last executing test programs:

2m2.944299375s ago: executing program 4 (id=131):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
ioctl$TIOCL_SCROLLCONSOLE(r0, 0x4b33, 0x0)

2m2.600952701s ago: executing program 4 (id=132):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000c50000002300000095000000000000"], 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x48, &(0x7f00000002c0), 0x4)
r2 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x40, 0x3, 0x8}, 0x18)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000001000000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
epoll_create1(0x0)
openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r4, 0x400452c8, &(0x7f0000000100))
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r6=>0x0})
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x0)
sendto$packet(r5, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r6}, 0x14)
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000380)={@mcast2, 0x7, r6})
r8 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'})
sendmsg$inet6(r8, &(0x7f0000000340)={&(0x7f00000000c0)={0xa, 0x4e25, 0x4001, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="24000000000000002900000032000000fe8000000000000000000000000000aa", @ANYRES16=r0, @ANYBLOB="000000006ea5e50d644920f65b74812687f4d10d15dcca96564dea8e895addf105b9c16f68e3"], 0x28}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000240)={'syztnl1\x00', <r9=>0x0, 0x29, 0xeb, 0xf9, 0x100, 0x0, @mcast2, @remote, 0x7, 0x20, 0x6}})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r10, r11, 0x2}, 0x10)
socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r8, @ANYBLOB="000129bd7000fddbdf250800000038000180140002006970766c616e30000000000000000000080003000200000008000100", @ANYRES32=r6, @ANYBLOB="00004715", @ANYRES32=0x0, @ANYBLOB="08000300000000006000018008000300010000001400020073797a6b616c6c6572300000000000001400020076657468305f6d616376746170000000080003000100000008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="1400020067656e65766530000000000000000000"], 0xac}}, 0x20000040)

2m1.800202972s ago: executing program 4 (id=134):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0xc4}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000000)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040), 0x8)
shutdown(r1, 0x0)

2m1.325504042s ago: executing program 4 (id=135):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000002030108000000000000000020080001000300002308000100020000270800054080000010"], 0x34}, 0x1, 0x0, 0x0, 0x2881}, 0x20044058)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendto(r0, &(0x7f00000003c0)="a99bfb9ce8ec4c9ee319638640bd6843195e8d12e032232d6e0c7dc962d21fcaef5b839983ac5a2a877f8d849e92721b2abfa386efd83b4e3cfd7bbbf43655fcfadf3eee37e60beac0ca36f0cc8efd2960a1974c25c4910cd557b9b013b248f5ac12e044e37b8912e348d8d1a717a9faa174688746ff", 0x76, 0x40008, &(0x7f0000000440)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx2\x00'}, 0x80)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x23, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
getsockopt$inet6_mreq(r5, 0x3a, 0x0, 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$binfmt_script(r6, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
pipe2(&(0x7f0000000040), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x2, &(0x7f0000000c00)=ANY=[@ANYBLOB="b702000008000000bfa30000000000000703000000feffff7a0af0ff0000000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000001007d60b7030000010000006a0a00fe00002020850000000d000000b700000001000000950000000000000075cdc4b57b0c657500639100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fb484510bef2e4872f5c2fe6faaf75e5cc4051adec7f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5df11cc2afb53611cc32a790bce5a6f087ae8f5e64be2c9d2d29db3d36dd015c7bd3f15aa6aadbeab2a01685108e61aa000000000000000000000000008b798b4f7458d1863cc67c4c6a06e828e5216f601b19db1af1b5d356d0"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x1, 0x80}, 0x10}, 0x90)
madvise(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000140))

1m29.37173453s ago: executing program 4 (id=135):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000002030108000000000000000020080001000300002308000100020000270800054080000010"], 0x34}, 0x1, 0x0, 0x0, 0x2881}, 0x20044058)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendto(r0, &(0x7f00000003c0)="a99bfb9ce8ec4c9ee319638640bd6843195e8d12e032232d6e0c7dc962d21fcaef5b839983ac5a2a877f8d849e92721b2abfa386efd83b4e3cfd7bbbf43655fcfadf3eee37e60beac0ca36f0cc8efd2960a1974c25c4910cd557b9b013b248f5ac12e044e37b8912e348d8d1a717a9faa174688746ff", 0x76, 0x40008, &(0x7f0000000440)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx2\x00'}, 0x80)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x23, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
getsockopt$inet6_mreq(r5, 0x3a, 0x0, 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$binfmt_script(r6, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
pipe2(&(0x7f0000000040), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x2, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x1, 0x80}, 0x10}, 0x90)
madvise(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000140))

1m26.607338594s ago: executing program 1 (id=170):
socket$kcm(0x2, 0x7, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
clock_getres(0x3, &(0x7f00000001c0))
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='afs_sent_data\x00'}, 0x10)
sched_setscheduler(0x0, 0x0, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000003c0), 0x2, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_proto_private(r2, 0x89e0, &(0x7f0000003180))
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r1, &(0x7f0000002140)=[{&(0x7f00000010c0)=""/29, 0x1d}], 0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000200)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',obj_user=&#@,euid=', @ANYRESDEC=0xee01, @ANYBLOB=',func=FILE_CHECK,\x00'], 0x2, 0x9f4, &(0x7f0000001100)="$eJzs3ctvW9edB/Dv1cNWlMB2Ek8mYyQx7YwdJdHIkjyxx8hixpZoWxk9BpIMxJhFnInlgWG1aZMWSIICdYCiqwYt0KKLdhd01VWAbJpNkV27a1ddFCjyLwRduSsVl6QsSiJFydUrzucjkLyP3z3ndx+8RyQvecJXy9LhVWNLS7XbA45f+/UuZMw+dmn8i48/+ai8fXg3B9KdV4rfJH1JKklPkqeT3rHx2ZmpDgXdSW4k+TwpkhxM/XFTbqT4cR5bGf88xS/Lets6sNmS6WSJr7W9Pv4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGA/KsbGh4dHigOZmL72eqUuqawzNj47U2Rpaf2c5WXqPqv1+l181rHepChv6etb7ur76aMrs59KUjmZZ+pjz9Q6JE9fPnj0qSOvPtnTtbx8u2z+IQc3X+y7739w583FxYV3diSR/e9KdXpibmZi6uKVamVibqZy4dy54TNXL89VLk9MVueuz81Xpypjs9WL8zOzlYGxFysjFy6crVSHrs9cm74yPjRZXZ54/t9Gh4fPVV4b+p/qxdm5mekzrw3NjV2dmJycmL5SGRjrSTJ8row5Xx6I/z0xX5mvXpyqVG7dXlw4uyan7qw5fsugkU5rUgaNdgoaHR4dHRkZHR35sNF79v0J51658Mr54eGe4TWyLmKHDlr2l0fa7+btP4nDA+qqt//JZCYynWt5PZWWf2MZz2xmMtVmfsNy+3/qTHXDepvb/0Yr39M0+1h5dzLPNUb72rT/bXLZvb93834+yJ28mcUsZiHv7HiN2QdrvfJ3JdVMZyJzmclEpnKxNqXSmFLJhZzLuQznjVzN8cylksuZyGSqmcv1zGU+1doRNZbZVHMx85nJbCoZyFheTCUjuZALOZtKqhnK9czkWqZzJeO5WCvlVm7XtvvZjbbYctDIZoJGNwha15hvuf2vrv3nhK+d7T+JwwNaarT/BzqHDoztRkIAAADAtvuX3+fQ0Sd+95ekyLO19+UvT0xWh/c6LQAAAGAb1S7Xe6Z86C2Hnk3h9T8AAAA8bIrad+yKJP05Xh9a/iaUNwEAAADgIVH7/P+5FMdXJnj9DwAAAA+Zzr+x3zGiGFz++d/KzfrjzUZEfazovzwxWR0am5l8dSSna78yUPumwbrSupOit/b1g5dyoh51or/+2L9SYllnXxk1MvTqSF7KycaKDDxfPjw/0CJytB75Qj3yhebI7qyKPFtGAsDD7uQG7fFm2/+XMliPGDxWa/J7jrVog4e1rACwX9zvY+dvjS7NWrT/jYjn2rX//77B6/8y4oncOl6/pGAob+XtLOZmBtO44uB4q1KXeyOoX4Yw2OHdgP7GJQt/PN+VwXXvB/TdX9fm2IWMZrDlOwJN5RbLOZytx3XvzD4AgN12csN2eHPt/2CH1//9LikEgH3lfg/2Oziw1+sIAKymlQYAAAAAAAAAAAAAAAAAAAAAAAAAAIDtt6kf8P/D6WRxcSHZhc4C7g/0bSXDjQe6sks57/lAd5K9qv0/s+Wlyn28XzadgdUDe3xiAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYFcUSXer6V3JwSTDSc7sflY75+5eJ7BdKg+2WHEv9/JeDm13OgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAX3eN3//vSv3x0fqk9HQlp5LcSPK/e53jdrq31wnsmW/U7pt+/78r6c1SkZ76bk/ROzY+OzNV7v7iYDn/i48/+ai8dS57fa8KZQFlDas6l2jU0DSld/VSj9eW6h9fePfOd97+VmX8Uu3AvDR/eXJ86srsf60EPlV8Wu8CobkbhOV8v3fqtz9pmnygUfmn5Zq2trbey7V6x9fX+8+tlm5T7ybcXlwYLWuar74+/91v3n6vadYTOZE8P5AMrK7p/8tbm5pOrN2eqxVfFj8sDuXnuVHb/+XWKJaKchcdrq3/I7duLy4MvfX24s37OX1/VU5HcjzJzaRv8zkdr51PWqoddV29Za3DtaDy7miH8jbUVOJIm+36eO2Q6d/SOlTarMPy1A7bvZHR2ZYZ/fTbT+b0lvf06Q41tk73y+LPxdX8KT9o6v+jq9z/p9Ly2dmiiFpk05HSPG/V06urHllb89HmGW+sLbPts5Id8KP8X/7j/v7vajr/N/bV7pyPmmps/bxItv68+NXhdS3KilqLdHRNi9Q4+7RbppHn0XpUmzz/KS8nPce2dEZ5uf1ZcVPLP+jz/xfFQP6au/r/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9r8i6W41vSs5leRIksPleCVZWhtz9wHq6+ovHiTNbXO3d0+r3yVF251T3Mu9vJdDu50RAAAAAAAAADvj0vgXH3/yUXmrfR7fnX/tasypJD1JjhQ/6x0bn52Z6lBQb3Jj+SP9vq3lcKO8e2xl/PNy7OkOC+3t5QMA8JX29wAAAP//ZkBt8Q==")

1m22.9899504s ago: executing program 1 (id=175):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$hid(0xa72e9a0a0d949c1c, 0x36, &(0x7f0000000340)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r0, 0x4004550d, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x5c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x50}}, 0x40000)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x80a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'veth1_virt_wifi\x00', <r4=>0x0})
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r5, &(0x7f00000001c0)={0x1d, r4}, 0x10)
syz_emit_ethernet(0x1aa, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa008100000086dd602e5cea01703c0020010000000000000000000000000002ff0200000000000000000000000000012b0a0101"], 0x0)

1m21.234691737s ago: executing program 1 (id=176):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000c50000002300000095000000000000"], 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x48, &(0x7f00000002c0), 0x4)
r2 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x40, 0x3, 0x8}, 0x18)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000001000000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
epoll_create1(0x0)
openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r4, 0x400452c8, &(0x7f0000000100))
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r6=>0x0})
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x0)
sendto$packet(r5, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r6}, 0x14)
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000380)={@mcast2, 0x7, r6})
r8 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00'})
sendmsg$inet6(r8, &(0x7f0000000340)={&(0x7f00000000c0)={0xa, 0x4e25, 0x4001, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="24000000000000002900000032000000fe8000000000000000000000000000aa", @ANYRES16=r0, @ANYBLOB="000000006ea5e50d644920f65b74812687f4d10d15dcca96564dea8e895addf105b9c16f68e3"], 0x28}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000240)={'syztnl1\x00', <r9=>0x0, 0x29, 0xeb, 0xf9, 0x100, 0x0, @mcast2, @remote, 0x7, 0x20, 0x6}})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r10, r11, 0x2}, 0x10)
socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r8, @ANYBLOB="000129bd7000fddbdf250800000038000180140002006970766c616e30000000000000000000080003000200000008000100", @ANYRES32=r6, @ANYBLOB="00004715", @ANYRES32=0x0, @ANYBLOB="08000300000000006000018008000300010000001400020073797a6b616c6c6572300000000000001400020076657468305f6d616376746170000000080003000100000008000100", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="1400020067656e65766530000000000000000000"], 0xac}}, 0x20000040)

1m20.941604431s ago: executing program 1 (id=177):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x3, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000180))

1m19.054022103s ago: executing program 1 (id=180):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000300", @ANYRES32=r3], 0x1c}}, 0x0)

44.321741226s ago: executing program 4 (id=135):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000002030108000000000000000020080001000300002308000100020000270800054080000010"], 0x34}, 0x1, 0x0, 0x0, 0x2881}, 0x20044058)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendto(r0, &(0x7f00000003c0)="a99bfb9ce8ec4c9ee319638640bd6843195e8d12e032232d6e0c7dc962d21fcaef5b839983ac5a2a877f8d849e92721b2abfa386efd83b4e3cfd7bbbf43655fcfadf3eee37e60beac0ca36f0cc8efd2960a1974c25c4910cd557b9b013b248f5ac12e044e37b8912e348d8d1a717a9faa174688746ff", 0x76, 0x40008, &(0x7f0000000440)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha256-avx2\x00'}, 0x80)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x23, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
getsockopt$inet6_mreq(r5, 0x3a, 0x0, 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$binfmt_script(r6, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
pipe2(&(0x7f0000000040), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x2, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x1, 0x80}, 0x10}, 0x90)
madvise(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000140))

