last executing test programs:

3.715432237s ago: executing program 4 (id=6221):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000020000008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000280)="5e5feacb57b4692b19d771e6ed79389ddd2b8419465824daf1c0b83351f69151f46f541d3d5a328129f4b4e00bf126580c7390dbc2", 0x35}], 0x1, 0x7800, 0xffffffff, 0x3)
ioperm(0x9, 0x3ff, 0xff)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000003c0)={0x0, &(0x7f00000000c0)})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="796100000000000000007e000000330003006764c0b98823c5339bdf30f4710e1d0ce6d714e121a669cd20686b797f052ddaeffd77b5cf787e067d3365d12834f1f4ba5862f6cf8b09c98f07e61752cd69a29e33"], 0x1c}}, 0x4000054)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='cq_poll\x00'}, 0x18)

2.588243613s ago: executing program 4 (id=6225):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
chdir(&(0x7f0000000100)='./file0\x00')
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

2.575777923s ago: executing program 2 (id=6226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000080000000000000000000000850000001300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r2, 0x18000000000002a0, 0x12, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f088a8", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.551063233s ago: executing program 4 (id=6229):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

2.456905325s ago: executing program 2 (id=6230):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x8)
r0 = getpid()
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000001240)=ANY=[@ANYBLOB='1-8:5', @ANYBLOB='b'], 0x31)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r7}, 0x18)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x96d)

2.443269565s ago: executing program 4 (id=6232):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket(0x10, 0x3, 0x0)
openat$selinux_user(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed0744790000000000000000180000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="640100000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400200100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe80000000000000000000000000000014000400ff020000000000"], 0x164}}, 0x0)
socket$key(0xf, 0x3, 0x2)

2.200135049s ago: executing program 0 (id=6235):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2}, [@printk={@llx}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)

1.996844131s ago: executing program 0 (id=6236):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000020000008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000280)="5e5feacb57b4692b19d771e6ed79389ddd2b8419465824daf1c0b83351f69151f46f541d3d5a328129f4b4e00bf126580c7390dbc2", 0x35}], 0x1, 0x7800, 0xffffffff, 0x3)
ioperm(0x9, 0x3ff, 0xff)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000003c0)={0x0, &(0x7f00000000c0)})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="796100000000000000007e000000330003006764c0b98823c5339bdf30f4710e1d0ce6d714e121a669cd20686b797f052ddaeffd77b5cf787e067d3365d12834f1f4ba5862f6cf8b09c98f07e61752cd69a29e33"], 0x1c}}, 0x4000054)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='cq_poll\x00'}, 0x18)

1.974538082s ago: executing program 1 (id=6237):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x280008a, &(0x7f00000007c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c696f636861727365743d64656661756c742c756e695f786c6174653d302c6e6f6e756d7461696c3d302c757466383d302c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030322c726f6469722c73686f72866e616d653d6d697865642c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7569643d", @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=0,shortname=mixed,uni_xlate=0,shortname=winnt,\x00'], 0x96, 0x2a9, &(0x7f0000000500)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff", @ANYBLOB, @ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = syz_open_dev$vcsa(0x0, 0x1, 0x102)
write$P9_RREMOVE(r6, &(0x7f00000002c0)={0x7, 0x7b, 0x2}, 0x7)
r7 = dup(0xffffffffffffffff)
connect$bt_rfcomm(r7, &(0x7f00000008c0)={0x1f, @none, 0x6}, 0xa)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a}}, 0x1c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x28, 0x14, 0xf0b, 0xfffffffe, 0x0, {0x2, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xfff1, 0x5}, {0x6, 0xffff}}, [@TCA_STAB={0x4}]}, 0x28}}, 0x0)
io_setup(0x281, &(0x7f0000000100)=<r9=>0x0)
io_submit(r9, 0x1, &(0x7f0000000a00)=[&(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
bpf$MAP_CREATE(0x0, 0x0, 0x50)

1.934622562s ago: executing program 4 (id=6238):
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f00000008c0)=';', 0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x12141, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x20000023896)

1.467701489s ago: executing program 2 (id=6239):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
chdir(&(0x7f0000000100)='./file0\x00')
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.438187179s ago: executing program 2 (id=6240):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
chdir(&(0x7f0000000100)='./file0\x00')
r4 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r4, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.342185491s ago: executing program 2 (id=6242):
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
readlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000700)=""/4096, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getuid()
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r4, @ANYBLOB="140001140040000000000000000000000000000014000200fe8000000000000000000000000000aa140006"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)

908.155927ms ago: executing program 0 (id=6243):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00"/11], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001010000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

883.297867ms ago: executing program 0 (id=6245):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001040)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

882.873207ms ago: executing program 3 (id=6246):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2}, [@printk={@llx}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)

848.255878ms ago: executing program 0 (id=6247):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0x1d, &(0x7f00000001c0), 0x4)

847.715858ms ago: executing program 3 (id=6248):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket(0x10, 0x3, 0x0)
openat$selinux_user(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed0744790000000000000000180000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="640100000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400200100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe80000000000000000000000000000014000400ff020000000000"], 0x164}}, 0x0)
socket$key(0xf, 0x3, 0x2)

847.265078ms ago: executing program 0 (id=6249):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x8)
r0 = getpid()
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000001240)=ANY=[@ANYBLOB='1-8:5', @ANYBLOB='b'], 0x31)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r7}, 0x18)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x96d)

800.370798ms ago: executing program 1 (id=6250):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
chdir(&(0x7f0000000100)='./file0\x00')
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

785.127759ms ago: executing program 1 (id=6251):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
dup3(r3, r2, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x1a0a, 0x2})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x2000000, &(0x7f00000004c0)="e0"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000480)={0x4c, 0x0, &(0x7f0000000200)=[@acquire, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

556.499432ms ago: executing program 4 (id=6252):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="1b0000001e005f0214f6ffffffff", 0xe)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x3c}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x40000, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r4, 0x400, 0x1)

409.964984ms ago: executing program 2 (id=6253):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})

341.341515ms ago: executing program 3 (id=6254):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x1c1842, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="110000000002"})

338.855385ms ago: executing program 1 (id=6255):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000002bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_open_procfs(0x0, 0x0)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r3, &(0x7f0000000080)=[{&(0x7f0000000300)='4', 0x1}], 0x1)

299.489806ms ago: executing program 3 (id=6256):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

280.482676ms ago: executing program 1 (id=6257):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1000, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

248.446206ms ago: executing program 3 (id=6258):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00"/11], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001010000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03316844268cb89e14f0080047e0ffff00124000632f77fbac14fe16e000030a07080403fe80000020006558845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x24, 0x60000000}, 0x2c)

226.918677ms ago: executing program 3 (id=6259):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2}, [@printk={@llx}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)

0s ago: executing program 1 (id=6260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x1, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x80, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x8cb97eb, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

