random: crng reseeded on system resumption
[  151.749531][   T29] audit: type=1400 audit(151.777:6522): avc:  denied  { open } for  pid=15494 comm=77DEA305FF07 path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  151.811333][   T29] audit: type=1400 audit(151.777:6523): avc:  denied  { append } for  pid=15495 comm="syz.7.5232" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  151.834856][   T29] audit: type=1400 audit(151.777:6524): avc:  denied  { open } for  pid=15495 comm="syz.7.5232" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  151.858281][   T29] audit: type=1400 audit(151.807:6525): avc:  denied  { ioctl } for  pid=15494 comm=77DEA305FF07 path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  151.883086][   T29] audit: type=1326 audit(151.837:6526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15495 comm="syz.7.5232" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e1c37e969 code=0x0
[  151.956098][   T29] audit: type=1400 audit(151.987:6527): avc:  denied  { append } for  pid=15501 comm="syz.8.5233" name="loop9" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  151.956910][T15502] loop9: detected capacity change from 0 to 7
[  151.993084][T15502] Buffer I/O error on dev loop9, logical block 0, async page read
[  152.012659][T15502] Buffer I/O error on dev loop9, logical block 0, async page read
[  152.020580][T15502]  loop9: unable to read partition table
[  152.033438][T15502] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  152.033438][T15502] 
U�������) failed (rc=-5)
[  152.050419][   T29] audit: type=1400 audit(152.087:6528): avc:  denied  { read } for  pid=15513 comm="syz.3.5237" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  152.076040][   T29] audit: type=1400 audit(152.107:6529): avc:  denied  { open } for  pid=15513 comm="syz.3.5237" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  152.104783][T15514] sd 0:0:1:0: device reset
[  152.114833][T15516] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5238'.
[  152.125778][   T29] audit: type=1400 audit(152.137:6530): avc:  denied  { ioctl } for  pid=15513 comm="kfree" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  152.151846][T15516] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  152.253729][T15531] loop8: detected capacity change from 0 to 128
[  152.263067][T15531] FAT-fs (loop8): Directory bread(block 162) failed
[  152.269816][T15531] FAT-fs (loop8): Directory bread(block 163) failed
[  152.276470][T15531] FAT-fs (loop8): Directory bread(block 164) failed
[  152.284370][T15531] FAT-fs (loop8): Directory bread(block 165) failed
[  152.291688][T15531] FAT-fs (loop8): Directory bread(block 166) failed
[  152.298465][T15531] FAT-fs (loop8): Directory bread(block 167) failed
[  152.313752][T15531] FAT-fs (loop8): Directory bread(block 168) failed
[  152.321570][T15531] FAT-fs (loop8): Directory bread(block 169) failed
[  152.332858][T15531] FAT-fs (loop8): Directory bread(block 162) failed
[  152.339527][T15531] FAT-fs (loop8): Directory bread(block 163) failed
[  152.345662][T15534] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  152.346667][T15531] syz.8.5249: attempt to access beyond end of device
[  152.346667][T15531] loop8: rw=3, sector=226, nr_sectors = 6 limit=128
[  152.370336][T15531] syz.8.5249: attempt to access beyond end of device
[  152.370336][T15531] loop8: rw=2051, sector=232, nr_sectors = 2 limit=128
[  152.398157][T15531] syz.8.5249: attempt to access beyond end of device
[  152.398157][T15531] loop8: rw=3, sector=234, nr_sectors = 6 limit=128
[  152.411430][T15531] syz.8.5249: attempt to access beyond end of device
[  152.411430][T15531] loop8: rw=2051, sector=240, nr_sectors = 2 limit=128
[  152.441457][T15537] program syz.3.5253 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  152.642483][T15552] loop7: detected capacity change from 0 to 128
[  152.649138][T15551] sd 0:0:1:0: device reset
[  152.657316][T15552] FAT-fs (loop7): Directory bread(block 162) failed
[  152.671738][T15552] FAT-fs (loop7): Directory bread(block 163) failed
[  152.688546][T15552] FAT-fs (loop7): Directory bread(block 164) failed
[  152.695651][T15552] FAT-fs (loop7): Directory bread(block 165) failed
[  152.703106][T15552] FAT-fs (loop7): Directory bread(block 166) failed
[  152.712524][T15552] FAT-fs (loop7): Directory bread(block 167) failed