43.776187734s ago: executing program 1 (id=180):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000300", @ANYRES32=r3], 0x1c}}, 0x0)

31.269553389s ago: executing program 2 (id=302):
r0 = socket(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1c, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, &(0x7f0000003c00)=0x90)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000b, 0x4031, 0xffffffffffffffff, 0x0)

30.268515832s ago: executing program 2 (id=305):
r0 = syz_open_dev$video(&(0x7f0000000100), 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000040)={0x2, 0x0, 0x1, {0x0, 0x0, 0x0, 0x8001}})

30.105415842s ago: executing program 2 (id=306):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x1)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000000080)={0x9, 'vlan1\x00'})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f0000017f00000a0000000800786a00"/28, @ANYRES32=0x0, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x92c0199, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
connect$inet(r2, 0x0, 0x0)
sendmmsg(r2, 0x0, 0x0, 0xa00)
fcntl$lock(0xffffffffffffffff, 0x25, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x18, 0x3a, 0x0, @loopback={0xfeffffff00000000}, @mcast2, {[], @mld={0x2, 0x0, 0x0, 0x0, 0x0, @mcast2}}}}}}, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)

29.15048949s ago: executing program 2 (id=307):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x550, &(0x7f0000000640)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000f00)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0xc0096616, 0x0)

29.03616166s ago: executing program 2 (id=309):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)

28.801535667s ago: executing program 2 (id=310):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000003c0)={0x18, 0xa, 0x0, "4a6535dffaa9779c16cc07d49d49cd3402fac865fbe70156e4788c2ece00"})

8.698124074s ago: executing program 0 (id=337):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000038500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='block_split\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1e, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='block_split\x00', r3}, 0x10)
write$cgroup_int(r4, &(0x7f0000000200), 0x43400)

8.697192868s ago: executing program 0 (id=338):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
socket$alg(0x26, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000080), 0x18)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x0, 0x803, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
eventfd2(0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSBRKP(r3, 0x5425, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0xc4424b61c9f5fc7}})
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000140))
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000180))
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
write$dsp(0xffffffffffffffff, &(0x7f0000000080), 0x0)
write$dsp(r0, &(0x7f0000000200), 0x0)

8.685421951s ago: executing program 0 (id=340):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
creat(&(0x7f0000002440)='./file0\x00', 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r6, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0x7})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
r9 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r9, 0x4138ae84, &(0x7f00000004c0)={{}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x6000, 0x5000}})
close_range(r1, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="757466383d312c696f636861727365743d6b6f69382d722c757466383d302c696f636861727365743d69736f383835392d31352c757466383d302c757466383d312c757466383d302c636802980f4372656c617865642c636865636b3d72656c617865642c73686f72746e616d653d6c6f7765722c756e695f786c6174653d312c73686f72746e616d653d77696e39352c73686f72746e616d6573686f72746e616d653d77696e39352c6572726f72733d636f6e74696e75652c636865636b3d7374726963742c616c6c6f775f7574696d653d30303030303030303030303030303030303030303037372c00"], 0x1, 0x36b, &(0x7f0000000b80)="$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")
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4)

6.259197201s ago: executing program 0 (id=342):
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x36, 0x4, 0x0, 0x0, 0xd8, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xa010101, 0x7}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ftruncate(r2, 0xf2d)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r4 = dup(r2)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000002100)={{0x3, 0x1, 0x6, 0x0, 0x7fffffff}})
sendfile(r3, r4, 0x0, 0xe0000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f0000000080)=[{0x87}, {0x3c}, {0x6}]})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r5, 0x0)
socket$alg(0x26, 0x5, 0x0)
r6 = dup(r1)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r11, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x24, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff1, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@delchain={0x24, 0x2a, 0x7d1cdc3e828018e9, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0x0, 0xffff}}}, 0x24}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KDFONTOP_GET(r5, 0x4b72, &(0x7f00000000c0)={0x1, 0x1, 0x18, 0xf, 0x1de, &(0x7f00000003c0)})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})

5.227074842s ago: executing program 0 (id=344):
syz_mount_image$jfs(&(0x7f00000002c0), &(0x7f0000000180)='./file0\x00', 0x300401a, &(0x7f0000000100)=ANY=[@ANYBLOB='nointegrity,usrquota,quota,iocharset=cp866,noquota,gid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRESHEX=0x0, @ANYBLOB=',\x00'], 0x0, 0x60ed, &(0x7f0000006580)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000001640), 0x0, 0x0)
clock_gettime(0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000015c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000300000008000100", @ANYRES32=0x0, @ANYBLOB="080002000000000008000400ac1414bbdd67796a5a28774c51a0d448e48b1ddc681064b78e"], 0x2c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="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"], 0x1, 0x1cf, &(0x7f0000000780)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000240)='./file0\x00')
r3 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000000280)=""/4096, 0x9005)

4.103411897s ago: executing program 3 (id=345):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000380)={0x0, <r5=>0x0})
setpgid(0x0, r5)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x84, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x4}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xc0}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x81}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e24}]}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x84}}, 0x0)
r7 = io_uring_setup(0x53d6, &(0x7f0000000240)={0x0, 0xfb9, 0x2, 0x2, 0x107})
io_uring_enter(r7, 0x59b6, 0x944e, 0x12, &(0x7f0000000080)={[0x10d00000000000]}, 0x8)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r10=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r11=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'veth1_to_hsr\x00', <r12=>0x0})
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x5c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}, @IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}, @IFLA_MACVLAN_FLAGS={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r12}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

1.774719528s ago: executing program 3 (id=346):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001880)=@raw={'raw\x00', 0x8, 0x3, 0x1258, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x11c0, 0xffffffff, 0xffffffff, 0x11c0, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'gre0\x00', 'syzkaller0\x00'}, 0x6, 0x10a0, 0x10e8, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x1, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 'batadv0\x00'}}}, {{@ip={@local, @local, 0x0, 0x0, 'veth0_to_team\x00', 'veth1_to_bridge\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x12b8)

1.500947481s ago: executing program 3 (id=347):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000020000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r0 = fsopen(&(0x7f0000000000)='sockfs\x00', 0x0)
readv(r0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='limits\x00')
r2 = gettid()
timer_create(0x0, &(0x7f0000000100)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000240)=""/134, 0x86}], 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000600000000000000008500000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x64, 0x30, 0x727, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x38}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

1.222860863s ago: executing program 3 (id=348):
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x5a042, 0x0)
mount$nfs(0x0, &(0x7f0000000080)='./bus\x00', &(0x7f0000000200), 0x0, &(0x7f0000000500)=ANY=[@ANYRES32=r0])
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="8907000074b559b9610e44308b996c79da3b911f1811c239d0f188db5304f15cba4692d9256058d68986405c60587e93cba2aae549ad171575e1c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x90)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={0x1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast2, 0x0, 0x0, 0x0, 0x2, 0xa, 0x0, 0x80, 0x2e, r2}, {0x7fffffff, 0x7, 0x40002b34, 0x7, 0x7f, 0x8, 0x8}, {0x3, 0x0, 0x1, 0xc62}, 0x2, 0x2, 0x0, 0x1, 0x0, 0x1}, {{@in6=@loopback, 0x4d6}, 0x0, @in=@dev, 0x0, 0x2, 0x0, 0x8, 0x2, 0x8, 0x80000800}}, 0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_exit\x00', r1}, 0x10)
eventfd2(0x0, 0x80c00)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000480)=@nbd={'/dev/nbd', 0x0}, 0xee00, &(0x7f00000004c0)='./file1\x00')
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f0000000400)={0x0, 0x5, 0x0, 0x0, 0x8, 0x3ff})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6}, 0x10)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
accept$alg(r3, 0x0, 0x0)

535.735179ms ago: executing program 3 (id=349):
ioperm(0x0, 0x87, 0x3ff)
madvise(&(0x7f0000000000/0x4000)=nil, 0x0, 0x0)

365.577568ms ago: executing program 3 (id=350):
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0}, 0x20)
r0 = syz_open_procfs(0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000040)={0x0, 0x9})
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x5424, 0xfffffffffffffffe)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x3000080, &(0x7f0000000200)=ANY=[@ANYBLOB="71756965742c636f6465706167653d69736f383835392d31352c706172743d3078303030303030300000000000000000662c00a20000000700000000ede9debf530c3cc4d04b548919aca0c2937d4da1fc31dc42fc2e3e", @ANYRES8], 0x11, 0x2d2, &(0x7f0000000bc0)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mprotect(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0)
mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x2)

0s ago: executing program 0 (id=351):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xffffffd7}], 0x1, 0x0, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
creat(0x0, 0x0)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f0000000000), 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0x800000000006, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000000)=0x2)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000000)={0x0, "f3c492eb0165203d36bec7080089b42c000004002231a110000000005900", <r2=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f0000000140)={"9fcaa0504b38d5004b9277c079417ff857dc9b7ac770169aed764b4d2ada8bde", r2})
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000340)={0x7, 0x8, 0xfa00, {r4, 0x9}}, 0x10)
dup(0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

kernel console output (not intermixed with test programs):