21.647699][   T28] audit: type=1400 audit(1747283462.782:4934): avc:  denied  { create } for  pid=14875 comm="syz.1.4995" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  921.736027][ T6304] EXT4-fs (loop1): unmounting filesystem.
[  921.795938][   T28] audit: type=1400 audit(1747283462.972:4935): avc:  denied  { read write } for  pid=14875 comm="syz.1.4995" name="loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  921.837382][   T28] audit: type=1400 audit(1747283462.972:4936): avc:  denied  { open } for  pid=14875 comm="syz.1.4995" path="/dev/loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  921.915850][T14916] loop1: detected capacity change from 0 to 512
[  922.360743][T14925] overlayfs: failed to clone upperpath
[  922.372884][T14911] syz.4.5004[14911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  922.373227][T14911] syz.4.5004[14911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  922.417444][T14916] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  922.521056][T14916] ext4 filesystem being mounted at /558/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  923.877186][   T28] kauditd_printk_skb: 26 callbacks suppressed
[  923.877203][   T28] audit: type=1400 audit(1747283467.592:4963): avc:  denied  { mac_admin } for  pid=14951 comm="syz.3.5023" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  924.239767][ T6304] EXT4-fs (loop1): unmounting filesystem.
[  924.273347][T14957] device pim6reg1 entered promiscuous mode
[  924.363117][   T28] audit: type=1326 audit(1747283468.082:4964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.420755][   T28] audit: type=1326 audit(1747283468.082:4965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.451118][   T28] audit: type=1326 audit(1747283468.112:4966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.482746][T14970] syz.2.5026[14970] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  924.482824][T14970] syz.2.5026[14970] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  924.495751][   T28] audit: type=1326 audit(1747283468.112:4967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.843306][   T28] audit: type=1326 audit(1747283468.112:4968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.872082][   T28] audit: type=1326 audit(1747283468.112:4969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.916246][   T28] audit: type=1326 audit(1747283468.112:4970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  924.962364][   T28] audit: type=1326 audit(1747283468.112:4971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  925.001612][   T28] audit: type=1326 audit(1747283468.112:4972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.3.5030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd72958e969 code=0x7ffc0000
[  925.127782][T14981] device veth0_vlan left promiscuous mode
[  925.156403][T14981] device veth0_vlan entered promiscuous mode
[  925.393081][T14989] overlayfs: failed to clone upperpath
[  925.761571][T14995] SELinux: failed to load policy
[  926.226136][T15002] random: crng reseeded on system resumption
[  926.458744][T15000] syz.4.5039[15000] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.459106][T15000] syz.4.5039[15000] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.492704][T15000] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5039'.
[  926.513403][T15000] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5039'.
[  927.463483][T15017] syz.4.5043[15017] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  927.463569][T15017] syz.4.5043[15017] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  930.049249][   T28] kauditd_printk_skb: 94 callbacks suppressed
[  930.049267][   T28] audit: type=1400 audit(1747283473.762:5067): avc:  denied  { unmount } for  pid=6304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  930.198321][T15040] device pim6reg1 entered promiscuous mode
[  930.289852][   T28] audit: type=1400 audit(1747283473.992:5068): avc:  denied  { append } for  pid=15037 comm="syz.3.5050" name="usbmon5" dev="devtmpfs" ino=174 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  930.514561][   T28] audit: type=1400 audit(1747283474.002:5069): avc:  denied  { open } for  pid=15037 comm="syz.3.5050" path="/dev/usbmon5" dev="devtmpfs" ino=174 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  931.031068][T15057] loop1: detected capacity change from 0 to 512
[  931.041294][T15057] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  931.247931][T15057] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2186: inode #15: comm syz.1.5054: corrupted in-inode xattr
[  931.301588][T15057] EXT4-fs (loop1): Remounting filesystem read-only
[  931.326612][T15057] EXT4-fs (loop1): 1 truncate cleaned up
[  931.332490][T15057] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  931.845408][T15068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5056'.
[  932.186143][   T28] audit: type=1400 audit(1747283475.902:5070): avc:  denied  { unmount } for  pid=6705 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  932.212216][ T6304] EXT4-fs (loop1): unmounting filesystem.
[  932.228294][   T28] audit: type=1326 audit(1747283475.942:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  932.254002][T15075] device pim6reg1 entered promiscuous mode
[  932.267682][   T28] audit: type=1326 audit(1747283475.942:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  932.292539][   T28] audit: type=1326 audit(1747283475.942:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  932.316623][   T28] audit: type=1326 audit(1747283475.942:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  932.341150][   T28] audit: type=1326 audit(1747283475.942:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  932.365319][   T28] audit: type=1326 audit(1747283475.942:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15076 comm="syz.0.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6e9158e969 code=0x7ffc0000
[  933.933874][T15114] xt_bpf: check failed: parse error
[  934.097327][T15120] loop1: detected capacity change from 0 to 512
[  934.122447][T15120] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  934.263135][T15120] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2186: inode #15: comm syz.1.5071: corrupted in-inode xattr
[  934.276607][T15120] EXT4-fs (loop1): Remounting filesystem read-only
[  934.284819][T15120] EXT4-fs (loop1): 1 truncate cleaned up
[  934.290550][T15120] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  935.060162][   T28] kauditd_printk_skb: 59 callbacks suppressed
[  935.100625][ T6304] EXT4-fs (loop1): unmounting filesystem.
[  935.121433][   T28] audit: type=1326 audit(1747283478.392:5136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.292063][   T28] audit: type=1326 audit(1747283478.392:5137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.316325][   T28] audit: type=1326 audit(1747283478.392:5138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.343589][   T28] audit: type=1326 audit(1747283478.392:5139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.368888][   T28] audit: type=1326 audit(1747283478.452:5140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.411476][   T28] audit: type=1326 audit(1747283478.452:5141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.488122][   T28] audit: type=1326 audit(1747283478.512:5142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.524430][   T28] audit: type=1326 audit(1747283478.512:5143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.548343][   T28] audit: type=1326 audit(1747283478.512:5144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.574634][   T28] audit: type=1326 audit(1747283478.512:5145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15122 comm="syz.2.5078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7ff954b8e969 code=0x7ffc0000
[  935.912454][T15149] device bridge4 entered promiscuous mode
[  935.930839][T15131] bridge0: port 1(bridge_slave_0) entered blocking state
[  935.940093][T15131] bridge0: port 1(bridge_slave_0) entered disabled state
[  935.956622][T15131] device bridge_slave_0 entered promiscuous mode
[  935.968335][T15131] bridge0: port 2(bridge_slave_1) entered blocking state
[  935.980924][T15131] bridge0: port 2(bridge_slave_1) entered disabled state
[  935.993206][T15131] device bridge_slave_1 entered promiscuous mode
[  936.126695][T15131] bridge0: port 2(bridge_slave_1) entered blocking state
[  936.133797][T15131] bridge0: port 2(bridge_slave_1) entered forwarding state
[  936.141108][T15131] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.148189][T15131] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.209223][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  936.220693][ T9009] bridge0: port 1(bridge_slave_0) entered disabled state