[  152.720526][T15552] FAT-fs (loop7): Directory bread(block 168) failed
[  152.727549][T15552] FAT-fs (loop7): Directory bread(block 169) failed
[  152.748444][T15552] FAT-fs (loop7): Directory bread(block 162) failed
[  152.756466][T15552] FAT-fs (loop7): Directory bread(block 163) failed
[  152.763332][T15552] syz.7.5267: attempt to access beyond end of device
[  152.763332][T15552] loop7: rw=3, sector=226, nr_sectors = 6 limit=128
[  152.778248][T15552] syz.7.5267: attempt to access beyond end of device
[  152.778248][T15552] loop7: rw=2051, sector=232, nr_sectors = 2 limit=128
[  152.795690][T15552] syz.7.5267: attempt to access beyond end of device
[  152.795690][T15552] loop7: rw=3, sector=234, nr_sectors = 6 limit=128
[  152.809526][T15552] syz.7.5267: attempt to access beyond end of device
[  152.809526][T15552] loop7: rw=2051, sector=240, nr_sectors = 2 limit=128
[  152.985141][T15567] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  152.993995][T15567] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.002792][T15567] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.011372][T15567] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.024679][T15567] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.033130][T15567] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.041534][T15567] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.050055][T15567] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  153.070991][T15567] vxlan0: left promiscuous mode
[  153.078286][T15567] bond1: left promiscuous mode
[  153.108022][T15567] ip6gre3: left allmulticast mode
[  153.132873][ T3382] dummy0 speed is unknown, defaulting to 1000
[  153.139232][ T3382] �yz2: Port: 1 Link DOWN
[  153.234991][T15592] loop7: detected capacity change from 0 to 512
[  153.251627][T15592] EXT4-fs (loop7): orphan cleanup on readonly fs
[  153.260186][T15592] EXT4-fs error (device loop7): ext4_orphan_get:1417: comm syz.7.5272: bad orphan inode 13
[  153.288430][T15592] ext4_test_bit(bit=12, block=18) = 1
[  153.293932][T15592] is_bad_inode(inode)=0
[  153.298163][T15592] NEXT_ORPHAN(inode)=2130706432
[  153.303039][T15592] max_ino=32
[  153.306231][T15592] i_nlink=1
[  153.323847][T15592] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  153.364807][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.485162][T15616] syzkaller0: entered promiscuous mode
[  153.490924][T15616] syzkaller0: entered allmulticast mode
[  153.507338][T15625] loop7: detected capacity change from 0 to 4096
[  153.524761][T15628] loop8: detected capacity change from 0 to 256
[  153.525431][T15625] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.568884][T15625] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #15: comm syz.7.5288: corrupted inode contents
[  153.587362][T15625] EXT4-fs error (device loop7): ext4_dirty_inode:6103: inode #15: comm syz.7.5288: mark_inode_dirty error
[  153.615582][T15625] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #15: comm syz.7.5288: corrupted inode contents
[  153.652578][T15625] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #15: comm syz.7.5288: mark_inode_dirty error
[  153.664650][T15625] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #15: comm syz.7.5288: corrupted inode contents
[  153.678363][T15625] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #15: comm syz.7.5288: mark_inode_dirty error
[  153.692203][T15625] EXT4-fs error (device loop7): ext4_do_update_inode:5211: inode #15: comm syz.7.5288: corrupted inode contents
[  153.704629][T15625] EXT4-fs error (device loop7): ext4_truncate:4255: inode #15: comm syz.7.5288: mark_inode_dirty error
[  153.717621][T15625] EXT4-fs error (device loop7) in ext4_setattr:5628: Corrupt filesystem
[  153.752916][ T9583] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.993504][T15656] netlink: 52 bytes leftover after parsing attributes in process `syz.8.5301'.
[  154.020299][T15660] loop7: detected capacity change from 0 to 256
[  154.308141][T15675] netlink: 3 bytes leftover after parsing attributes in process `syz.5.5311'.
[  154.317978][T15675] 0�X���: renamed from caif0
[  154.325032][T15675] 0�X���: entered allmulticast mode
[  154.330645][T15675] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  154.392884][T15685] netlink: 64 bytes leftover after parsing attributes in process `syz.7.5316'.