 T5085] Bluetooth: hci0: command tx timeout
[  132.028085][ T5551]  loop4: p1 < > p3
[  132.129865][ T5551] loop4: p3 size 134217728 extends beyond EOD, truncated
[  132.304961][ T5552] loop4: detected capacity change from 0 to 2048
[  132.348716][   T29] audit: type=1400 audit(1719385509.327:291): avc:  denied  { write } for  pid=5546 comm="syz.2.110" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  132.373903][ T5085] Bluetooth: hci2: command tx timeout
[  132.408090][ T5552] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  132.464409][ T5554] loop2: detected capacity change from 0 to 164
[  132.522835][ T5131] udevd[5131]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  132.786871][ T5132] udevd[5132]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  133.101636][   T29] audit: type=1400 audit(1719385510.827:292): avc:  denied  { create } for  pid=5553 comm="syz.2.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  133.216286][   T29] audit: type=1400 audit(1719385510.837:293): avc:  denied  { connect } for  pid=5553 comm="syz.2.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  133.236570][   T29] audit: type=1400 audit(1719385510.857:294): avc:  denied  { ioctl } for  pid=5553 comm="syz.2.114" path="socket:[7987]" dev="sockfs" ino=7987 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  133.664016][   T29] audit: type=1400 audit(1719385510.867:295): avc:  denied  { write } for  pid=5553 comm="syz.2.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  134.455153][ T5085] Bluetooth: hci2: command tx timeout
[  134.807929][ T5571] loop4: detected capacity change from 0 to 1024
[  134.843469][ T5574] loop2: detected capacity change from 0 to 64
[  134.892615][ T5571] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a843c118, mo2=0002]
[  134.936609][ T5571] System zones: 0-1, 3-12
[  134.985479][ T5571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.235787][ T5435] chnl_net:caif_netlink_parms(): no params data found
[  135.363902][ T5571] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[  135.516373][ T5586] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a843c118, mo2=0002]
[  135.559375][ T5586] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  135.768336][ T5088] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.533774][ T5085] Bluetooth: hci2: command tx timeout
[  137.051595][ T5610] loop3: detected capacity change from 0 to 164
[  137.455176][ T5435] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.280167][   T29] audit: type=1400 audit(1719385516.137:296): avc:  denied  { read } for  pid=5609 comm="syz.3.126" name="ubi_ctrl" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  138.303303][    C0] vkms_vblank_simulate: vblank timer overrun
[  138.365370][ T5435] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.516122][ T5435] bridge_slave_0: entered allmulticast mode
[  138.533194][   T29] audit: type=1400 audit(1719385516.137:297): avc:  denied  { open } for  pid=5609 comm="syz.3.126" path="/dev/ubi_ctrl" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  138.595112][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  138.602217][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  138.648089][ T5435] bridge_slave_0: entered promiscuous mode
[  138.711253][ T5435] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.772740][ T5435] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.815998][   T29] audit: type=1800 audit(1719385516.407:298): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.126" name="file1" dev="loop3" ino=1807 res=0 errno=0
[  138.849968][ T5435] bridge_slave_1: entered allmulticast mode
[  138.971898][ T5435] bridge_slave_1: entered promiscuous mode
[  139.627977][ T5628] loop4: detected capacity change from 0 to 2048
[  139.785713][ T5628]  loop4: p1 < > p3
[  139.950317][ T5628] loop4: p3 size 134217728 extends beyond EOD, truncated
[  140.144056][ T5629] loop4: detected capacity change from 0 to 2048
[  140.204689][ T5629] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  140.393048][ T5132] udevd[5132]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  140.404260][ T5131] udevd[5131]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  140.486383][   T61] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.772705][   T61] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.888510][ T5435] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.924357][ T5507] chnl_net:caif_netlink_parms(): no params data found
[  141.102294][   T61] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.180102][ T5435] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  141.367756][ T5625] loop3: detected capacity change from 0 to 32768
[  141.569294][   T61] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.722141][   T29] audit: type=1400 audit(1719385519.667:299): avc:  denied  { create } for  pid=5640 comm="syz.4.132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  141.787354][   T29] audit: type=1400 audit(1719385519.697:300): avc:  denied  { setopt } for  pid=5640 comm="syz.4.132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  141.890720][   T29] audit: type=1400 audit(1719385519.837:301): avc:  denied  { ioctl } for  pid=5640 comm="syz.4.132" path="socket:[8108]" dev="sockfs" ino=8108 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  141.898340][ T5435] team0: Port device team_slave_0 added
[  142.029726][   T29] audit: type=1400 audit(1719385519.977:302): avc:  denied  { write } for  pid=5640 comm="syz.4.132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  142.030168][ T5641] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  142.114439][ T5435] team0: Port device team_slave_1 added
[  142.161429][ T5507] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.187251][ T5507] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.222549][ T5507] bridge_slave_0: entered allmulticast mode
[  142.254519][ T5507] bridge_slave_0: entered promiscuous mode
[  142.401419][ T5507] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.424841][ T5507] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.432189][ T5507] bridge_slave_1: entered allmulticast mode
[  142.457267][ T5507] bridge_slave_1: entered promiscuous mode
[  142.549647][ T5435] batman_adv: batadv0: Adding interface: batadv_slave_0
[  142.565849][ T5435] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.602985][ T5435] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  142.729516][ T5435] batman_adv: batadv0: Adding interface: batadv_slave_1
[  142.773720][ T5435] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.835591][ T5435] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.131394][ T5507] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  143.357260][ T5435] hsr_slave_0: entered promiscuous mode
[  143.384927][ T5435] hsr_slave_1: entered promiscuous mode
[  143.408940][ T5435] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  143.453810][ T5435] Cannot create hsr debugfs directory
[  143.468647][ T5507] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.548790][   T29] audit: type=1400 audit(1719385521.497:303): avc:  denied  { mounton } for  pid=5656 comm="syz.3.137" path="/root/syzkaller.fKPxZ4/28/file0" dev="sda1" ino=1953 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=file permissive=1
[  143.767964][   T29] audit: type=1804 audit(1719385521.687:304): pid=5662 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.137" name="/root/syzkaller.fKPxZ4/28/file0" dev="sda1" ino=1953 res=1 errno=0
[  143.972469][   T61] bridge_slave_1: left allmulticast mode
[  144.096726][   T61] bridge_slave_1: left promiscuous mode
[  144.184595][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.436196][   T61] bridge_slave_0: left allmulticast mode
[  144.472883][   T61] bridge_slave_0: left promiscuous mode
[  144.499345][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.773841][   T29] audit: type=1400 audit(1719385522.717:305): avc:  denied  { set_context_mgr } for  pid=5667 comm="syz.2.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  144.870478][   T29] audit: type=1400 audit(1719385522.767:306): avc:  denied  { map } for  pid=5667 comm="syz.2.138" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  144.916826][ T5096] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  144.929616][ T5096] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  144.949349][ T5096] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  144.962644][   T29] audit: type=1400 audit(1719385522.797:307): avc:  denied  { call } for  pid=5667 comm="syz.2.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  144.992263][ T5096] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  145.011277][   T29] audit: type=1400 audit(1719385522.817:308): avc:  denied  { unmount } for  pid=5091 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  145.052929][ T5096] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  145.062545][ T5096] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  145.181677][   T29] audit: type=1400 audit(1719385523.127:309): avc:  denied  { mount } for  pid=5673 comm="syz.2.140" name="/" dev="autofs" ino=8906 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  145.313745][   T29] audit: type=1400 audit(1719385523.257:310): avc:  denied  { mounton } for  pid=5673 comm="syz.2.140" path="/root/syzkaller.8ZolUJ/30/file1/file0" dev="autofs" ino=8907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  145.386004][   T29] audit: type=1400 audit(1719385523.257:311): avc:  denied  { read } for  pid=5673 comm="syz.2.140" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  145.409100][    C0] vkms_vblank_simulate: vblank timer overrun
[  145.473988][   T29] audit: type=1400 audit(1719385523.257:312): avc:  denied  { open } for  pid=5673 comm="syz.2.140" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  145.892562][ T5687] loop3: detected capacity change from 0 to 2048
[  145.906096][ T5687] udf: Unknown parameter 'u
'
[  145.964467][ T5131] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  146.058770][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  146.073516][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  146.095558][   T61] bond0 (unregistering): Released all slaves
[  146.272676][ T5507] team0: Port device team_slave_0 added
[  146.417768][ T5507] team0: Port device team_slave_1 added
[  146.714810][ T5507] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.722416][ T5507] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.748833][ T5507] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.762641][ T5507] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.769738][ T5507] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.799291][ T5507] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.119904][   T61] hsr_slave_0: left promiscuous mode
[  147.139709][   T61] hsr_slave_1: left promiscuous mode
[  147.157468][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.172635][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.176007][ T5096] Bluetooth: hci4: command tx timeout
[  147.196190][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.209702][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.237204][   T61] veth1_macvtap: left promiscuous mode
[  147.242810][   T61] veth0_macvtap: left promiscuous mode
[  147.249354][   T61] veth1_vlan: left promiscuous mode
[  147.255235][   T61] veth0_vlan: left promiscuous mode
[  148.229814][ T5697] loop3: detected capacity change from 0 to 1024
[  148.696957][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  148.696981][   T29] audit: type=1400 audit(1719385526.647:325): avc:  denied  { getopt } for  pid=5696 comm="syz.3.148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  148.722536][    C0] vkms_vblank_simulate: vblank timer overrun
[  148.791241][   T29] audit: type=1400 audit(1719385526.737:326): avc:  denied  { mounton } for  pid=5696 comm="syz.3.148" path=2F726F6F742F73797A6B616C6C65722E664B50785A342F33362F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F66696C6530 dev="loop3" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  148.831236][    C0] vkms_vblank_simulate: vblank timer overrun
[  149.021879][ T5698] hfsplus: bad catalog entry type
[  149.254007][ T5096] Bluetooth: hci4: command tx timeout
[  149.308333][   T61] team0 (unregistering): Port device team_slave_1 removed
[  149.397549][   T61] team0 (unregistering): Port device team_slave_0 removed
[  150.120762][   T51] hfsplus: b-tree write err: -5, ino 4
[  150.244970][ T5507] hsr_slave_0: entered promiscuous mode
[  150.284504][ T5507] hsr_slave_1: entered promiscuous mode
[  150.893048][   T29] audit: type=1400 audit(1719385528.817:327): avc:  denied  { write } for  pid=5700 comm="syz.3.149" laddr=fe80::a8aa:aaff:feaa:aa16 lport=58 faddr=ff02::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  151.351070][ T5096] Bluetooth: hci4: command tx timeout
[  151.798576][ T5713] loop3: detected capacity change from 0 to 256
[  151.815199][ T5713] exfat: Deprecated parameter 'namecase'
[  151.842201][ T5713] exfat: Deprecated parameter 'utf8'
[  151.852335][ T5713] exfat: Deprecated parameter 'namecase'
[  151.930961][ T5713] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xe1a8932d, utbl_chksum : 0xe619d30d)
[  151.998876][   T29] audit: type=1400 audit(1719385529.947:328): avc:  denied  { write } for  pid=5710 comm="syz.3.150" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  152.047247][   T29] audit: type=1400 audit(1719385529.947:329): avc:  denied  { add_name } for  pid=5710 comm="syz.3.150" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  152.098684][   T29] audit: type=1400 audit(1719385529.947:330): avc:  denied  { create } for  pid=5710 comm="syz.3.150" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  152.159330][   T29] audit: type=1400 audit(1719385529.947:331): avc:  denied  { associate } for  pid=5710 comm="syz.3.150" name="cgroup.controllers" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  152.213771][   T29] audit: type=1400 audit(1719385530.017:332): avc:  denied  { read append open } for  pid=5710 comm="syz.3.150" path="/root/syzkaller.fKPxZ4/38/file0/cgroup.controllers" dev="loop3" ino=1048600 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  152.259480][   T29] audit: type=1804 audit(1719385530.157:333): pid=5718 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.150" name="/root/syzkaller.fKPxZ4/38/file0/cgroup.controllers" dev="loop3" ino=1048600 res=1 errno=0
[  152.369850][ T5669] chnl_net:caif_netlink_parms(): no params data found
[  152.701147][   T61] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.872785][   T61] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.999888][   T29] audit: type=1400 audit(1719385530.937:334): avc:  denied  { bind } for  pid=5729 comm="syz.3.152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  153.067864][   T61] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.209867][ T5669] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.225022][ T5669] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.233052][ T5669] bridge_slave_0: entered allmulticast mode
[  153.242269][ T5669] bridge_slave_0: entered promiscuous mode
[  153.294656][   T61] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.313530][ T5669] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.324129][ T5669] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.335909][ T5669] bridge_slave_1: entered allmulticast mode
[  153.347076][ T5669] bridge_slave_1: entered promiscuous mode
[  153.414560][ T5096] Bluetooth: hci4: command tx timeout
[  153.426459][ T5669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.447759][ T5669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.550986][ T5669] team0: Port device team_slave_0 added
[  153.566257][ T5669] team0: Port device team_slave_1 added
[  153.726244][ T5669] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.733237][ T5669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.767090][ T5669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.780272][   T61] bridge_slave_1: left allmulticast mode
[  153.790766][   T61] bridge_slave_1: left promiscuous mode
[  153.797111][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.810311][   T61] bridge_slave_0: left allmulticast mode
[  153.816717][   T61] bridge_slave_0: left promiscuous mode
[  153.822517][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.528850][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  154.546790][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  154.561162][   T61] bond0 (unregistering): Released all slaves
[  154.581340][ T5669] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.588862][ T5669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.618898][ T5669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.889486][ T5669] hsr_slave_0: entered promiscuous mode
[  154.902798][ T5669] hsr_slave_1: entered promiscuous mode
[  154.910533][ T5669] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.918421][ T5669] Cannot create hsr debugfs directory
[  155.054733][ T5435] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  155.070595][ T5435] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  155.122935][ T5435] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  155.148695][   T61] hsr_slave_0: left promiscuous mode
[  155.155119][   T61] hsr_slave_1: left promiscuous mode
[  155.161439][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.169089][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.185323][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.192882][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.219023][   T61] veth1_macvtap: left promiscuous mode
[  155.226700][   T61] veth0_macvtap: left promiscuous mode
[  155.232457][   T61] veth1_vlan: left promiscuous mode
[  155.238586][   T61] veth0_vlan: left promiscuous mode
[  156.069602][   T61] team0 (unregistering): Port device team_slave_1 removed
[  156.200005][   T61] team0 (unregistering): Port device team_slave_0 removed