[  936.240904][ T9009] bridge0: port 2(bridge_slave_1) entered disabled state
[  936.269558][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  936.282944][ T9009] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.290128][ T9009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.334704][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  936.360598][ T9009] bridge0: port 2(bridge_slave_1) entered blocking state
[  936.367736][ T9009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  936.407236][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  936.419641][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  936.443625][T15131] device veth0_vlan entered promiscuous mode
[  936.458562][T15131] device veth1_macvtap entered promiscuous mode
[  936.509256][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  936.528468][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  936.718756][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  936.824225][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  936.847326][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  936.857712][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  936.866202][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  936.874257][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  936.883360][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  936.892069][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  936.900519][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  936.909209][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  936.918003][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  936.961891][T15177] device pim6reg1 entered promiscuous mode
[  938.504920][ T8946] Bluetooth: hci0: Frame reassembly failed (-84)
[  938.873133][T15178] device veth0_vlan left promiscuous mode
[  938.878900][T15178] device veth0_vlan entered promiscuous mode
[  938.886326][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  938.902127][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  938.919309][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  939.040507][T15204] loop1: detected capacity change from 0 to 256
[  939.047917][T15204] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[  939.138597][T15207] overlayfs: failed to clone upperpath
[  939.759233][T15213] device pim6reg1 entered promiscuous mode
[  940.178812][T15227] overlayfs: failed to resolve './file2': -2
[  940.511426][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  940.511734][ T6166] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  942.570537][T15253] random: crng reseeded on system resumption
[  943.558848][   T28] kauditd_printk_skb: 94 callbacks suppressed
[  943.558864][   T28] audit: type=1400 audit(1747283487.272:5240): avc:  denied  { write } for  pid=15267 comm="syz.4.5124" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  943.600775][T15270] netlink: 'syz.0.5120': attribute type 13 has an invalid length.
[  943.608762][T15270] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  943.642829][T15270] gretap0: refused to change device tx_queue_len
[  943.649458][T15270] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  943.751090][T15276] loop1: detected capacity change from 0 to 512
[  943.854390][T15276] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  943.867927][T15276] ext4 filesystem being mounted at /582/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  944.851648][ T6304] EXT4-fs (loop1): unmounting filesystem.
[  944.896937][   T28] audit: type=1400 audit(1747283488.612:5241): avc:  denied  { read write } for  pid=6304 comm="syz-executor" name="loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  944.927473][   T28] audit: type=1400 audit(1747283488.612:5242): avc:  denied  { open } for  pid=6304 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  945.307552][T15297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5130'.
[  945.342367][   T28] audit: type=1400 audit(1747283488.612:5243): avc:  denied  { ioctl } for  pid=6304 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  945.369358][   T28] audit: type=1400 audit(1747283488.612:5244): avc:  denied  { read write } for  pid=15300 comm="syz.4.5134" name="fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  945.394140][   T28] audit: type=1400 audit(1747283488.612:5245): avc:  denied  { open } for  pid=15300 comm="syz.4.5134" path="/dev/fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  945.410275][T15307] input: syz0 as /devices/virtual/input/input27
[  945.424625][   T28] audit: type=1400 audit(1747283488.612:5246): avc:  denied  { mounton } for  pid=15300 comm="syz.4.5134" path="/541/file0" dev="tmpfs" ino=2977 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  945.480357][   T28] audit: type=1400 audit(1747283488.612:5247): avc:  denied  { mount } for  pid=15300 comm="syz.4.5134" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  945.522800][   T28] audit: type=1400 audit(1747283488.642:5248): avc:  denied  { bpf } for  pid=15299 comm="syz.1.5133" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  945.570957][   T28] audit: type=1400 audit(1747283488.642:5249): avc:  denied  { prog_load } for  pid=15299 comm="syz.1.5133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  945.966953][T15316] netlink: 'syz.4.5139': attribute type 13 has an invalid length.
[  945.974916][T15316] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  945.983201][T15316] gretap0: refused to change device tx_queue_len
[  945.990156][T15316] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  946.502947][T15326] netlink: 'syz.4.5142': attribute type 13 has an invalid length.
[  946.510868][T15326] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  946.519199][T15326] gretap0: refused to change device tx_queue_len
[  946.525781][T15326] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  947.088225][ T6170] Bluetooth: hci0: command 0x1003 tx timeout
[  947.123959][ T6166] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  947.232137][T15338] input: syz0 as /devices/virtual/input/input28
[  947.547766][T15344] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5147'.
[  949.131647][T15357] netlink: 'syz.3.5151': attribute type 13 has an invalid length.
[  949.141189][T15357] gretap0: refused to change device tx_queue_len
[  949.147825][T15357] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  949.798059][T15365] loop1: detected capacity change from 0 to 512
[  950.065630][   T28] kauditd_printk_skb: 21 callbacks suppressed
[  950.065655][   T28] audit: type=1400 audit(1747283493.782:5271): avc:  denied  { create } for  pid=15368 comm="syz.4.5157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  950.293182][   T28] audit: type=1400 audit(1747283493.932:5272): avc:  denied  { bind } for  pid=15368 comm="syz.4.5157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  950.358182][   T28] audit: type=1400 audit(1747283493.932:5273): avc:  denied  { mount } for  pid=15364 comm="syz.1.5155" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  950.385073][   T28] audit: type=1400 audit(1747283493.932:5274): avc:  denied  { read write } for  pid=15364 comm="syz.1.5155" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  950.408889][   T28] audit: type=1400 audit(1747283493.932:5275): avc:  denied  { open } for  pid=15364 comm="syz.1.5155" path="/dev/raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  950.442434][   T28] audit: type=1400 audit(1747283493.932:5276): avc:  denied  { ioctl } for  pid=15364 comm="syz.1.5155" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  950.511391][   T40] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  950.531670][   T28] audit: type=1400 audit(1747283493.942:5277): avc:  denied  { setopt } for  pid=15368 comm="syz.4.5157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  950.556132][   T28] audit: type=1400 audit(1747283493.942:5278): avc:  denied  { ioctl } for  pid=15368 comm="syz.4.5157" path="socket:[76144]" dev="sockfs" ino=76144 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  950.587732][   T28] audit: type=1400 audit(1747283493.962:5279): avc:  denied  { create } for  pid=15371 comm="syz.2.5158" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  950.609336][   T28] audit: type=1400 audit(1747283493.962:5280): avc:  denied  { map } for  pid=15371 comm="syz.2.5158" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=76150 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  950.624889][T15375] syz.4.5159[15375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  950.634341][T15372] bridge0: port 1(bridge_slave_0) entered blocking state
[  950.653092][T15372] bridge0: port 1(bridge_slave_0) entered disabled state