[  154.421219][T15687] loop7: detected capacity change from 0 to 512
[  154.427877][T15687] EXT4-fs: Ignoring removed nobh option
[  154.445497][T15687] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.5317: invalid indirect mapped block 256 (level 2)
[  154.459305][T15687] EXT4-fs (loop7): 2 truncates cleaned up
[  154.466772][T15687] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.485795][T15687] EXT4-fs error (device loop7): ext4_validate_block_bitmap:432: comm syz.7.5317: bg 0: block 5: invalid block bitmap
[  154.498740][T15687] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  154.511183][T15687] EXT4-fs (loop7): This should not happen!! Data will be lost
[  154.511183][T15687] 
[  154.520884][T15687] EXT4-fs (loop7): Total free blocks count 0
[  154.526957][T15687] EXT4-fs (loop7): Free/Dirty block details
[  154.532905][T15687] EXT4-fs (loop7): free_blocks=0
[  154.537845][T15687] EXT4-fs (loop7): dirty_blocks=66
[  154.543003][T15687] EXT4-fs (loop7): Block reservation details
[  154.548999][T15687] EXT4-fs (loop7): i_reserved_data_blocks=66
[  154.549929][ T4635] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  156.989269][T15699] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5322'.
[  157.009334][T15699] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5322'.
[  157.015399][   T29] kauditd_printk_skb: 88 callbacks suppressed
[  157.015414][   T29] audit: type=1400 audit(157.037:6619): avc:  denied  { create } for  pid=15704 comm="syz.7.5324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  157.060596][   T29] audit: type=1400 audit(157.077:6620): avc:  denied  { write } for  pid=15704 comm="syz.7.5324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  157.100921][T15713] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5327'.
[  157.125265][   T29] audit: type=1400 audit(157.157:6621): avc:  denied  { module_request } for  pid=15712 comm="syz.7.5327" kmod="tcp_" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  157.180709][T15717] loop8: detected capacity change from 0 to 4096
[  157.188839][   T29] audit: type=1400 audit(157.217:6622): avc:  denied  { cpu } for  pid=15720 comm="syz.7.5331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  157.217711][   T29] audit: type=1326 audit(157.247:6623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.223159][T15717] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.240686][   T29] audit: type=1326 audit(157.247:6624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.313572][   T29] audit: type=1326 audit(157.287:6625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.336571][   T29] audit: type=1326 audit(157.287:6626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.359460][   T29] audit: type=1326 audit(157.287:6627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.382464][   T29] audit: type=1326 audit(157.287:6628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15706 comm="syz.4.5335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7faaf65be969 code=0x7ffc0000
[  157.459238][T15717] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #15: comm syz.8.5328: corrupted inode contents
[  157.476323][T15717] EXT4-fs error (device loop8): ext4_dirty_inode:6103: inode #15: comm syz.8.5328: mark_inode_dirty error
[  157.488669][T15717] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #15: comm syz.8.5328: corrupted inode contents
[  157.507808][T15717] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #15: comm syz.8.5328: mark_inode_dirty error
[  157.527334][T15717] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #15: comm syz.8.5328: corrupted inode contents
[  157.539882][T15717] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #15: comm syz.8.5328: mark_inode_dirty error
[  157.574607][T15717] EXT4-fs error (device loop8): ext4_do_update_inode:5211: inode #15: comm syz.8.5328: corrupted inode contents
[  157.591501][T15717] EXT4-fs error (device loop8): ext4_truncate:4255: inode #15: comm syz.8.5328: mark_inode_dirty error
[  157.605451][T15717] EXT4-fs error (device loop8) in ext4_setattr:5628: Corrupt filesystem
[  157.630919][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.644574][T15753] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5345'.
[  157.820088][T15773] loop8: detected capacity change from 0 to 2048
[  157.874976][T15773] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.927620][T15787] netlink: 'syz.4.5360': attribute type 1 has an invalid length.
[  157.950996][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.163317][T15809] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5369'.