[  156.467756][ T5085] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  156.497181][ T5085] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  156.507277][ T5085] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  156.537168][ T5085] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  156.547623][ T5085] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  156.555636][ T5085] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  156.962549][ T5435] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  157.338481][ T5507] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  157.378148][ T5507] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  157.400265][ T5507] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  157.532771][ T5507] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  158.173284][ T5435] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.190872][ T5735] chnl_net:caif_netlink_parms(): no params data found
[  158.245074][   T61] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.310571][ T5507] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.382295][   T61] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.528304][   T61] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.543227][ T5669] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  158.559406][ T5669] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  158.586145][ T5435] 8021q: adding VLAN 0 to HW filter on device team0
[  158.612174][ T5669] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  158.621357][ T5085] Bluetooth: hci1: command tx timeout
[  158.651547][   T61] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.766435][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.773814][ T5135] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.808599][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.816026][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.833797][ T5669] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  158.878471][ T5507] 8021q: adding VLAN 0 to HW filter on device team0
[  159.027259][ T1792] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.034566][ T1792] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.085029][ T5735] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.092339][ T5735] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.112311][ T5735] bridge_slave_0: entered allmulticast mode
[  159.121367][ T5735] bridge_slave_0: entered promiscuous mode
[  159.152484][ T5735] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.160338][ T5735] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.170869][ T5735] bridge_slave_1: entered allmulticast mode
[  159.182841][ T5735] bridge_slave_1: entered promiscuous mode
[  159.311711][ T1792] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.319189][ T1792] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.387538][ T5735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.486879][ T5735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.609562][ T5735] team0: Port device team_slave_0 added
[  159.718486][ T5735] team0: Port device team_slave_1 added
[  159.746878][   T61] bridge_slave_1: left allmulticast mode
[  159.752586][   T61] bridge_slave_1: left promiscuous mode
[  159.759854][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.771818][   T61] bridge_slave_0: left allmulticast mode
[  159.784455][   T61] bridge_slave_0: left promiscuous mode
[  159.790411][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.245919][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.261449][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.274774][   T61] bond0 (unregistering): Released all slaves
[  160.597642][ T5735] batman_adv: batadv0: Adding interface: batadv_slave_0
[  160.610911][ T5735] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.642407][ T5735] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  160.658220][ T5735] batman_adv: batadv0: Adding interface: batadv_slave_1
[  160.671050][ T5735] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.712122][ T5085] Bluetooth: hci1: command tx timeout
[  160.719932][ T5735] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.148988][ T5735] hsr_slave_0: entered promiscuous mode
[  161.162977][ T5735] hsr_slave_1: entered promiscuous mode
[  161.171473][ T5735] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.184033][ T5735] Cannot create hsr debugfs directory
[  161.245878][   T61] hsr_slave_0: left promiscuous mode
[  161.262049][   T61] hsr_slave_1: left promiscuous mode
[  161.283195][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.303701][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.322194][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.338411][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.390158][   T61] veth1_macvtap: left promiscuous mode
[  161.403845][   T61] veth0_macvtap: left promiscuous mode
[  161.409708][   T61] veth1_vlan: left promiscuous mode
[  161.427554][   T61] veth0_vlan: left promiscuous mode
[  162.181449][   T61] team0 (unregistering): Port device virt_wifi0 removed
[  162.573336][   T61] team0 (unregistering): Port device team_slave_1 removed
[  162.655107][   T61] team0 (unregistering): Port device team_slave_0 removed
[  162.776123][ T5085] Bluetooth: hci1: command tx timeout
[  164.194692][ T5096] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  164.216751][ T5096] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  164.234310][ T5096] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  164.248054][ T5096] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  164.256479][ T5096] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  164.270405][ T5096] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  164.396165][ T5435] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.778742][ T5507] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.854353][ T5096] Bluetooth: hci1: command tx timeout
[  164.899912][ T5669] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.299767][ T5669] 8021q: adding VLAN 0 to HW filter on device team0
[  165.441713][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.449087][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.542219][ T5435] veth0_vlan: entered promiscuous mode
[  165.551168][ T5507] veth0_vlan: entered promiscuous mode
[  165.626514][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.634850][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.696850][   T61] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.753111][ T5833] chnl_net:caif_netlink_parms(): no params data found
[  165.802804][   T61] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.825688][ T5435] veth1_vlan: entered promiscuous mode
[  165.837846][ T5507] veth1_vlan: entered promiscuous mode
[  165.920148][   T61] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.057916][   T61] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.202084][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.210785][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.220787][ T5833] bridge_slave_0: entered allmulticast mode
[  166.229537][ T5833] bridge_slave_0: entered promiscuous mode
[  166.276903][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.285310][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.292630][ T5833] bridge_slave_1: entered allmulticast mode
[  166.302423][ T5833] bridge_slave_1: entered promiscuous mode
[  166.351381][ T5435] veth0_macvtap: entered promiscuous mode
[  166.384875][ T5096] Bluetooth: hci3: command tx timeout
[  166.421076][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.439982][ T5435] veth1_macvtap: entered promiscuous mode
[  166.477344][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.594301][ T5833] team0: Port device team_slave_0 added
[  166.663444][ T5833] team0: Port device team_slave_1 added
[  166.781888][   T61] bridge_slave_1: left allmulticast mode
[  166.788891][   T61] bridge_slave_1: left promiscuous mode
[  166.796553][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.807970][   T61] bridge_slave_0: left allmulticast mode
[  166.814709][   T61] bridge_slave_0: left promiscuous mode
[  166.820666][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.330557][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.345963][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.359726][   T61] bond0 (unregistering): Released all slaves
[  167.376476][ T5735] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  167.391247][ T5735] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  167.461810][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[  167.469882][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.497703][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  167.542719][ T5435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.554250][ T5435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.568609][ T5435] batman_adv: batadv0: Interface activated: batadv_slave_0
[  167.582391][ T5507] veth0_macvtap: entered promiscuous mode
[  167.590939][ T5735] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  167.604996][ T5735] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  167.621388][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[  167.628572][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.656827][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  167.750469][ T5435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.762237][ T5435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.774856][ T5435] batman_adv: batadv0: Interface activated: batadv_slave_1
[  167.837243][ T5833] hsr_slave_0: entered promiscuous mode
[  167.845838][ T5833] hsr_slave_1: entered promiscuous mode
[  167.853374][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  167.863273][ T5833] Cannot create hsr debugfs directory
[  168.002799][ T5507] veth1_macvtap: entered promiscuous mode
[  168.030582][ T5435] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.043692][ T5435] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.052492][ T5435] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.062201][ T5435] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.341514][   T61] hsr_slave_0: left promiscuous mode
[  168.355302][   T61] hsr_slave_1: left promiscuous mode
[  168.362858][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.372807][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  168.389977][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.401572][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  168.450067][   T61] veth1_macvtap: left promiscuous mode
[  168.465330][ T5096] Bluetooth: hci3: command tx timeout
[  168.471788][   T61] veth0_macvtap: left promiscuous mode
[  168.477888][   T61] veth1_vlan: left promiscuous mode
[  168.483381][   T61] veth0_vlan: left promiscuous mode
[  169.379130][   T61] team0 (unregistering): Port device team_slave_1 removed
[  169.437689][   T61] team0 (unregistering): Port device team_slave_0 removed
[  170.137974][ T5507] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.171996][ T5507] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.195527][ T5507] batman_adv: batadv0: Interface activated: batadv_slave_0
[  170.218667][ T5669] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.319412][ T5507] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.343982][ T5507] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.378382][ T5507] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.503221][ T5507] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.531568][ T5507] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.543325][ T5507] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.544805][ T5096] Bluetooth: hci3: command tx timeout
[  170.552850][ T5507] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.089343][ T1273] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.119173][ T1273] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.428912][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.445352][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.453338][ T5735] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.564070][ T5735] 8021q: adding VLAN 0 to HW filter on device team0
[  171.626979][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.666077][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.676952][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.684315][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  171.747447][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.754796][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  171.777806][ T5669] veth0_vlan: entered promiscuous mode
[  171.852879][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.861914][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.880703][ T5833] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  171.901643][ T5833] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  171.923115][ T5669] veth1_vlan: entered promiscuous mode
[  171.947823][ T5833] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  171.962957][ T5833] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  172.281384][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  172.281414][   T29] audit: type=1400 audit(1719385550.227:336): avc:  denied  { accept } for  pid=5900 comm="syz.0.101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  172.325309][ T5669] veth0_macvtap: entered promiscuous mode
[  172.432102][ T5669] veth1_macvtap: entered promiscuous mode
[  172.566183][ T5669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.597889][ T5669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.614456][ T5096] Bluetooth: hci3: command tx timeout
[  172.618225][ T5669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.642666][ T5669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.666712][ T5669] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.703472][ T5906] netlink: 4 bytes leftover after parsing attributes in process `syz.0.159'.
[  172.919114][ T5669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.963754][ T5669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.986814][ T5669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.022533][ T5669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.027035][ T5914] loop0: detected capacity change from 0 to 128
[  173.040919][ T5669] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.067510][ T5669] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.083148][ T5669] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.101236][ T5914] befs: (loop0): invalid magic header
[  173.110075][ T5669] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.137042][ T5669] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.323550][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.357485][ T5916] loop0: detected capacity change from 0 to 512
[  173.417981][ T5916] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz.0.162: corrupted in-inode xattr: bad e_name length
[  173.499112][ T5735] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.504781][ T5916] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.162: couldn't read orphan inode 15 (err -117)
[  173.522801][ T5916] EXT4-fs (loop0): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.653313][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[  173.748128][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.754513][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.761568][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.763347][ T5135] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.842930][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.850290][ T5134] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.011050][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.061944][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.105793][ T5735] veth0_vlan: entered promiscuous mode
[  174.130063][ T5735] veth1_vlan: entered promiscuous mode
[  174.169599][ T5833] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  174.252811][ T5507] EXT4-fs (loop0): unmounting filesystem 00000004-0000-0000-0000-000000000000.
[  174.280305][ T5925] loop1: detected capacity change from 0 to 64
[  174.316028][ T5925] hfs: unable to parse mount options
[  174.689135][ T5931] loop0: detected capacity change from 0 to 512
[  174.808856][ T5131] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  174.861518][   T29] audit: type=1326 audit(1719385552.806:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5927 comm="syz.0.166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x0
[  174.969093][ T5735] veth0_macvtap: entered promiscuous mode
[  175.102470][ T5735] veth1_macvtap: entered promiscuous mode
[  175.277885][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.310466][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.370245][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.401515][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.427643][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  175.456902][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  175.486849][ T5735] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.733368][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.989609][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.027160][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.052927][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.105018][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.124141][   T29] audit: type=1400 audit(1719385554.066:338): avc:  denied  { write } for  pid=5941 comm="syz.0.169" name="vhost-vsock" dev="devtmpfs" ino=1085 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  176.195344][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.217071][   T29] audit: type=1400 audit(1719385554.116:339): avc:  denied  { ioctl } for  pid=5941 comm="syz.0.169" path="/dev/vhost-vsock" dev="devtmpfs" ino=1085 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  176.223172][ T5735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.360033][ T5735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.420670][ T5735] batman_adv: batadv0: Interface activated: batadv_slave_1