[  950.660246][T15375] syz.4.5159[15375] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  950.664037][T15372] device bridge_slave_0 entered promiscuous mode
[  950.685477][T15372] bridge0: port 2(bridge_slave_1) entered blocking state
[  950.693964][T15372] bridge0: port 2(bridge_slave_1) entered disabled state
[  950.703526][T15372] device bridge_slave_1 entered promiscuous mode
[  950.745841][T15383] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5159'.
[  950.812785][T15383] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5159'.
[  951.621385][   T40] usb 2-1: Using ep0 maxpacket: 16
[  951.627683][   T40] usb 2-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  951.662579][   T40] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  951.686537][   T40] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  951.711408][   T40] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30442, setting to 1024
[  951.722726][   T40] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  951.783812][   T40] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  951.812091][   T40] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  951.821191][   T40] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  951.841367][   T40] usb 2-1: SerialNumber: syz
[  951.993263][T15365] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  952.023449][   T40] cdc_acm: probe of 2-1:1.0 failed with error -12
[  952.156234][T15392] netlink: 'syz.3.5163': attribute type 13 has an invalid length.
[  952.165046][T15392] gretap0: refused to change device tx_queue_len
[  952.171670][T15392] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  952.217322][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  952.225149][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  952.236086][  T303] usb 2-1: USB disconnect, device number 29
[  952.251712][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  952.260542][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  952.260766][T15400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5164'.
[  952.269219][ T1234] bridge0: port 1(bridge_slave_0) entered blocking state
[  952.284636][ T1234] bridge0: port 1(bridge_slave_0) entered forwarding state
[  952.292693][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  952.301155][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  952.310837][ T1234] bridge0: port 2(bridge_slave_1) entered blocking state
[  952.317947][ T1234] bridge0: port 2(bridge_slave_1) entered forwarding state
[  952.333671][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  952.341915][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  952.350134][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  952.358983][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  952.369802][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  952.390149][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  952.398737][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  952.412821][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  952.420909][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  952.429273][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  952.438415][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  952.447722][T15372] device veth0_vlan entered promiscuous mode
[  952.476899][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  952.487965][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  952.586996][T15372] device veth1_macvtap entered promiscuous mode
[  952.614157][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  952.765228][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  952.926521][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  952.942372][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  955.251497][   T28] kauditd_printk_skb: 74 callbacks suppressed
[  955.251517][   T28] audit: type=1400 audit(1747283498.782:5355): avc:  denied  { read } for  pid=15428 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  955.386339][T15431] overlayfs: failed to resolve './file2': -2
[  955.817385][   T28] audit: type=1400 audit(1747283498.782:5356): avc:  denied  { open } for  pid=15428 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  955.853019][T15439] random: crng reseeded on system resumption
[  955.861484][   T28] audit: type=1400 audit(1747283498.782:5357): avc:  denied  { mounton } for  pid=15428 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  955.884107][T15428] bridge0: port 1(bridge_slave_0) entered blocking state
[  955.885109][   T28] audit: type=1400 audit(1747283499.072:5358): avc:  denied  { create } for  pid=15427 comm="syz.3.5174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  955.918581][   T28] audit: type=1400 audit(1747283499.482:5359): avc:  denied  { read write } for  pid=15435 comm="syz.1.5176" name="vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  955.921960][T15428] bridge0: port 1(bridge_slave_0) entered disabled state
[  955.951644][   T28] audit: type=1400 audit(1747283499.492:5360): avc:  denied  { open } for  pid=15435 comm="syz.1.5176" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  955.986972][T15428] device bridge_slave_0 entered promiscuous mode
[  956.016815][T15428] bridge0: port 2(bridge_slave_1) entered blocking state
[  956.026904][   T28] audit: type=1400 audit(1747283499.542:5361): avc:  denied  { ioctl } for  pid=15435 comm="syz.1.5176" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 ioctlcmd=0xaf60 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  956.052679][T15428] bridge0: port 2(bridge_slave_1) entered disabled state
[  956.060296][T15428] device bridge_slave_1 entered promiscuous mode
[  956.121120][   T28] audit: type=1400 audit(1747283499.572:5362): avc:  denied  { write } for  pid=15438 comm="syz.4.5175" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  956.146562][   T28] audit: type=1400 audit(1747283499.572:5363): avc:  denied  { open } for  pid=15438 comm="syz.4.5175" path="/dev/snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  956.170377][   T28] audit: type=1400 audit(1747283499.712:5364): avc:  denied  { create } for  pid=15440 comm="syz.1.5177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  956.706192][T15458] device syzkaller0 entered promiscuous mode
[  956.768051][T15459] block device autoloading is deprecated and will be removed.
[  956.776770][T15459] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  956.786064][T15459] F2FS-fs (loop9): Unable to read 1th superblock
[  956.792923][T15459] I/O error, dev loop9, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  956.802209][T15459] F2FS-fs (loop9): Unable to read 2th superblock
[  957.059099][ T9599] Bluetooth: hci0: Frame reassembly failed (-84)
[  957.146212][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  957.158173][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  957.177930][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  957.186720][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  957.196829][ T9599] bridge0: port 1(bridge_slave_0) entered blocking state
[  957.203939][ T9599] bridge0: port 1(bridge_slave_0) entered forwarding state
[  957.211809][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  957.220288][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  957.228671][ T9599] bridge0: port 2(bridge_slave_1) entered blocking state
[  957.235733][ T9599] bridge0: port 2(bridge_slave_1) entered forwarding state
[  957.255447][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  957.263310][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  957.280568][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  957.297937][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  957.307366][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  957.316162][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  957.324399][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  957.356608][T15468] syz.3.5186[15468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  957.356694][T15468] syz.3.5186[15468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  957.377892][T15428] device veth0_vlan entered promiscuous mode
[  957.404392][T15428] device veth1_macvtap entered promiscuous mode
[  957.412062][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  957.543512][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  957.569076][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  957.654158][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  957.698782][T15474] binder: 15473:15474 ioctl 4018620d 0 returned -22
[  957.708164][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  958.834091][T15485] 9p: Unknown access argument 18446744073709551615: -34
[  959.022742][T15504] device pim6reg1 entered promiscuous mode