[  158.228511][T15816] pimreg: entered allmulticast mode
[  158.266729][T15818] 8021q: adding VLAN 0 to HW filter on device bond1
[  158.275392][T15818] bridge0: port 1(bond1) entered blocking state
[  158.281712][T15818] bridge0: port 1(bond1) entered disabled state
[  158.289342][T15818] bond1: entered allmulticast mode
[  158.296148][T15818] bond1: entered promiscuous mode
[  158.303175][T15818] bridge0: port 1(bond1) entered blocking state
[  158.309536][T15818] bridge0: port 1(bond1) entered forwarding state
[  158.316373][T15816] pimreg: left allmulticast mode
[  158.334517][ T4636] bridge0: port 1(bond1) entered disabled state
[  158.617428][T15869] geneve2: entered promiscuous mode
[  158.622925][T15869] geneve2: entered allmulticast mode
[  158.832383][T15886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5402'.
[  158.909862][T15898] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5406'.
[  158.971875][T15906] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  158.980393][T15906] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  158.988781][T15906] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  158.997200][T15906] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.007259][T15906] geneve2: entered promiscuous mode
[  159.012716][T15906] geneve2: entered allmulticast mode
[  159.021151][T15906] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.029847][T15906] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.038401][T15906] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.047101][T15906] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.095473][T15913] 9pnet: p9_errstr2errno: server reported unknown error �<jqz�PL�������<�p�� �#���v�g�B�B���[R��ę�
[  159.184663][T15917] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5418'.
[  159.216975][T15917] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5418'.
[  159.289485][T15925] loop7: detected capacity change from 0 to 128
[  159.318094][T15925] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  159.338560][T15925] EXT4-fs error (device loop7): __ext4_find_entry:1628: inode #2: comm syz.7.5421: checksumming directory block 0
[  159.384777][ T9583] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.498282][T15948] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5431'.
[  159.601718][T15960] loop8: detected capacity change from 0 to 2048
[  159.609340][T15956] bond2: entered promiscuous mode
[  159.614560][T15956] bond2: entered allmulticast mode
[  159.621529][T15956] 8021q: adding VLAN 0 to HW filter on device bond2
[  159.643014][T15960] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.706717][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.003130][T16016] xt_hashlimit: max too large, truncated to 1048576
[  160.071368][T16021] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.079609][T16021] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.087779][T16021] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.096058][T16021] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.096758][T16022] vhci_hcd: invalid port number 11
[  160.110068][T16022] vhci_hcd: default hub control req: 040d v0009 i000b l0
[  160.117616][T16021] geneve2: entered promiscuous mode
[  160.122978][T16021] geneve2: entered allmulticast mode
[  160.145325][T16021] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.153782][T16021] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.162318][T16021] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.170696][T16021] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.406462][T16071] geneve2: entered promiscuous mode
[  160.411867][T16071] geneve2: entered allmulticast mode
[  160.618508][T16107] program syz.7.5505 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  160.684827][T16115] loop7: detected capacity change from 0 to 128
[  160.706682][T16115] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  160.754019][T16115] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  160.802761][ T4627] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  161.174866][T16176] binfmt_misc: register: failed to install interpreter file ./file2
[  161.439051][T16208] syzkaller0: entered promiscuous mode
[  161.797956][T16266] vti0: entered promiscuous mode
[  162.060126][T16289] xt_CT: You must specify a L4 protocol and not use inversions on it
[  162.138771][   T29] kauditd_printk_skb: 232 callbacks suppressed
[  162.138786][   T29] audit: type=1400 audit(162.160:6861): avc:  denied  { create } for  pid=16295 comm="syz.3.5592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  162.204488][   T29] audit: type=1400 audit(162.200:6862): avc:  denied  { write } for  pid=16295 comm="syz.3.5592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  162.264653][   T29] audit: type=1326 audit(162.290:6863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.288324][   T29] audit: type=1326 audit(162.290:6864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.312045][   T29] audit: type=1326 audit(162.290:6865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.335443][   T29] audit: type=1326 audit(162.290:6866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.358936][   T29] audit: type=1326 audit(162.290:6867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.382362][   T29] audit: type=1326 audit(162.290:6868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.406103][   T29] audit: type=1326 audit(162.290:6869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.429532][   T29] audit: type=1326 audit(162.290:6870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16303 comm="syz.8.5595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe09356e969 code=0x7ffc0000
[  162.678960][T16350] __nla_validate_parse: 18 callbacks suppressed
[  162.678976][T16350] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5611'.