[  176.705328][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.789763][ T5735] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.854508][ T5735] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.869423][ T5735] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.897411][ T5085] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  176.901845][ T5735] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.915229][ T5085] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  176.928595][ T5085] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  176.931260][   T29] audit: type=1400 audit(1719385554.866:340): avc:  denied  { write } for  pid=4515 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  177.041274][   T29] audit: type=1400 audit(1719385554.866:341): avc:  denied  { remove_name } for  pid=4515 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  177.133300][ T5085] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  177.136416][   T29] audit: type=1400 audit(1719385554.866:342): avc:  denied  { rename } for  pid=4515 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  177.143033][ T5085] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  177.206203][ T5085] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  177.255072][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.376793][   T29] audit: type=1400 audit(1719385554.876:343): avc:  denied  { add_name } for  pid=4515 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  177.477796][   T29] audit: type=1400 audit(1719385554.876:344): avc:  denied  { unlink } for  pid=4515 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  177.526147][   T29] audit: type=1400 audit(1719385554.876:345): avc:  denied  { create } for  pid=4515 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  177.558686][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[  177.983660][   T29] audit: type=1400 audit(1719385555.926:346): avc:  denied  { read } for  pid=5952 comm="syz.0.171" name="rtc0" dev="devtmpfs" ino=837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  178.062262][   T29] audit: type=1400 audit(1719385555.926:347): avc:  denied  { open } for  pid=5952 comm="syz.0.171" path="/dev/rtc0" dev="devtmpfs" ino=837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  178.095013][   T29] audit: type=1400 audit(1719385555.966:348): avc:  denied  { ioctl } for  pid=5952 comm="syz.0.171" path="/dev/rtc0" dev="devtmpfs" ino=837 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  178.236677][ T5953] kernel profiling enabled (shift: 8)
[  178.566153][ T5959] loop1: detected capacity change from 0 to 1764
[  178.618957][   T12] bridge_slave_1: left allmulticast mode
[  178.644096][   T12] bridge_slave_1: left promiscuous mode
[  178.650194][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.699965][   T12] bridge_slave_0: left allmulticast mode
[  178.717619][   T12] bridge_slave_0: left promiscuous mode
[  178.733180][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.320860][   T29] audit: type=1400 audit(1719385557.256:349): avc:  denied  { mount } for  pid=5967 comm="syz.0.172" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  179.384857][ T5085] Bluetooth: hci4: command tx timeout
[  179.441130][   T29] audit: type=1400 audit(1719385557.356:350): avc:  denied  { unmount } for  pid=5507 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  179.899773][ T5977] loop0: detected capacity change from 0 to 512
[  179.981431][ T5977] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz.0.174: corrupted in-inode xattr: bad e_name length
[  180.075111][ T5977] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.174: couldn't read orphan inode 15 (err -117)
[  180.120730][ T5977] EXT4-fs (loop0): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.371860][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.412095][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.450808][   T12] bond0 (unregistering): Released all slaves
[  180.575332][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  180.608290][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.038508][ T5833] veth0_vlan: entered promiscuous mode
[  181.050946][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  181.077725][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.251366][ T5833] veth1_vlan: entered promiscuous mode
[  181.415310][ T5085] Bluetooth: hci4: command tx timeout
[  182.626947][   T12] hsr_slave_0: left promiscuous mode
[  182.656122][   T12] hsr_slave_1: left promiscuous mode
[  182.674521][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  182.681995][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  182.731652][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  182.751925][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  182.857776][   T12] veth1_macvtap: left promiscuous mode
[  182.863713][   T12] veth0_macvtap: left promiscuous mode
[  182.871013][   T12] veth1_vlan: left promiscuous mode
[  182.876574][   T12] veth0_vlan: left promiscuous mode
[  183.079597][ T6001] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  183.493838][ T5085] Bluetooth: hci4: command tx timeout
[  183.939098][   T12] team0 (unregistering): Port device team_slave_1 removed
[  184.011833][   T12] team0 (unregistering): Port device team_slave_0 removed
[  184.619973][ T5994] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  184.940452][ T5980] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 312: padding at end of block bitmap is not set
[  184.986633][ T5947] chnl_net:caif_netlink_parms(): no params data found
[  185.101678][ T5833] veth0_macvtap: entered promiscuous mode
[  185.318674][ T5833] veth1_macvtap: entered promiscuous mode
[  185.573883][ T5085] Bluetooth: hci4: command tx timeout
[  185.941503][   T29] audit: type=1400 audit(1719385563.886:351): avc:  denied  { create } for  pid=6016 comm="syz.2.181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  186.519745][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.538651][ T5507] EXT4-fs (loop0): unmounting filesystem 00000004-0000-0000-0000-000000000000.
[  186.563883][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.623273][ T5947] bridge_slave_0: entered allmulticast mode
[  186.677523][ T5947] bridge_slave_0: entered promiscuous mode
[  186.722171][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.793723][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.830505][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.869152][ T5096] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  186.891380][ T5096] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  186.903350][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.914564][ T5096] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  186.925155][ T5096] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  186.941222][ T5096] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  186.947619][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.965604][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.975993][ T5096] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  186.991403][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[  187.025105][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.032374][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.040474][ T5947] bridge_slave_1: entered allmulticast mode
[  187.049385][ T5947] bridge_slave_1: entered promiscuous mode
[  187.177990][   T29] audit: type=1400 audit(1719385565.126:352): avc:  denied  { bind } for  pid=6037 comm="syz.2.184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  187.228241][ T6039] fuse: Invalid rootmode
[  187.321357][ T6039] pimreg: entered allmulticast mode
[  187.365142][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.410914][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.442759][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.471947][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.492394][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.513705][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.534850][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[  187.562028][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.613155][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.640509][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.663752][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.892666][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  187.946321][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  188.029167][ T6048] openvswitch: netlink: Missing key (keys=40, expected=80)
[  188.094432][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.270170][ T6050] syz.2.186 (6050): /proc/6049/oom_adj is deprecated, please use /proc/6049/oom_score_adj instead.
[  188.337279][   T29] audit: type=1400 audit(1719385566.286:353): avc:  denied  { create } for  pid=6049 comm="syz.2.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  188.416750][   T29] audit: type=1400 audit(1719385566.336:354): avc:  denied  { bind } for  pid=6049 comm="syz.2.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  188.460757][   T29] audit: type=1400 audit(1719385566.336:355): avc:  denied  { node_bind } for  pid=6049 comm="syz.2.186" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  188.486259][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.612465][ T5947] team0: Port device team_slave_0 added
[  188.638593][ T5947] team0: Port device team_slave_1 added
[  188.748163][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.770624][ T6054] netlink: 40 bytes leftover after parsing attributes in process `syz.0.187'.
[  188.833841][ T5087] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  188.852744][ T6054] loop0: detected capacity change from 0 to 1764
[  188.969475][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.045864][   T29] audit: type=1400 audit(1719385566.996:356): avc:  denied  { execute } for  pid=6052 comm="syz.0.187" path="/dev/audio1" dev="devtmpfs" ino=1100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  189.046956][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  189.083331][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.101776][ T5096] Bluetooth: hci0: command tx timeout
[  189.115732][ T5087] usb 3-1: Using ep0 maxpacket: 8
[  189.126850][ T5087] usb 3-1: config index 0 descriptor too short (expected 5924, got 36)
[  189.135566][ T5087] usb 3-1: config 250 has an invalid interface number: 228 but max is -1
[  189.147134][ T5087] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0
[  189.148727][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  189.171580][ T5087] usb 3-1: config 250 has no interface number 0
[  189.184560][ T5087] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  189.198023][ T5087] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  189.210671][ T5087] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 12336, setting to 1024
[  189.223054][ T5087] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024
[  189.235129][ T5087] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  189.249454][ T5087] usb 3-1: config 250 interface 228 has no altsetting 0
[  189.269931][ T5087] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  189.299387][ T5087] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  189.309293][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  189.318415][ T5087] usb 3-1: Product: syz
[  189.323518][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.352454][ T5087] usb 3-1: SerialNumber: syz
[  189.401367][ T5087] hub 3-1:250.228: bad descriptor, ignoring hub
[  189.408541][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  189.421853][ T5087] hub 3-1:250.228: probe with driver hub failed with error -5
[  189.695714][ T5087] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  189.867121][ T5947] hsr_slave_0: entered promiscuous mode
[  189.877934][ T5087] usb 3-1: USB disconnect, device number 2
[  189.930533][ T5947] hsr_slave_1: entered promiscuous mode
[  189.940556][ T5087] usblp0: removed
[  189.968032][ T5947] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  189.996168][ T5947] Cannot create hsr debugfs directory
[  190.047336][   T29] audit: type=1400 audit(1719385567.976:357): avc:  denied  { read } for  pid=6058 comm="syz.0.188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  190.392695][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  190.419257][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  190.727792][   T29] audit: type=1400 audit(1719385568.646:358): avc:  denied  { write } for  pid=6076 comm="syz.0.190" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  190.901514][   T11] bridge_slave_1: left allmulticast mode
[  190.913797][   T11] bridge_slave_1: left promiscuous mode
[  190.919807][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.951488][   T11] bridge_slave_0: left allmulticast mode
[  190.963647][   T11] bridge_slave_0: left promiscuous mode
[  190.969648][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.173832][ T5096] Bluetooth: hci0: command tx timeout
[  191.628984][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.642192][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.660552][   T11] bond0 (unregistering): Released all slaves
[  191.682293][ T6080] 8021q: VLANs not supported on ipvlan1
[  191.866169][ T6088] loop2: detected capacity change from 0 to 256
[  192.220893][ T6027] chnl_net:caif_netlink_parms(): no params data found
[  192.302240][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.332923][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.214913][   T11] hsr_slave_0: left promiscuous mode
[  193.253774][ T5096] Bluetooth: hci0: command tx timeout
[  193.259560][   T11] hsr_slave_1: left promiscuous mode
[  193.288128][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.312236][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.336971][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.359345][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.392555][ T6102] loop3: detected capacity change from 0 to 512
[  193.423730][ T6102] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  193.462218][   T11] veth1_macvtap: left promiscuous mode
[  193.482662][   T11] veth0_macvtap: left promiscuous mode
[  193.500508][   T11] veth1_vlan: left promiscuous mode
[  193.525300][   T11] veth0_vlan: left promiscuous mode
[  193.597661][ T6102] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.156: bg 0: block 64: padding at end of block bitmap is not set
[  193.618644][ T6102] Quota error (device loop3): write_blk: dquota write failed
[  193.627961][ T6102] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  193.640255][ T6102] EXT4-fs error (device loop3): ext4_acquire_dquot:6858: comm syz.3.156: Failed to acquire dquot type 0
[  193.659616][ T6102] EXT4-fs (loop3): 1 truncate cleaned up
[  193.684057][ T6102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.780823][ T6102] Quota error (device loop3): write_blk: dquota write failed
[  193.782682][ T6113] Mount JFS Failure: -22
[  193.817512][ T6113] jfs_mount failed w/return code = -22
[  193.832834][ T6102] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  193.847548][ T6102] EXT4-fs error (device loop3): ext4_acquire_dquot:6858: comm syz.3.156: Failed to acquire dquot type 0
[  194.421948][ T6118] loop2: detected capacity change from 0 to 128
[  195.349611][ T5096] Bluetooth: hci0: command tx timeout
[  195.740990][   T11] team0 (unregistering): Port device team_slave_1 removed
[  195.807990][   T11] team0 (unregistering): Port device team_slave_0 removed
[  195.981027][ T5133] usb 3-1: new low-speed USB device number 3 using dummy_hcd
[  196.178492][ T5133] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  196.212916][ T5133] usb 3-1: string descriptor 0 read error: -22
[  196.224496][ T5133] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  196.256537][ T5133] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.287107][ T5133] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[  196.803537][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.822539][ T6027] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.843974][ T6027] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.854712][ T6027] bridge_slave_0: entered allmulticast mode
[  196.863254][ T6027] bridge_slave_0: entered promiscuous mode
[  196.889853][ T6027] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.910603][ T6027] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.927092][ T6027] bridge_slave_1: entered allmulticast mode
[  196.937092][ T6027] bridge_slave_1: entered promiscuous mode
[  197.051967][ T6121] loop2: detected capacity change from 0 to 64
[  197.670416][ T6121] Trying to free block not in datazone
[  197.693751][   T29] audit: type=1400 audit(1719385575.613:359): avc:  denied  { write } for  pid=6119 comm="syz.2.199" name="file1" dev="loop2" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  197.818684][   T29] audit: type=1400 audit(1719385575.633:360): avc:  denied  { remount } for  pid=6119 comm="syz.2.199" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  198.214163][ T6133] sctp: failed to load transform for md5: -2
[  198.283357][   T29] audit: type=1400 audit(1719385575.733:361): avc:  denied  { connect } for  pid=6126 comm="syz.3.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  198.440353][   T29] audit: type=1400 audit(1719385575.733:362): avc:  denied  { name_connect } for  pid=6126 comm="syz.3.202" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  198.531389][   T29] audit: type=1400 audit(1719385575.743:363): avc:  denied  { listen } for  pid=6126 comm="syz.3.202" lport=36422 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  198.602860][   T29] audit: type=1400 audit(1719385575.833:364): avc:  denied  { accept } for  pid=6126 comm="syz.3.202" lport=36422 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  198.702615][ T6027] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  198.870203][ T6027] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  199.207367][ T6027] team0: Port device team_slave_0 added
[  199.231564][ T6027] team0: Port device team_slave_1 added
[  199.451626][ T6027] batman_adv: batadv0: Adding interface: batadv_slave_0
[  199.492038][ T6027] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.602624][   T29] audit: type=1400 audit(1719385577.553:365): avc:  denied  { mounton } for  pid=6119 comm="syz.2.199" path="/root/syzkaller.uFDrkn/12/file1/file0" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  199.630094][ T6027] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  199.661787][ T6027] batman_adv: batadv0: Adding interface: batadv_slave_1
[  199.673737][ T6027] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.773776][ T6027] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  199.803824][   T29] audit: type=1400 audit(1719385577.753:366): avc:  denied  { mount } for  pid=6119 comm="syz.2.199" name="/" dev="rpc_pipefs" ino=14607 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  199.862246][ T6147] loop0: detected capacity change from 0 to 256
[  200.000108][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  200.006737][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  200.285191][ T6027] hsr_slave_0: entered promiscuous mode