[  959.323672][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  959.353174][ T6166] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  959.807381][  T528] Bluetooth: hci0: Frame reassembly failed (-84)
[  959.935636][T15520] syz.4.5201[15520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  959.935719][T15520] syz.4.5201[15520] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  959.973418][T15525] 9p: Unknown access argument 18446744073709551615: -34
[  960.444405][T15531] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5207'.
[  960.903268][   T28] kauditd_printk_skb: 62 callbacks suppressed
[  960.903285][   T28] audit: type=1400 audit(1747283504.622:5427): avc:  denied  { create } for  pid=15539 comm="syz.2.5211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  960.931616][T15540] input: syz0 as /devices/virtual/input/input29
[  960.969047][   T28] audit: type=1400 audit(1747283504.652:5428): avc:  denied  { read write } for  pid=15539 comm="syz.2.5211" name="uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  960.993329][   T28] audit: type=1400 audit(1747283504.652:5429): avc:  denied  { open } for  pid=15539 comm="syz.2.5211" path="/dev/uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  961.018744][   T28] audit: type=1400 audit(1747283504.652:5430): avc:  denied  { ioctl } for  pid=15539 comm="syz.2.5211" path="/dev/uinput" dev="devtmpfs" ino=262 ioctlcmd=0x5501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  961.045467][T15547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5210'.
[  961.063698][   T28] audit: type=1400 audit(1747283504.652:5431): avc:  denied  { read } for  pid=88 comm="acpid" name="event3" dev="devtmpfs" ino=1343 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  961.086609][   T28] audit: type=1400 audit(1747283504.652:5432): avc:  denied  { open } for  pid=88 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1343 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  961.110408][   T28] audit: type=1400 audit(1747283504.652:5433): avc:  denied  { ioctl } for  pid=88 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1343 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  961.157938][   T28] audit: type=1326 audit(1747283504.682:5434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15545 comm="syz.4.5214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04fe78e969 code=0x7ffc0000
[  961.206564][   T28] audit: type=1326 audit(1747283504.682:5435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15545 comm="syz.4.5214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04fe78e969 code=0x7ffc0000
[  961.255484][   T28] audit: type=1326 audit(1747283504.682:5436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15545 comm="syz.4.5214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04fe78e969 code=0x7ffc0000
[  961.666187][T15555] 9p: Unknown access argument 18446744073709551615: -34
[  961.881490][T15508] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  961.881495][ T6170] Bluetooth: hci0: command 0x1003 tx timeout
[  961.916436][T15565] syz.0.5218[15565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  961.917310][T15565] syz.0.5218[15565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  962.253642][T15574] syz.1.5224[15574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  962.265402][T15574] syz.1.5224[15574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  962.278523][T15574] netlink: 'syz.1.5224': attribute type 4 has an invalid length.
[  963.195573][T15575] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5222'.
[  963.292141][T15585] 9p: Unknown access argument 18446744073709551615: -34
[  963.330333][T15592] random: crng reseeded on system resumption
[  963.405172][T15588] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5228'.
[  963.457692][T15600] loop1: detected capacity change from 0 to 128
[  963.467202][  T528] Bluetooth: hci0: Frame reassembly failed (-84)
[  963.486158][T15600] ext4: Unknown parameter 'nouser_xattr'
[  963.538437][T15607] 9pnet_fd: Insufficient options for proto=fd
[  964.133858][T15615] syz.0.5238[15615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  964.134301][T15615] syz.0.5238[15615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  964.618948][T15624] 9p: Unknown access argument 18446744073709551615: -34
[  964.763676][T15629] random: crng reseeded on system resumption
[  965.280164][T15633] binder: 15632:15633 ioctl c0306201 200000000280 returned -14
[  965.328516][  T528] tipc: Left network mode
[  965.346773][T15638] bridge0: port 1(bridge_slave_0) entered blocking state
[  965.354044][T15638] bridge0: port 1(bridge_slave_0) entered disabled state
[  965.361693][T15638] device bridge_slave_0 entered promiscuous mode
[  965.369007][T15638] bridge0: port 2(bridge_slave_1) entered blocking state
[  965.376312][T15638] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.384632][T15638] device bridge_slave_1 entered promiscuous mode
[  965.471433][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  965.477627][ T6170] Bluetooth: hci0: command 0x1003 tx timeout
[  965.479557][T15638] bridge0: port 2(bridge_slave_1) entered blocking state
[  965.490717][T15638] bridge0: port 2(bridge_slave_1) entered forwarding state
[  965.498162][T15638] bridge0: port 1(bridge_slave_0) entered blocking state
[  965.505245][T15638] bridge0: port 1(bridge_slave_0) entered forwarding state
[  965.591939][T15653] 9p: Unknown access argument 18446744073709551615: -34
[  965.620961][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  965.630395][ T9599] bridge0: port 1(bridge_slave_0) entered disabled state
[  965.638698][ T9599] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.694336][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  965.704167][ T9599] bridge0: port 1(bridge_slave_0) entered blocking state
[  965.711254][ T9599] bridge0: port 1(bridge_slave_0) entered forwarding state
[  965.719957][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  965.728489][ T9599] bridge0: port 2(bridge_slave_1) entered blocking state
[  965.735601][ T9599] bridge0: port 2(bridge_slave_1) entered forwarding state
[  965.743253][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  965.751701][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  965.764884][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  965.802328][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  965.810933][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  965.818916][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  965.828078][T15638] device veth0_vlan entered promiscuous mode
[  965.853668][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  965.874587][T15662] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5254'.
[  965.874806][T15638] device veth1_macvtap entered promiscuous mode
[  965.938341][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  965.951962][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  965.996671][T15672] random: crng reseeded on system resumption
[  966.009241][   T28] kauditd_printk_skb: 36 callbacks suppressed
[  966.009257][   T28] audit: type=1400 audit(1747283509.722:5473): avc:  denied  { unmount } for  pid=15638 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  966.072350][ T9009] Bluetooth: hci0: Frame reassembly failed (-84)
[  966.811962][   T28] audit: type=1400 audit(1747283510.532:5474): avc:  denied  { name_bind } for  pid=15691 comm="syz.4.5265" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  966.834717][   T28] audit: type=1400 audit(1747283510.532:5475): avc:  denied  { node_bind } for  pid=15691 comm="syz.4.5265" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  967.086244][T15698] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5266'.
[  967.613377][T15707] random: crng reseeded on system resumption
[  968.130511][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  968.136668][T15508] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  968.181808][   T28] audit: type=1400 audit(1747283511.872:5476): avc:  denied  { create } for  pid=15706 comm="syz.0.5269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  968.224938][   T28] audit: type=1400 audit(1747283511.872:5477): avc:  denied  { setopt } for  pid=15706 comm="syz.0.5269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  968.260599][   T28] audit: type=1400 audit(1747283511.872:5478): avc:  denied  { connect } for  pid=15706 comm="syz.0.5269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  969.834701][   T28] audit: type=1326 audit(1747283513.552:5479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15741 comm="syz.1.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  969.838605][T15742] loop1: detected capacity change from 0 to 256