[  162.694775][T16350] netlink: 'syz.7.5611': attribute type 7 has an invalid length.
[  162.702744][T16350] netlink: 'syz.7.5611': attribute type 8 has an invalid length.
[  162.710752][T16350] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5611'.
[  162.737276][T16351] bond1: entered promiscuous mode
[  162.742424][T16351] bond1: entered allmulticast mode
[  162.771617][T16351] 8021q: adding VLAN 0 to HW filter on device bond1
[  162.819543][T16351] bond1 (unregistering): Released all slaves
[  162.901993][T16371] loop7: detected capacity change from 0 to 128
[  163.083043][T16388] rdma_op ffff888130a50d80 conn xmit_rdma 0000000000000000
[  163.165806][T16395] blktrace: Concurrent blktraces are not allowed on loop6
[  163.734202][T16440] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16440 comm=syz.8.5652
[  164.241012][T16482] veth0_macvtap: left promiscuous mode
[  164.249388][T16482] macvtap0: refused to change device tx_queue_len
[  164.466902][T16506] vhci_hcd: default hub control req: 8010 v0002 i0000 l86
[  164.979110][T16551] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5702'.
[  165.325989][T16575] binfmt_misc: register: failed to install interpreter file ./file2
[  165.340839][T16578] Invalid ELF header magic: != ELF
[  165.567188][T16602] loop8: detected capacity change from 0 to 1024
[  165.591631][T16602] EXT4-fs: inline encryption not supported
[  165.597632][T16602] EXT4-fs: Ignoring removed bh option
[  165.622034][T16602] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.655894][T16602] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4113: comm syz.8.5724: Allocating blocks 385-513 which overlap fs metadata
[  165.691131][T16602] EXT4-fs (loop8): Remounting filesystem read-only
[  165.699747][T16600] EXT4-fs (loop8): pa ffff8881065cb1c0: logic 16, phys. 129, len 24
[  165.718245][T13361] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.741234][T16597] ==================================================================
[  165.749357][T16597] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  165.757967][T16597] 
[  165.760284][T16597] write to 0xffff888116af5a68 of 8 bytes by task 16604 on cpu 1:
[  165.768003][T16597]  shmem_file_splice_read+0x444/0x5d0
[  165.773394][T16597]  splice_direct_to_actor+0x26c/0x680
[  165.778779][T16597]  do_splice_direct+0xda/0x150
[  165.783555][T16597]  do_sendfile+0x380/0x640
[  165.787989][T16597]  __x64_sys_sendfile64+0x105/0x150
[  165.793194][T16597]  x64_sys_call+0xb39/0x2fb0
[  165.797779][T16597]  do_syscall_64+0xd0/0x1a0
[  165.802281][T16597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.808165][T16597] 
[  165.810479][T16597] write to 0xffff888116af5a68 of 8 bytes by task 16597 on cpu 0:
[  165.818185][T16597]  shmem_file_splice_read+0x444/0x5d0
[  165.823593][T16597]  splice_direct_to_actor+0x26c/0x680
[  165.828962][T16597]  do_splice_direct+0xda/0x150
[  165.833719][T16597]  do_sendfile+0x380/0x640
[  165.838227][T16597]  __x64_sys_sendfile64+0x105/0x150
[  165.843421][T16597]  x64_sys_call+0xb39/0x2fb0
[  165.848004][T16597]  do_syscall_64+0xd0/0x1a0
[  165.852496][T16597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.858381][T16597] 
[  165.860690][T16597] value changed: 0x00000000000025ab -> 0x00000000000025ac
[  165.867781][T16597] 
[  165.870094][T16597] Reported by Kernel Concurrency Sanitizer on:
[  165.876237][T16597] CPU: 0 UID: 0 PID: 16597 Comm: syz.5.5723 Tainted: G        W           6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(voluntary) 
[  165.890295][T16597] Tainted: [W]=WARN
[  165.894085][T16597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  165.904128][T16597] ==================================================================
[  165.916823][T16612] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  165.948629][   T10] IPVS: starting estimator thread 0...
[  166.070680][T16614] IPVS: using max 2976 ests per chain, 148800 per kthread