[  200.325406][ T6027] hsr_slave_1: entered promiscuous mode
[  200.358048][ T6027] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  200.392254][ T6027] Cannot create hsr debugfs directory
[  200.515858][ T6150] Mount JFS Failure: -22
[  200.520261][ T6150] jfs_mount failed w/return code = -22
[  200.793852][ T6152] loop0: detected capacity change from 0 to 256
[  200.861151][ T6152] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x24884a5c, utbl_chksum : 0xe619d30d)
[  200.914183][ T5085] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  200.932900][ T5085] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  200.947251][ T5085] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  200.959288][ T5085] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  200.967852][ T5085] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  200.979683][ T5085] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  201.015078][ T6152] capability: warning: `syz.0.209' uses 32-bit capabilities (legacy support in use)
[  201.045252][   T29] audit: type=1400 audit(1719385578.993:367): avc:  denied  { ioctl } for  pid=6151 comm="syz.0.209" path="/root/syzkaller.dK3pGG/27/file0/file1" dev="loop0" ino=1048630 ioctlcmd=0x5879 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  201.077245][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.094961][    T8] usb 3-1: USB disconnect, device number 3
[  201.306770][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.562206][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.653180][ T5947] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  201.785269][ T6163] loop0: detected capacity change from 0 to 512
[  201.820352][ T6163] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  201.897834][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.923804][ T6163] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.211: bg 0: block 64: padding at end of block bitmap is not set
[  201.976107][ T6163] Quota error (device loop0): write_blk: dquota write failed
[  201.984686][ T6163] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  201.995177][ T6163] EXT4-fs error (device loop0): ext4_acquire_dquot:6858: comm syz.0.211: Failed to acquire dquot type 0
[  202.012957][ T6163] EXT4-fs (loop0): 1 truncate cleaned up
[  202.021947][ T6163] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.035644][ T5947] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  202.058577][ T5947] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  202.133898][ T5947] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  202.185323][ T6163] Quota error (device loop0): write_blk: dquota write failed
[  202.216814][ T6163] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  202.268355][ T6163] EXT4-fs error (device loop0): ext4_acquire_dquot:6858: comm syz.0.211: Failed to acquire dquot type 0
[  203.014057][ T5085] Bluetooth: hci3: command tx timeout
[  203.119338][ T5507] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.216910][   T11] bridge_slave_1: left allmulticast mode
[  203.234392][   T11] bridge_slave_1: left promiscuous mode
[  203.241346][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.330388][   T11] bridge_slave_0: left allmulticast mode
[  203.361357][   T11] bridge_slave_0: left promiscuous mode
[  203.379732][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.329917][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.687004][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.916145][   T11] bond0 (unregistering): Released all slaves
[  205.173894][ T5085] Bluetooth: hci3: command tx timeout
[  205.621426][ T6200] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  206.193736][   T29] audit: type=1400 audit(1719385584.143:368): avc:  denied  { bind } for  pid=6210 comm="syz.2.221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  206.521469][ T6153] chnl_net:caif_netlink_parms(): no params data found
[  206.682850][   T11] hsr_slave_0: left promiscuous mode
[  206.689830][   T11] hsr_slave_1: left promiscuous mode
[  206.691804][ T6222] fuse: Invalid rootmode
[  206.701489][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  206.709452][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.720648][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.730067][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  206.757138][   T11] veth1_macvtap: left promiscuous mode
[  206.762771][   T11] veth0_macvtap: left promiscuous mode
[  206.770156][   T11] veth1_vlan: left promiscuous mode
[  206.776172][   T11] veth0_vlan: left promiscuous mode
[  207.255733][ T5085] Bluetooth: hci3: command tx timeout
[  207.556559][   T11] team0 (unregistering): Port device team_slave_1 removed
[  207.612251][   T11] team0 (unregistering): Port device team_slave_0 removed
[  208.242992][ T6222] pimreg: entered allmulticast mode
[  208.337198][   T29] audit: type=1400 audit(1719385586.283:369): avc:  denied  { create } for  pid=6224 comm="syz.0.225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  208.374124][   T29] audit: type=1400 audit(1719385586.293:370): avc:  denied  { connect } for  pid=6224 comm="syz.0.225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  208.404703][   T29] audit: type=1400 audit(1719385586.293:371): avc:  denied  { bind } for  pid=6224 comm="syz.0.225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  208.458320][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.978011][ T6027] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  209.043121][ T6153] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.069218][ T6153] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.094068][ T6153] bridge_slave_0: entered allmulticast mode
[  209.116713][ T6153] bridge_slave_0: entered promiscuous mode
[  209.145988][ T6153] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.153297][ T6153] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.176156][ T6153] bridge_slave_1: entered allmulticast mode
[  209.196874][ T6153] bridge_slave_1: entered promiscuous mode
[  209.218875][ T6027] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  209.256198][ T6027] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  209.311934][ T6027] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  209.333793][ T5085] Bluetooth: hci3: command tx timeout
[  209.398588][ T5947] 8021q: adding VLAN 0 to HW filter on device team0
[  209.491663][ T6252] loop0: detected capacity change from 0 to 256
[  209.534690][ T6252] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x24884a5c, utbl_chksum : 0xe619d30d)
[  209.543321][ T6153] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  209.590497][ T6153] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  209.677327][ T5124] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.684696][ T5124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.725957][ T5124] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.733391][ T5124] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.942611][ T6153] team0: Port device team_slave_0 added
[  209.981255][ T6153] team0: Port device team_slave_1 added
[  210.203341][ T6153] batman_adv: batadv0: Adding interface: batadv_slave_0
[  210.223315][ T6153] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  210.260600][ T6153] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  210.290964][ T6153] batman_adv: batadv0: Adding interface: batadv_slave_1
[  210.338455][ T6153] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  210.403889][ T6153] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  210.800090][ T6153] hsr_slave_0: entered promiscuous mode
[  210.824300][ T6153] hsr_slave_1: entered promiscuous mode
[  210.847954][ T6153] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  210.863725][ T6153] Cannot create hsr debugfs directory
[  211.257301][ T6292] loop0: detected capacity change from 0 to 256
[  211.336403][ T6292] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x24884a5c, utbl_chksum : 0xe619d30d)
[  211.786479][ T6304] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  212.041678][ T6027] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.097607][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  212.654876][ T6027] 8021q: adding VLAN 0 to HW filter on device team0
[  212.846847][ T6027] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  212.857624][ T6027] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  213.042057][ T6326] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  213.527606][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.534884][ T5087] bridge0: port 1(bridge_slave_0) entered forwarding state
[  213.558435][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.565813][ T5087] bridge0: port 2(bridge_slave_1) entered forwarding state
[  213.799222][   T29] audit: type=1326 audit(1719385591.743:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  213.909856][   T29] audit: type=1326 audit(1719385591.793:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  213.917688][ T6335] mmap: syz.0.251 (6335) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  214.001667][   T29] audit: type=1326 audit(1719385591.803:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  214.152898][   T29] audit: type=1326 audit(1719385591.803:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  214.240148][   T29] audit: type=1326 audit(1719385591.813:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  214.274002][   T29] audit: type=1326 audit(1719385591.823:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  214.287870][ T6027] 8021q: adding VLAN 0 to HW filter on device batadv0
[  214.333680][   T29] audit: type=1326 audit(1719385591.823:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x7ffc0000
[  214.367112][   T29] audit: type=1326 audit(1719385591.833:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2fa416cb67 code=0x7ffc0000
[  214.487969][   T29] audit: type=1326 audit(1719385591.833:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2fa4111539 code=0x7ffc0000
[  214.538611][ T6346] netlink: 128 bytes leftover after parsing attributes in process `syz.0.253'.
[  214.558420][   T29] audit: type=1326 audit(1719385591.843:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6333 comm="syz.0.251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2fa416cb67 code=0x7ffc0000
[  214.735647][ T5133] libceph: connect (1)[c::]:6789 error -101
[  214.744964][ T5133] libceph: mon0 (1)[c::]:6789 connect error
[  214.795754][ T6350] ceph: No mds server is up or the cluster is laggy
[  214.814113][ T6357] loop0: detected capacity change from 0 to 1024
[  214.831710][ T6357] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  214.857422][ T6357] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  214.898431][ T5947] veth0_vlan: entered promiscuous mode
[  214.953425][ T6357] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.255: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  215.013485][ T6357] EXT4-fs (loop0): get root inode failed
[  215.048772][ T6357] EXT4-fs (loop0): mount failed
[  215.051374][ T6153] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  215.083470][ T6153] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  215.124941][ T6027] veth0_vlan: entered promiscuous mode
[  215.149546][ T5947] veth1_vlan: entered promiscuous mode
[  215.180743][ T6153] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  215.226717][ T6357] 9pnet_fd: Insufficient options for proto=fd
[  215.233852][ T6153] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  215.287070][ T6027] veth1_vlan: entered promiscuous mode
[  215.354773][ T6357] loop0: detected capacity change from 0 to 128
[  215.773972][ T6357] loop0: detected capacity change from 0 to 256
[  215.934409][ T6357] exFAT-fs (loop0): failed to load alloc-bitmap
[  216.050933][ T6357] exFAT-fs (loop0): failed to recognize exfat type
[  216.479450][ T6357] loop0: detected capacity change from 0 to 512
[  216.564096][ T6357] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  216.635565][ T5947] veth0_macvtap: entered promiscuous mode
[  216.702113][ T5947] veth1_macvtap: entered promiscuous mode
[  216.828144][ T6027] veth0_macvtap: entered promiscuous mode
[  216.908211][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  216.953746][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.973733][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.003640][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.028034][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.068367][ T6027] veth1_macvtap: entered promiscuous mode
[  217.173407][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.203667][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.213557][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.260995][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.299356][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  217.360716][ T5947] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.389717][ T5947] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.403766][ T5947] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.425791][ T5947] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.511490][ T6390] fuse: Bad value for 'fd'
[  217.560473][ T6153] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.646440][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.686822][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.733993][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.763881][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.789610][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.839043][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.876275][ T6027] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.901099][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.933831][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.957263][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.989960][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.031626][ T6027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  218.067824][ T6027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.102638][ T6027] batman_adv: batadv0: Interface activated: batadv_slave_1
[  218.203425][ T6153] 8021q: adding VLAN 0 to HW filter on device team0
[  218.283072][ T6027] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.309302][ T6027] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.353365][ T6027] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.366844][ T6027] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.472570][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.479911][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.613333][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.620760][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  218.956287][ T2453] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.002696][ T2453] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.227813][ T5933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.265732][ T5933] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.378603][ T5933] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.414042][ T5933] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.643137][ T6424] netlink: 36 bytes leftover after parsing attributes in process `syz.2.267'.
[  219.720917][ T2453] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.754834][ T2453] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.959418][   T61] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.288881][   T61] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.389885][ T6153] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.518789][   T61] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.563544][ T6440] netlink: 12 bytes leftover after parsing attributes in process `syz.0.269'.
[  220.714138][ T6439] netlink: 52 bytes leftover after parsing attributes in process `syz.0.269'.
[  220.883425][   T61] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.901999][ T6439] loop0: detected capacity change from 0 to 128
[  220.964772][ T6439] FAT-fs (loop0): Unrecognized mount option "uni_xlate==" or missing value
[  221.133365][   T29] kauditd_printk_skb: 36 callbacks suppressed
[  221.133388][   T29] audit: type=1400 audit(1719385599.083:418): avc:  denied  { read } for  pid=6448 comm="syz.2.271" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  221.346131][ T6153] veth0_vlan: entered promiscuous mode
[  221.402808][ T6153] veth1_vlan: entered promiscuous mode
[  221.639332][ T5096] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  221.663978][ T5096] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  221.700740][ T5096] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  221.748067][ T5096] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  221.756515][ T5096] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  221.765759][ T5096] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  221.822381][   T61] bridge_slave_1: left allmulticast mode
[  221.857565][   T61] bridge_slave_1: left promiscuous mode
[  221.863709][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.968612][   T61] bridge_slave_0: left allmulticast mode
[  221.987155][   T61] bridge_slave_0: left promiscuous mode
[  221.993109][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.266127][   T29] audit: type=1400 audit(1719385601.213:419): avc:  denied  { create } for  pid=6463 comm="syz.0.274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  223.324091][   T29] audit: type=1400 audit(1719385601.263:420): avc:  denied  { bind } for  pid=6463 comm="syz.0.274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  223.428993][   T29] audit: type=1400 audit(1719385601.263:421): avc:  denied  { listen } for  pid=6463 comm="syz.0.274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  223.501735][ T5096] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  223.519868][ T5096] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  223.528788][ T5096] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  223.544033][ T5096] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  223.554733][ T5096] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  223.562531][ T5096] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  223.814503][ T5085] Bluetooth: hci0: command tx timeout
[  224.552630][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.584849][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.613442][   T61] bond0 (unregistering): Released all slaves