[  969.869068][T15742] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[  970.014975][   T28] audit: type=1326 audit(1747283513.552:5480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15741 comm="syz.1.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  970.136547][   T28] audit: type=1326 audit(1747283513.552:5481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15741 comm="syz.1.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  970.161821][   T28] audit: type=1326 audit(1747283513.552:5482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15741 comm="syz.1.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  970.618057][T15757] random: crng reseeded on system resumption
[  972.873168][T15508] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  972.910042][   T28] kauditd_printk_skb: 39 callbacks suppressed
[  972.910059][   T28] audit: type=1326 audit(1747283516.622:5522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.032226][   T28] audit: type=1326 audit(1747283516.652:5523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.057170][   T28] audit: type=1326 audit(1747283516.742:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.097734][   T28] audit: type=1326 audit(1747283516.782:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.236608][T15793] random: crng reseeded on system resumption
[  973.251587][   T28] audit: type=1326 audit(1747283516.782:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.293267][   T28] audit: type=1326 audit(1747283516.782:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.316930][   T28] audit: type=1326 audit(1747283516.782:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[  973.340972][   T28] audit: type=1326 audit(1747283516.782:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f202f58e9a3 code=0x7ffc0000
[  973.366294][   T28] audit: type=1326 audit(1747283516.782:5530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f202f58d41f code=0x7ffc0000
[  973.396120][   T28] audit: type=1326 audit(1747283516.782:5531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15782 comm="syz.0.5296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f202f58e9f7 code=0x7ffc0000
[  973.426483][T15804] device pim6reg1 entered promiscuous mode
[  974.253970][T15815] device pim6reg1 entered promiscuous mode
[  975.164950][T15834] overlayfs: failed to resolve './file2': -2
[  975.405862][T15839] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5315'.
[  976.253990][T15862] random: crng reseeded on system resumption
[  976.294881][T15865] overlayfs: failed to resolve './file2': -2
[  977.052989][T15881] netlink: 'syz.4.5329': attribute type 13 has an invalid length.
[  977.061502][T15881] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  977.077883][T15881] gretap0: refused to change device tx_queue_len
[  977.092183][T15881] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  978.051147][T15892] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5333'.
[  978.257115][T15900] random: crng reseeded on system resumption
[  978.613466][   T28] kauditd_printk_skb: 97 callbacks suppressed
[  978.613486][   T28] audit: type=1326 audit(1747283522.332:5629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.617067][T15906] loop1: detected capacity change from 0 to 256
[  978.625108][   T28] audit: type=1326 audit(1747283522.332:5630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.643981][T15906] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[  978.682796][   T28] audit: type=1326 audit(1747283522.332:5631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.706710][   T28] audit: type=1326 audit(1747283522.332:5632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.731090][   T28] audit: type=1326 audit(1747283522.332:5633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.754686][   T28] audit: type=1326 audit(1747283522.332:5634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[  978.778338][   T28] audit: type=1326 audit(1747283522.332:5635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0e3238e9a3 code=0x7ffc0000
[  978.802104][   T28] audit: type=1326 audit(1747283522.332:5636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0e3238d41f code=0x7ffc0000
[  978.829399][   T28] audit: type=1326 audit(1747283522.332:5637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0e3238e9f7 code=0x7ffc0000
[  978.856243][   T28] audit: type=1326 audit(1747283522.332:5638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15905 comm="syz.1.5338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0e3238d2d0 code=0x7ffc0000
[  979.478118][T15927] bridge0: port 1(bridge_slave_0) entered blocking state
[  979.486364][T15927] bridge0: port 1(bridge_slave_0) entered disabled state
[  979.494835][T15927] device bridge_slave_0 entered promiscuous mode
[  979.508154][T15927] bridge0: port 2(bridge_slave_1) entered blocking state
[  979.515570][T15927] bridge0: port 2(bridge_slave_1) entered disabled state
[  979.523337][T15927] device bridge_slave_1 entered promiscuous mode
[  979.647647][T15927] bridge0: port 2(bridge_slave_1) entered blocking state
[  979.654798][T15927] bridge0: port 2(bridge_slave_1) entered forwarding state
[  979.662120][T15927] bridge0: port 1(bridge_slave_0) entered blocking state
[  979.669160][T15927] bridge0: port 1(bridge_slave_0) entered forwarding state
[  979.707017][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  979.716887][ T9009] bridge0: port 1(bridge_slave_0) entered disabled state
[  979.724631][ T9009] bridge0: port 2(bridge_slave_1) entered disabled state
[  980.043925][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  980.057855][ T9009] bridge0: port 1(bridge_slave_0) entered blocking state
[  980.064988][ T9009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  980.133174][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  980.149882][ T9009] bridge0: port 2(bridge_slave_1) entered blocking state
[  980.157039][ T9009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  980.176880][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  980.192563][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  980.294379][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  980.306552][T15927] device veth0_vlan entered promiscuous mode
[  980.316238][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  980.333475][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  980.342444][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  980.352155][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  980.625433][T15927] device veth1_macvtap entered promiscuous mode
[  980.659699][ T9990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  980.674479][ T9990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  980.717357][T15953] device syzkaller0 entered promiscuous mode
[  981.001509][  T604] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  981.127337][T15976] random: crng reseeded on system resumption
[  981.191410][  T604] usb 5-1: Using ep0 maxpacket: 32
[  981.206361][  T604] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[  981.220470][  T604] usb 5-1: config 0 has no interface number 0
[  981.226760][  T604] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  981.238264][  T604] usb 5-1: config 0 interface 85 has no altsetting 0
[  982.092549][  T604] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  982.111391][  T604] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  982.119564][  T604] usb 5-1: Product: syz
[  982.124084][  T604] usb 5-1: Manufacturer: syz
[  982.128697][  T604] usb 5-1: SerialNumber: syz
[  982.200351][  T604] usb 5-1: config 0 descriptor??
[  983.559841][   T40] usb 5-1: USB disconnect, device number 28
[  983.568540][T15991] device veth0_vlan left promiscuous mode
[  983.578073][T15991] device veth0_vlan entered promiscuous mode
[  983.592714][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  983.623512][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  983.638390][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  983.779179][T16012] random: crng reseeded on system resumption
[  984.063479][T16022] loop1: detected capacity change from 0 to 512
[  984.089960][T16022] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  984.099258][T16022] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  985.335614][   T28] kauditd_printk_skb: 57 callbacks suppressed
[  985.335631][   T28] audit: type=1400 audit(1747283529.052:5696): avc:  denied  { bpf } for  pid=16046 comm="syz.2.5386" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  985.362985][   T28] audit: type=1400 audit(1747283529.062:5697): avc:  denied  { map_create } for  pid=16046 comm="syz.2.5386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  985.363965][T15638] EXT4-fs (loop1): unmounting filesystem.