[  225.653842][ T5085] Bluetooth: hci4: command tx timeout
[  225.750734][ T6153] veth0_macvtap: entered promiscuous mode
[  225.894577][ T5085] Bluetooth: hci0: command tx timeout
[  225.980542][ T6153] veth1_macvtap: entered promiscuous mode
[  226.131661][   T29] audit: type=1400 audit(1719385604.083:422): avc:  denied  { read write } for  pid=6485 comm="syz.0.281" name="uhid" dev="devtmpfs" ino=1083 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  226.167342][   T29] audit: type=1400 audit(1719385604.083:423): avc:  denied  { open } for  pid=6485 comm="syz.0.281" path="/dev/uhid" dev="devtmpfs" ino=1083 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  226.195024][ T6487] UHID_CREATE from different security context by process 159 (syz.0.281), this is not allowed.
[  226.207949][ T5139] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  226.285420][ T5139] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  226.500782][   T61] hsr_slave_0: left promiscuous mode
[  226.520297][   T61] hsr_slave_1: left promiscuous mode
[  226.531592][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.549372][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.558599][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.568510][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.578893][ T6491] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  226.616553][   T61] veth1_macvtap: left promiscuous mode
[  226.622220][   T61] veth0_macvtap: left promiscuous mode
[  226.635653][   T61] veth1_vlan: left promiscuous mode
[  226.641213][   T61] veth0_vlan: left promiscuous mode
[  227.667929][   T29] audit: type=1400 audit(1719385605.623:424): avc:  denied  { ioctl } for  pid=6500 comm="syz.2.288" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=16791 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  227.743750][ T5085] Bluetooth: hci4: command tx timeout
[  227.868005][   T61] team0 (unregistering): Port device team_slave_1 removed
[  227.927382][   T61] team0 (unregistering): Port device team_slave_0 removed
[  227.975540][ T5085] Bluetooth: hci0: command tx timeout
[  228.603867][ T6503] netlink: 'syz.2.289': attribute type 64 has an invalid length.
[  228.627540][ T6503] netlink: 152 bytes leftover after parsing attributes in process `syz.2.289'.
[  228.655986][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  228.683767][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.709330][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  228.722215][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.732403][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  228.748908][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.761309][ T6153] batman_adv: batadv0: Interface activated: batadv_slave_0
[  228.800751][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  228.823534][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.833702][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  228.844310][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.856847][ T6153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  228.867549][ T6153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  228.892094][ T6153] batman_adv: batadv0: Interface activated: batadv_slave_1
[  229.037390][ T6153] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.064290][ T6153] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.073489][ T6153] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.113377][ T6153] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.218358][ T6509] loop0: detected capacity change from 0 to 2048
[  229.252784][ T6517] netlink: 4 bytes leftover after parsing attributes in process `syz.2.292'.
[  229.391837][ T6520] team1: Mode changed to "activebackup"
[  229.813820][ T5085] Bluetooth: hci4: command tx timeout
[  230.065795][ T5085] Bluetooth: hci0: command tx timeout
[  230.183836][   T29] audit: type=1326 audit(1719385608.133:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6542 comm="syz.0.296" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x0
[  230.280518][ T6544] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 2, id = 0
[  230.290242][   T29] audit: type=1400 audit(1719385608.193:426): avc:  denied  { getopt } for  pid=6534 comm="syz.2.294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  230.394769][   T29] audit: type=1400 audit(1719385608.343:427): avc:  denied  { nlmsg_read } for  pid=6542 comm="syz.0.296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  230.491243][ T6455] chnl_net:caif_netlink_parms(): no params data found
[  230.523437][ T6547] loop0: detected capacity change from 0 to 8
[  230.557567][ T6547] squashfs: Unknown parameter ''
[  230.644643][   T61] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.670821][ T6466] chnl_net:caif_netlink_parms(): no params data found
[  230.853840][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.861722][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.987520][   T61] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.318918][   T61] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.432000][   T61] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.679910][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  231.926646][ T5085] Bluetooth: hci4: command tx timeout
[  232.327500][ T5933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  232.355098][ T5933] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  232.407491][ T6558] veth1_to_hsr: entered promiscuous mode
[  232.419691][ T6558] veth1_to_hsr: left promiscuous mode
[  232.452297][ T6455] bridge0: port 1(bridge_slave_0) entered blocking state
[  232.469252][ T6455] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.477513][ T6455] bridge_slave_0: entered allmulticast mode
[  232.496232][ T6455] bridge_slave_0: entered promiscuous mode
[  232.561553][ T6455] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.569181][ T6455] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.579411][ T6455] bridge_slave_1: entered allmulticast mode
[  232.639813][ T6455] bridge_slave_1: entered promiscuous mode
[  232.708514][ T6565] netlink: 8 bytes leftover after parsing attributes in process `syz.3.206'.
[  232.904949][   T29] audit: type=1400 audit(1719385610.843:428): avc:  denied  { read } for  pid=6566 comm="syz.0.300" laddr=::ffff:172.20.20.170 lport=54716 faddr=::ffff:172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  233.037794][ T6565] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.086101][   T45] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  233.106292][   T45] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  233.197793][ T6455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  233.327985][ T6565] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.382593][ T6455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  233.511077][   T61] bridge_slave_1: left allmulticast mode
[  233.523664][   T61] bridge_slave_1: left promiscuous mode
[  233.533832][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.560430][   T61] bridge_slave_0: left allmulticast mode
[  233.568089][   T61] bridge_slave_0: left promiscuous mode
[  233.580950][ T6580] loop0: detected capacity change from 0 to 2048
[  233.581473][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.173505][ T6585] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.306'.
[  234.212318][ T6585] netlink: get zone limit has 8 unknown bytes
[  234.506711][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  234.525955][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  234.561967][   T61] bond0 (unregistering): Released all slaves
[  234.594566][ T6466] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.602257][ T6466] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.609934][ T6466] bridge_slave_0: entered allmulticast mode
[  234.631632][ T6466] bridge_slave_0: entered promiscuous mode
[  234.747026][ T6565] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.870421][ T6466] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.885968][ T6466] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.893386][ T6466] bridge_slave_1: entered allmulticast mode
[  234.915668][ T6466] bridge_slave_1: entered promiscuous mode
[  235.056458][ T6589] loop0: detected capacity change from 0 to 256
[  235.121823][ T6589] FAT-fs (loop0): Directory bread(block 64) failed
[  235.133475][ T6589] FAT-fs (loop0): Directory bread(block 65) failed
[  235.151736][ T6589] FAT-fs (loop0): Directory bread(block 66) failed
[  235.166531][ T6589] FAT-fs (loop0): Directory bread(block 67) failed
[  235.173341][ T6589] FAT-fs (loop0): Directory bread(block 68) failed
[  235.198060][ T6589] FAT-fs (loop0): Directory bread(block 69) failed
[  235.205665][ T6589] FAT-fs (loop0): Directory bread(block 70) failed
[  235.208977][ T6565] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.212224][ T6589] FAT-fs (loop0): Directory bread(block 71) failed
[  235.232226][ T6589] FAT-fs (loop0): Directory bread(block 72) failed
[  235.254871][ T6589] FAT-fs (loop0): Directory bread(block 73) failed
[  235.304191][ T6455] team0: Port device team_slave_0 added
[  235.374962][ T6466] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  235.527284][ T6455] team0: Port device team_slave_1 added
[  235.726481][ T6466] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  237.566885][ T6598] syz.0.308: attempt to access beyond end of device
[  237.566885][ T6598] loop0: rw=2051, sector=1224, nr_sectors = 32 limit=256
[  238.014288][   T61] hsr_slave_0: left promiscuous mode
[  238.020500][   T61] hsr_slave_1: left promiscuous mode
[  238.054274][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.073794][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.110562][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.128232][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.220921][   T61] veth1_macvtap: left promiscuous mode
[  238.231219][   T61] veth0_macvtap: left promiscuous mode
[  238.239134][   T61] veth1_vlan: left promiscuous mode
[  238.252293][   T61] veth0_vlan: left promiscuous mode
[  238.584287][ T5096] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  238.597989][ T5096] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  238.607077][ T5096] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  238.624024][ T5096] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  238.635210][ T5096] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  238.643093][ T5096] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  239.296267][   T61] team0 (unregistering): Port device team_slave_1 removed
[  239.353516][   T61] team0 (unregistering): Port device team_slave_0 removed
[  239.933462][ T6455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.941291][ T6455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.968882][ T6455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.983343][ T6455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.990593][ T6455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.016762][ T6455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  240.118085][ T6466] team0: Port device team_slave_0 added
[  240.292277][ T6466] team0: Port device team_slave_1 added
[  240.372165][ T5096] Bluetooth: hci2: unexpected cc 0x0403 length: 65 > 1
[  240.433474][ T6455] hsr_slave_0: entered promiscuous mode
[  240.452045][ T6455] hsr_slave_1: entered promiscuous mode
[  240.473658][ T6455] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  240.481370][ T6455] Cannot create hsr debugfs directory
[  240.498823][ T6466] batman_adv: batadv0: Adding interface: batadv_slave_0
[  240.521712][ T6466] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.557750][ T6466] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  240.572170][ T6466] batman_adv: batadv0: Adding interface: batadv_slave_1
[  240.582059][ T6466] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.608826][ T6466] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  240.645113][ T6565] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.703928][ T5096] Bluetooth: hci1: command tx timeout
[  240.721041][ T6565] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.772766][ T6565] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.867530][ T6565] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.993112][ T6466] hsr_slave_0: entered promiscuous mode
[  241.008069][ T6466] hsr_slave_1: entered promiscuous mode
[  241.022276][ T6466] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  241.039692][ T6466] Cannot create hsr debugfs directory
[  241.281328][ T6619] capability: warning: `syz.3.317' uses deprecated v2 capabilities in a way that may be insecure
[  241.309270][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.316'.
[  241.379952][   T29] audit: type=1400 audit(1719385619.333:429): avc:  denied  { read } for  pid=6615 comm="syz.3.317" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  241.514527][ T6617] team1: Mode changed to "activebackup"
[  242.294724][   T61] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.300680][ T6626] loop0: detected capacity change from 0 to 2048
[  242.360134][ T6630] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.319'.
[  242.402600][ T6630] netlink: get zone limit has 8 unknown bytes
[  242.532886][   T61] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.781753][ T5096] Bluetooth: hci1: command tx timeout
[  242.801262][   T61] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.918972][   T61] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.950117][ T6602] chnl_net:caif_netlink_parms(): no params data found
[  243.051998][   T29] audit: type=1400 audit(1719385621.003:430): avc:  denied  { getopt } for  pid=6632 comm="syz.0.320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  243.654659][   T29] audit: type=1400 audit(1719385621.593:431): avc:  denied  { create } for  pid=6636 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  243.725253][ T6643] loop0: detected capacity change from 0 to 164
[  244.186126][ T5096] Bluetooth: Unexpected continuation frame (len 18)
[  244.198241][ T6643] Unsupported NM flag settings (8)
[  244.626262][ T5096] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  244.636692][ T5096] Bluetooth: hci2: Injecting HCI hardware error event
[  244.658027][ T5096] Bluetooth: hci2: hardware error 0x00
[  244.673817][   T29] audit: type=1400 audit(1719385621.663:432): avc:  denied  { shutdown } for  pid=6639 comm="syz.0.322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  244.813973][ T6602] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.821247][ T6602] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.833386][   T29] audit: type=1400 audit(1719385622.603:433): avc:  denied  { ioctl } for  pid=6636 comm="syz.3.321" path="socket:[17753]" dev="sockfs" ino=17753 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  244.859641][ T6602] bridge_slave_0: entered allmulticast mode
[  244.866332][ T5085] Bluetooth: hci1: command tx timeout
[  244.877567][ T6602] bridge_slave_0: entered promiscuous mode
[  244.952112][   T29] audit: type=1400 audit(1719385622.693:434): avc:  denied  { create } for  pid=6636 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  244.991163][   T29] audit: type=1400 audit(1719385622.833:435): avc:  denied  { write } for  pid=6636 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  245.020656][   T29] audit: type=1400 audit(1719385622.873:436): avc:  denied  { write } for  pid=6636 comm="syz.3.321" path="socket:[17753]" dev="sockfs" ino=17753 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  245.085944][ T6602] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.093316][ T6602] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.102012][ T6602] bridge_slave_1: entered allmulticast mode
[  245.125157][ T6602] bridge_slave_1: entered promiscuous mode
[  245.237464][ T6653] xt_cgroup: path and classid specified
[  245.244722][ T6455] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  245.263204][ T6455] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  245.459219][ T6602] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  245.473994][ T6455] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  245.494940][ T6455] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  245.578449][ T5085] Bluetooth: hci2: unexpected cc 0x0403 length: 65 > 1
[  245.585691][ T5085] Bluetooth: hci2: unexpected event for opcode 0x0403
[  245.673522][ T6602] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  245.730158][ T6661] loop3: detected capacity change from 0 to 8
[  245.800822][   T61] bridge_slave_1: left allmulticast mode
[  245.827599][   T61] bridge_slave_1: left promiscuous mode
[  245.846506][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.866676][   T61] bridge_slave_0: left allmulticast mode
[  245.872401][   T61] bridge_slave_0: left promiscuous mode
[  245.894801][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.005289][   T29] audit: type=1804 audit(1719385623.953:437): pid=6664 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.328" name="/root/syzkaller.wa7ESo/6/cgroup.controllers" dev="sda1" ino=1980 res=1 errno=0
[  246.592191][   T29] audit: type=1400 audit(1719385624.543:438): avc:  denied  { read } for  pid=6666 comm="syz.0.329" path="socket:[17888]" dev="sockfs" ino=17888 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  246.618942][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.639071][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.652978][   T61] bond0 (unregistering): Released all slaves
[  246.775165][ T5096] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  246.886550][   T61] IPVS: stopping master sync thread 6544 ...
[  246.888187][ T6602] team0: Port device team_slave_0 added
[  246.933844][ T5096] Bluetooth: hci1: command tx timeout
[  247.001658][ T6673] loop0: detected capacity change from 0 to 16
[  247.110092][ T6602] team0: Port device team_slave_1 added
[  247.450177][ T6677] loop3: detected capacity change from 0 to 512
[  248.929829][ T6671] sched: RT throttling activated
[  248.959526][ T6677] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  249.553842][ T6677] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  249.572457][ T6677] EXT4-fs error (device loop3): ext4_free_branches:1027: inode #11: comm syz.3.332: invalid indirect mapped block 1 (level 1)
[  249.599550][ T6677] EXT4-fs (loop3): 1 truncate cleaned up
[  249.607229][ T6677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.960427][ T6153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.220992][ T6602] batman_adv: batadv0: Adding interface: batadv_slave_0
[  250.233692][ T6602] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  250.268644][ T6602] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  250.283139][ T6602] batman_adv: batadv0: Adding interface: batadv_slave_1
[  250.320925][ T6602] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.977517][ T6602] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  252.518360][   T61] hsr_slave_0: left promiscuous mode
[  252.584796][   T61] hsr_slave_1: left promiscuous mode
[  252.624242][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  252.634055][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  252.661711][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  252.674924][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  252.745704][   T61] veth1_macvtap: left promiscuous mode
[  252.751363][   T61] veth0_macvtap: left promiscuous mode
[  252.759501][   T61] veth1_vlan: left promiscuous mode
[  252.772141][   T61] veth0_vlan: left promiscuous mode
[  253.123889][   T29] audit: type=1400 audit(1719385631.053:439): avc:  denied  { write } for  pid=6690 comm="syz.0.336" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  253.181171][   T61] pimreg (unregistering): left allmulticast mode
[  253.660111][ T6687] loop3: detected capacity change from 0 to 32768
[  253.691504][ T6687] XFS: ikeep mount option is deprecated.
[  253.802628][ T6687] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  253.935155][ T6687] XFS (loop3): Ending clean mount
[  254.001679][ T6687] XFS (loop3): Quotacheck needed: Please wait.
[  254.124296][ T6687] XFS (loop3): Quotacheck: Done.
[  254.454546][   T29] audit: type=1400 audit(1719385632.403:440): avc:  denied  { read append open } for  pid=6686 comm="syz.3.334" path="/root/syzkaller.wa7ESo/9/file1/cgroup.events" dev="loop3" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  254.548429][   T61] team0 (unregistering): Port device team_slave_1 removed
[  254.662508][   T61] team0 (unregistering): Port device team_slave_0 removed
[  255.157672][ T6153] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  256.848457][ T6717] loop0: detected capacity change from 0 to 256
[  256.888285][ T6717] FAT-fs (loop0): Unrecognized mount option "ch˜Crelaxed" or missing value
[  257.244470][ T6602] hsr_slave_0: entered promiscuous mode
[  257.252100][ T6602] hsr_slave_1: entered promiscuous mode
[  257.259941][ T6602] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  257.269107][ T6602] Cannot create hsr debugfs directory
[  257.309874][   T29] audit: type=1804 audit(1719385635.263:441): pid=6725 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.341" name="/root/syzkaller.wa7ESo/11/cgroup.controllers" dev="sda1" ino=1982 res=1 errno=0
[  257.452775][ T6466] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  257.498435][ T6466] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  257.619069][ T6466] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  257.661343][ T6466] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  257.725806][ T6455] 8021q: adding VLAN 0 to HW filter on device bond0
[  258.015481][   T29] audit: type=1326 audit(1719385635.973:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6727 comm="syz.0.342" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2fa4175ae9 code=0x0
[  258.059208][ T6455] 8021q: adding VLAN 0 to HW filter on device team0
[  258.091754][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.099035][ T5150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  258.190952][ T6730] netlink: 24 bytes leftover after parsing attributes in process `syz.0.342'.
[  258.251006][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.258340][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state
[  258.501750][ T6455] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  258.714957][ T6466] 8021q: adding VLAN 0 to HW filter on device bond0
[  258.848837][ T6466] 8021q: adding VLAN 0 to HW filter on device team0
[  259.021162][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.028536][ T5150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.066423][ T6602] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  259.081470][ T6602] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  259.134969][ T5124] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.142289][ T5124] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.165821][ T6602] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  259.180065][ T6602] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  259.329848][ T6455] 8021q: adding VLAN 0 to HW filter on device batadv0
[  259.360415][ T6732] loop3: detected capacity change from 0 to 32768
[  259.525504][ T6732] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  259.718921][ T6732] XFS (loop3): Ending clean mount
[  259.791647][   T29] audit: type=1400 audit(1719385637.743:443): avc:  denied  { read append } for  pid=6731 comm="syz.3.343" name="file1" dev="loop3" ino=4422 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  259.849891][   T29] audit: type=1400 audit(1719385637.743:444): avc:  denied  { open } for  pid=6731 comm="syz.3.343" path="/root/syzkaller.wa7ESo/12/file1/file1" dev="loop3" ino=4422 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  259.940236][   T29] audit: type=1400 audit(1719385637.833:445): avc:  denied  { setattr } for  pid=6731 comm="syz.3.343" name="file1" dev="loop3" ino=4422 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  259.941964][ T6602] 8021q: adding VLAN 0 to HW filter on device bond0
[  260.038610][ T6153] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  260.171732][ T6602] 8021q: adding VLAN 0 to HW filter on device team0
[  260.228529][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.235866][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  260.290951][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.298335][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.517440][ T6739] loop0: detected capacity change from 0 to 32768
[  260.609227][ T6466] 8021q: adding VLAN 0 to HW filter on device batadv0
[  260.754922][ T6455] veth0_vlan: entered promiscuous mode
[  260.863937][   T29] audit: type=1400 audit(1719385638.803:446): avc:  denied  { mounton } for  pid=6738 comm="syz.0.344" path="/root/syzkaller.dK3pGG/96/file0" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  260.867190][ T6455] veth1_vlan: entered promiscuous mode
[  261.438958][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  261.446231][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  262.076038][ T6455] veth0_macvtap: entered promiscuous mode
[  262.126991][ T6766] veth1_to_hsr: entered promiscuous mode
[  262.136600][ T6766] veth1_to_hsr: left promiscuous mode
[  262.353166][ T6455] veth1_macvtap: entered promiscuous mode
[  262.381153][ T6466] veth0_vlan: entered promiscuous mode
[  262.457182][ T6771] xt_cgroup: path and classid specified
[  262.580127][ T6455] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.604394][ T6455] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.643656][ T6455] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.670904][ T6455] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.693391][ T6455] batman_adv: batadv0: Interface activated: batadv_slave_0
[  262.707992][ T6466] veth1_vlan: entered promiscuous mode
[  262.740564][ T6455] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.758008][ T6455] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.771566][ T6455] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.783498][ T6455] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.801348][ T6455] batman_adv: batadv0: Interface activated: batadv_slave_1
[  262.876712][ T6455] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  262.920966][ T6455] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  262.939026][ T6455] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  262.967623][ T6455] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  263.231865][ T6602] 8021q: adding VLAN 0 to HW filter on device batadv0
[  263.349581][ T6466] veth0_macvtap: entered promiscuous mode
[  263.450572][ T6466] veth1_macvtap: entered promiscuous mode
[  263.673159][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.691262][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.703935][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.715220][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.728264][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.740808][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.763289][ T6466] batman_adv: batadv0: Interface activated: batadv_slave_0
[  263.808289][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  263.830092][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.840227][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  263.852107][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.864591][ T6788] loop3: detected capacity change from 0 to 64
[  263.868725][ T6466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  263.882864][ T6466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.903764][ T6466] batman_adv: batadv0: Interface activated: batadv_slave_1
[  263.935670][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  263.968923][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  264.066287][ T6466] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  264.092941][ T6466] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  264.114655][ T6466] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  264.123445][ T6466] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  264.203415][  T113] ==================================================================
[  264.211531][  T113] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0xa29/0xb20
[  264.219247][  T113] Read of size 4 at addr ffff88802e0d2294 by task jfsCommit/113
[  264.226913][  T113] 
[  264.229275][  T113] CPU: 0 PID: 113 Comm: jfsCommit Not tainted 6.10.0-rc5-syzkaller-00018-g55027e689933 #0
[  264.239207][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  264.249314][  T113] Call Trace:
[  264.252622][  T113]  <TASK>
[  264.255586][  T113]  dump_stack_lvl+0x116/0x1f0
[  264.260343][  T113]  print_report+0xc3/0x620
[  264.264836][  T113]  ? __virt_addr_valid+0x5e/0x580
[  264.269926][  T113]  ? __phys_addr+0xc6/0x150
[  264.274480][  T113]  kasan_report+0xd9/0x110
[  264.278973][  T113]  ? jfs_lazycommit+0xa29/0xb20
[  264.283883][  T113]  ? jfs_lazycommit+0xa29/0xb20
[  264.288808][  T113]  jfs_lazycommit+0xa29/0xb20
[  264.293503][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  264.298725][  T113]  ? __pfx_default_wake_function+0x10/0x10
[  264.304561][  T113]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.309810][  T113]  ? __kthread_parkme+0x148/0x220
[  264.314887][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  264.320139][  T113]  kthread+0x2c1/0x3a0
[  264.324258][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[  264.329470][  T113]  ? __pfx_kthread+0x10/0x10
[  264.334091][  T113]  ret_from_fork+0x45/0x80
[  264.338564][  T113]  ? __pfx_kthread+0x10/0x10
[  264.343198][  T113]  ret_from_fork_asm+0x1a/0x30
[  264.348030][  T113]  </TASK>
[  264.351084][  T113] 
[  264.353446][  T113] Allocated by task 6739:
[  264.357788][  T113]  kasan_save_stack+0x33/0x60
[  264.362489][  T113]  kasan_save_track+0x14/0x30
[  264.367196][  T113]  __kasan_kmalloc+0xaa/0xb0
[  264.371929][  T113]  jfs_fill_super+0xe5/0xd20
[  264.376559][  T113]  mount_bdev+0x1e3/0x2d0
[  264.380944][  T113]  legacy_get_tree+0x109/0x220
[  264.385758][  T113]  vfs_get_tree+0x8f/0x380
[  264.390228][  T113]  path_mount+0x14e6/0x1f20
[  264.394777][  T113]  __x64_sys_mount+0x297/0x320
[  264.399595][  T113]  do_syscall_64+0xcd/0x250
[  264.404147][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.410121][  T113] 
[  264.412461][  T113] Freed by task 5507:
[  264.416480][  T113]  kasan_save_stack+0x33/0x60
[  264.421292][  T113]  kasan_save_track+0x14/0x30
[  264.426013][  T113]  kasan_save_free_info+0x3b/0x60
[  264.431089][  T113]  poison_slab_object+0xf7/0x160
[  264.436077][  T113]  __kasan_slab_free+0x32/0x50
[  264.440873][  T113]  kfree+0x12a/0x3b0
[  264.444794][  T113]  generic_shutdown_super+0x159/0x3d0
[  264.450209][  T113]  kill_block_super+0x3b/0x90
[  264.454912][  T113]  deactivate_locked_super+0xbe/0x1a0
[  264.460333][  T113]  deactivate_super+0xde/0x100
[  264.465114][  T113]  cleanup_mnt+0x222/0x450
[  264.469536][  T113]  task_work_run+0x14e/0x250
[  264.474134][  T113]  syscall_exit_to_user_mode+0x278/0x2a0
[  264.479808][  T113]  do_syscall_64+0xda/0x250
[  264.484336][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.490277][  T113] 
[  264.492599][  T113] The buggy address belongs to the object at ffff88802e0d2200
[  264.492599][  T113]  which belongs to the cache kmalloc-256 of size 256
[  264.506669][  T113] The buggy address is located 148 bytes inside of
[  264.506669][  T113]  freed 256-byte region [ffff88802e0d2200, ffff88802e0d2300)
[  264.520509][  T113] 
[  264.522826][  T113] The buggy address belongs to the physical page:
[  264.529245][  T113] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2e0d2
[  264.538019][  T113] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  264.546525][  T113] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  264.554132][  T113] page_type: 0xffffefff(slab)
[  264.558815][  T113] raw: 00fff00000000040 ffff888015441b40 ffffea000061ba80 dead000000000004
[  264.567404][  T113] raw: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[  264.576015][  T113] head: 00fff00000000040 ffff888015441b40 ffffea000061ba80 dead000000000004
[  264.584700][  T113] head: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[  264.593374][  T113] head: 00fff00000000001 ffffea0000b83481 ffffffffffffffff 0000000000000000
[  264.602051][  T113] head: ffff888000000002 0000000000000000 00000000ffffffff 0000000000000000
[  264.610725][  T113] page dumped because: kasan: bad access detected
[  264.617153][  T113] page_owner tracks the page as allocated
[  264.622870][  T113] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5091, tgid 5091 (syz-executor), ts 96772429982, free_ts 96752803492
[  264.644283][  T113]  post_alloc_hook+0x2d1/0x350
[  264.649151][  T113]  get_page_from_freelist+0x136a/0x2e50
[  264.654736][  T113]  __alloc_pages_noprof+0x22b/0x2460
[  264.660084][  T113]  alloc_slab_page+0x56/0x110
[  264.664780][  T113]  new_slab+0x84/0x260
[  264.668873][  T113]  ___slab_alloc+0xdac/0x1870
[  264.673583][  T113]  __slab_alloc.constprop.0+0x56/0xb0
[  264.679001][  T113]  __kmalloc_noprof+0x36d/0x410
[  264.683873][  T113]  __register_sysctl_table+0xdde/0x1790
[  264.689467][  T113]  neigh_sysctl_register+0x31a/0x640
[  264.694809][  T113]  devinet_sysctl_register+0xb6/0x200
[  264.700229][  T113]  inetdev_event+0x171f/0x19b0
[  264.705018][  T113]  notifier_call_chain+0xb9/0x410
[  264.710186][  T113]  call_netdevice_notifiers_info+0xbe/0x140
[  264.716128][  T113]  dev_change_name+0x5ab/0x920
[  264.720936][  T113]  do_setlink+0x3008/0x3ff0
[  264.725457][  T113] page last free pid 5086 tgid 5086 stack trace:
[  264.731793][  T113]  free_unref_page+0x64a/0xe40
[  264.736604][  T113]  qlist_free_all+0x4e/0x140
[  264.741248][  T113]  kasan_quarantine_reduce+0x192/0x1e0
[  264.746852][  T113]  __kasan_slab_alloc+0x69/0x90
[  264.751795][  T113]  kmem_cache_alloc_lru_noprof+0x121/0x2f0
[  264.751852][  T113]  sock_alloc_inode+0x25/0x1c0
[  264.762488][  T113]  alloc_inode+0x5d/0x230
[  264.766856][  T113]  new_inode_pseudo+0x16/0x80
[  264.771575][  T113]  sock_alloc+0x40/0x280
[  264.775842][  T113]  __sock_create+0xc0/0x800
[  264.780358][  T113]  __sys_socket+0x14f/0x260
[  264.784898][  T113]  __x64_sys_socket+0x72/0xb0
[  264.789603][  T113]  do_syscall_64+0xcd/0x250
[  264.794126][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.800047][  T113] 
[  264.802368][  T113] Memory state around the buggy address:
[  264.808001][  T113]  ffff88802e0d2180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  264.816074][  T113]  ffff88802e0d2200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  264.824164][  T113] >ffff88802e0d2280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  264.832248][  T113]                          ^
[  264.836853][  T113]  ffff88802e0d2300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  264.844940][  T113]  ffff88802e0d2380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  264.853199][  T113] ==================================================================
[  264.861272][  T113] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  264.868472][  T113] CPU: 0 PID: 113 Comm: jfsCommit Not tainted 6.10.0-rc5-syzkaller-00018-g55027e689933 #0
[  264.878376][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  264.888443][  T113] Call Trace:
[  264.891726][  T113]  <TASK>
[  264.894668][  T113]  dump_stack_lvl+0x3d/0x1f0
[  264.899274][  T113]  panic+0x6f5/0x7a0
[  264.903190][  T113]  ? __pfx_panic+0x10/0x10
[  264.907660][  T113]  ? rcu_is_watching+0x12/0xc0
[  264.912475][  T113]  ? __pfx_lock_release+0x10/0x10
[  264.917522][  T113]  ? check_panic_on_warn+0x1f/0xb0
[  264.922661][  T113]  check_panic_on_warn+0xab/0xb0
[  264.927623][  T113]  end_report+0x117/0x180
[  264.931977][  T113]  kasan_report+0xe9/0x110
[  264.936420][  T113]  ? jfs_lazycommit+0xa29/0xb20
[  264.941287][  T113]  ? jfs_lazycommit+0xa29/0xb20
[  264.946176][  T113]  jfs_lazycommit+0xa29/0xb20
[  264.950904][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  264.956158][  T113]  ? __pfx_default_wake_function+0x10/0x10
[  264.961983][  T113]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.967228][  T113]  ? __kthread_parkme+0x148/0x220
[  264.972305][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  264.977546][  T113]  kthread+0x2c1/0x3a0
[  264.981650][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[  264.986870][  T113]  ? __pfx_kthread+0x10/0x10
[  264.991526][  T113]  ret_from_fork+0x45/0x80
[  264.995995][  T113]  ? __pfx_kthread+0x10/0x10
[  265.000597][  T113]  ret_from_fork_asm+0x1a/0x30
[  265.005394][  T113]  </TASK>
[  265.008731][  T113] Kernel Offset: disabled
[  265.013063][  T113] Rebooting in 86400 seconds..