[  985.383171][   T28] audit: type=1400 audit(1747283529.062:5698): avc:  denied  { map_read map_write } for  pid=16046 comm="syz.2.5386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  985.409533][   T28] audit: type=1400 audit(1747283529.062:5699): avc:  denied  { unmount } for  pid=15638 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  985.430429][   T28] audit: type=1400 audit(1747283529.062:5700): avc:  denied  { prog_load } for  pid=16046 comm="syz.2.5386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  985.482362][   T28] audit: type=1400 audit(1747283529.062:5701): avc:  denied  { perfmon } for  pid=16046 comm="syz.2.5386" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  985.589030][   T28] audit: type=1400 audit(1747283529.062:5702): avc:  denied  { prog_run } for  pid=16046 comm="syz.2.5386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  985.660463][   T28] audit: type=1400 audit(1747283529.152:5703): avc:  denied  { read write } for  pid=15638 comm="syz-executor" name="loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  986.024894][   T28] audit: type=1400 audit(1747283529.152:5704): avc:  denied  { open } for  pid=15638 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  986.065621][   T28] audit: type=1400 audit(1747283529.152:5705): avc:  denied  { ioctl } for  pid=15638 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  986.181384][  T604] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  986.341361][  T604] usb 5-1: device descriptor read/64, error -71
[  986.850390][T16078] loop1: detected capacity change from 0 to 128
[  986.918040][  T604] usb 5-1: device descriptor read/64, error -71
[  986.925035][T16078] ext4: Unknown parameter 'nouser_xattr'
[  987.862672][  T604] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  988.091384][  T604] usb 5-1: device descriptor read/64, error -71
[  988.182301][T16104] block device autoloading is deprecated and will be removed.
[  988.192346][T16104] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  988.261414][T16104] F2FS-fs (loop5): Unable to read 1th superblock
[  988.275449][T16104] I/O error, dev loop5, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  988.294812][T16104] F2FS-fs (loop5): Unable to read 2th superblock
[  988.361358][  T604] usb 5-1: device descriptor read/64, error -71
[  988.481460][  T604] usb usb5-port1: attempt power cycle
[  990.769762][   T28] kauditd_printk_skb: 36 callbacks suppressed
[  990.769782][   T28] audit: type=1400 audit(1747283534.482:5742): avc:  denied  { read write } for  pid=16138 comm="syz.4.5418" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  990.961819][   T28] audit: type=1400 audit(1747283534.482:5743): avc:  denied  { open } for  pid=16138 comm="syz.4.5418" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  991.018263][   T28] audit: type=1400 audit(1747283534.622:5744): avc:  denied  { read } for  pid=16138 comm="syz.4.5418" name="msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  991.103438][   T28] audit: type=1400 audit(1747283534.622:5745): avc:  denied  { open } for  pid=16138 comm="syz.4.5418" path="/dev/cpu/0/msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  991.181334][   T28] audit: type=1400 audit(1747283534.732:5746): avc:  denied  { read write } for  pid=16146 comm="syz.3.5419" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  991.423271][   T28] audit: type=1400 audit(1747283534.732:5747): avc:  denied  { open } for  pid=16146 comm="syz.3.5419" path="/dev/raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  991.446999][   T28] audit: type=1400 audit(1747283534.772:5748): avc:  denied  { setopt } for  pid=16153 comm="syz.0.5422" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  991.467480][   T28] audit: type=1400 audit(1747283534.772:5749): avc:  denied  { write } for  pid=16153 comm="syz.0.5422" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  991.488012][   T28] audit: type=1400 audit(1747283534.772:5750): avc:  denied  { read } for  pid=16153 comm="syz.0.5422" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  991.522814][   T28] audit: type=1400 audit(1747283534.862:5751): avc:  denied  { create } for  pid=16144 comm="syz.1.5420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  991.581513][  T604] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  992.083423][  T604] usb 4-1: device descriptor read/64, error -71
[  992.601396][  T604] usb 4-1: device descriptor read/64, error -71
[  992.683662][T16163] loop1: detected capacity change from 0 to 40427
[  992.713204][T16163] F2FS-fs (loop1): Unrecognized mount option "errors=continue" or missing value
[  994.131190][T16183] random: crng reseeded on system resumption
[  994.225158][  T604] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  996.134884][T16222] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  996.144101][T16220] device wg2 entered promiscuous mode
[  996.171430][T16222] F2FS-fs (loop1): Unable to read 1th superblock
[  996.181841][T16222] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  996.211443][T16222] F2FS-fs (loop1): Unable to read 2th superblock
[  996.280674][   T28] kauditd_printk_skb: 45 callbacks suppressed
[  996.280692][   T28] audit: type=1400 audit(1747283539.992:5797): avc:  denied  { ioctl } for  pid=16227 comm="syz.4.5449" path="/dev/binderfs/binder0" dev="binder" ino=13 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  996.326988][T16228] binder: 16227:16228 ioctl 4018620d 0 returned -22
[  996.374193][   T28] audit: type=1400 audit(1747283539.992:5798): avc:  denied  { set_context_mgr } for  pid=16227 comm="syz.4.5449" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  996.586824][  T604] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  997.770586][T16233] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5450'.
[  997.821455][   T28] audit: type=1400 audit(1747283541.242:5799): avc:  denied  { read } for  pid=16230 comm="syz.4.5450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  997.861407][  T604] usb 4-1: device descriptor read/64, error -71
[  997.916392][T16239] device syzkaller0 entered promiscuous mode
[  998.049814][T16249] device pim6reg1 entered promiscuous mode
[  998.894974][  T604] usb 4-1: device descriptor read/64, error -71
[  998.904681][T16259] binder: 16258:16259 ioctl 4018620d 0 returned -22
[  999.449078][   T28] audit: type=1400 audit(1747283543.162:5800): avc:  denied  { create } for  pid=16268 comm="syz.1.5463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  999.754994][T16276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5465'.
[ 1002.125746][   T28] audit: type=1400 audit(1747283545.842:5801): avc:  denied  { call } for  pid=16309 comm="syz.3.5477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1002.145615][T16310] binder_alloc: 16309: binder_alloc_buf, no vma
[ 1002.284466][   T28] audit: type=1326 audit(1747283546.002:5802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.310391][   T28] audit: type=1326 audit(1747283546.022:5803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.334310][   T28] audit: type=1326 audit(1747283546.022:5804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.358276][   T28] audit: type=1326 audit(1747283546.022:5805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.442202][   T28] audit: type=1326 audit(1747283546.122:5806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.466001][   T28] audit: type=1326 audit(1747283546.122:5807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.502471][   T28] audit: type=1326 audit(1747283546.132:5808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1002.532471][   T28] audit: type=1326 audit(1747283546.132:5809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7fe538e9a3 code=0x7ffc0000
[ 1002.628562][   T28] audit: type=1326 audit(1747283546.132:5810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16325 comm="syz.2.5484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7fe538d41f code=0x7ffc0000
[ 1002.664827][T16332] binder: 16330:16332 ioctl 4018620d 0 returned -22
[ 1004.807410][T16349] block device autoloading is deprecated and will be removed.
[ 1004.815184][T16349] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1004.824384][T16349] F2FS-fs (loop3): Unable to read 1th superblock
[ 1004.830817][T16349] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1004.840061][T16349] F2FS-fs (loop3): Unable to read 2th superblock
[ 1004.966363][T16369] device pim6reg1 entered promiscuous mode
[ 1005.063831][T16367] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5499'.
[ 1005.386322][T16386] loop1: detected capacity change from 0 to 512
[ 1005.408455][T16386] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1005.607961][T16386] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 0
[ 1006.555929][T16401] device veth0_vlan left promiscuous mode
[ 1006.561719][T16401] device veth0_vlan entered promiscuous mode
[ 1008.447388][T16419] device pim6reg1 entered promiscuous mode
[ 1008.886447][T16432] random: crng reseeded on system resumption
[ 1008.892598][   T28] kauditd_printk_skb: 35 callbacks suppressed
[ 1008.892628][   T28] audit: type=1326 audit(1747283552.602:5846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1008.932656][   T28] audit: type=1326 audit(1747283552.622:5847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1008.956483][   T28] audit: type=1326 audit(1747283552.622:5848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1008.980063][   T28] audit: type=1326 audit(1747283552.622:5849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1009.003922][   T28] audit: type=1326 audit(1747283552.672:5850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1009.028068][   T28] audit: type=1326 audit(1747283552.672:5851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1009.051705][   T28] audit: type=1326 audit(1747283552.732:5852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1009.075520][   T28] audit: type=1326 audit(1747283552.732:5853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7fe538e9a3 code=0x7ffc0000
[ 1009.099036][   T28] audit: type=1326 audit(1747283552.732:5854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7fe538d41f code=0x7ffc0000
[ 1009.123065][   T28] audit: type=1326 audit(1747283552.732:5855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.2.5523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f7fe538e9f7 code=0x7ffc0000
[ 1009.173346][T16437] device veth0_vlan left promiscuous mode
[ 1009.179125][T16437] device veth0_vlan entered promiscuous mode
[ 1009.258322][T16443] binder: BINDER_SET_CONTEXT_MGR already set
[ 1009.279410][T16443] binder: 16442:16443 ioctl 4018620d 2000000001c0 returned -16
[ 1009.934353][T16466] random: crng reseeded on system resumption
[ 1010.029890][T16468] device syzkaller0 entered promiscuous mode
[ 1010.999307][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1011.593948][T16505] binder: BINDER_SET_CONTEXT_MGR already set
[ 1011.610121][T16505] binder: 16504:16505 ioctl 4018620d 2000000001c0 returned -16
[ 1012.136395][   T37] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1012.186808][T16516] device syzkaller0 entered promiscuous mode
[ 1014.286001][T15508] Bluetooth: hci0: command 0x1003 tx timeout
[ 1014.286266][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1014.546716][T16549] binder: BINDER_SET_CONTEXT_MGR already set
[ 1014.573551][T16549] binder: 16548:16549 ioctl 4018620d 2000000001c0 returned -16
[ 1014.793907][T16559] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5559'.
[ 1014.817574][   T28] kauditd_printk_skb: 58 callbacks suppressed
[ 1014.817617][   T28] audit: type=1326 audit(1747283558.502:5914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1014.847120][T16558] loop1: detected capacity change from 0 to 256
[ 1014.848184][   T28] audit: type=1326 audit(1747283558.552:5915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1014.885802][T16558] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1014.903899][   T28] audit: type=1326 audit(1747283558.552:5916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1015.014245][   T28] audit: type=1326 audit(1747283558.552:5917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1015.041627][   T28] audit: type=1326 audit(1747283558.552:5918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1015.077573][   T28] audit: type=1326 audit(1747283558.552:5919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1015.102229][   T28] audit: type=1326 audit(1747283558.552:5920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0e3238e9a3 code=0x7ffc0000
[ 1015.150975][   T28] audit: type=1326 audit(1747283558.552:5921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0e3238d41f code=0x7ffc0000
[ 1015.278333][   T28] audit: type=1326 audit(1747283558.552:5922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0e3238e9f7 code=0x7ffc0000
[ 1015.350399][   T28] audit: type=1326 audit(1747283558.562:5923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16556 comm="syz.1.5567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0e3238d2d0 code=0x7ffc0000
[ 1016.892919][T16590] syz.3.5578[16590] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1016.893038][T16590] syz.3.5578[16590] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1017.082160][T16608] 9pnet_fd: Insufficient options for proto=fd
[ 1017.324450][T16618] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5583'.
[ 1017.532645][T16619] syz.0.5588[16619] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1017.532817][T16619] syz.0.5588[16619] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1017.713404][T15508] Bluetooth: hci0: sending frame failed (-49)
[ 1017.731534][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -49
[ 1018.867491][T16644] device pim6reg1 entered promiscuous mode
[ 1018.977479][T16648] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5601'.
[ 1018.986708][T16648] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5601'.
[ 1019.177826][T16662] netlink: 'syz.2.5606': attribute type 13 has an invalid length.
[ 1019.188468][T16662] gretap0: refused to change device tx_queue_len
[ 1019.195142][T16662] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1019.271013][T16664] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5604'.
[ 1019.964643][T16672] 9pnet_fd: Insufficient options for proto=fd
[ 1020.027993][   T28] kauditd_printk_skb: 98 callbacks suppressed
[ 1020.028009][   T28] audit: type=1400 audit(1747283563.742:6022): avc:  denied  { unmount } for  pid=15927 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1020.175597][T16679] device pim6reg1 entered promiscuous mode
[ 1020.247611][   T28] audit: type=1400 audit(1747283563.962:6023): avc:  denied  { read write } for  pid=15638 comm="syz-executor" name="loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1020.296023][T16684] binder: BINDER_SET_CONTEXT_MGR already set
[ 1020.301481][   T28] audit: type=1400 audit(1747283563.962:6024): avc:  denied  { open } for  pid=15638 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1020.304989][T16683] device pim6reg1 entered promiscuous mode
[ 1020.336612][T16684] binder: 16682:16684 ioctl 4018620d 2000000001c0 returned -16
[ 1020.362660][   T28] audit: type=1400 audit(1747283563.962:6025): avc:  denied  { ioctl } for  pid=15638 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=1313 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1020.398579][   T28] audit: type=1400 audit(1747283564.012:6026): avc:  denied  { read } for  pid=16682 comm="syz.1.5614" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1020.436276][   T28] audit: type=1400 audit(1747283564.012:6027): avc:  denied  { open } for  pid=16682 comm="syz.1.5614" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1020.461788][   T28] audit: type=1400 audit(1747283564.012:6028): avc:  denied  { ioctl } for  pid=16682 comm="syz.1.5614" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1020.492534][T16692] netlink: 216 bytes leftover after parsing attributes in process `syz.2.5615'.
[ 1020.505026][   T28] audit: type=1400 audit(1747283564.012:6029): avc:  denied  { set_context_mgr } for  pid=16682 comm="syz.1.5614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1020.530630][T16692] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5615'.
[ 1020.542117][   T28] audit: type=1400 audit(1747283564.012:6030): avc:  denied  { map } for  pid=16682 comm="syz.1.5614" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1020.566244][   T28] audit: type=1400 audit(1747283564.212:6031): avc:  denied  { create } for  pid=16685 comm="syz.2.5615" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1020.918193][T16700] binder: BINDER_SET_CONTEXT_MGR already set
[ 1020.924445][T16700] binder: 16699:16700 ioctl 4018620d 200000000040 returned -16
[ 1020.951075][T16704] device pim6reg1 entered promiscuous mode
[ 1022.185152][T16728] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5630'.
[ 1022.194320][T16728] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5630'.
[ 1023.523436][T15704] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[ 1023.608555][T16771] netlink: 216 bytes leftover after parsing attributes in process `syz.1.5646'.
[ 1023.617683][T16771] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5646'.
[ 1023.790917][T15704] usb 1-1: Using ep0 maxpacket: 16
[ 1023.802594][T15704] usb 1-1: config 1 has an invalid descriptor of length 225, skipping remainder of the config
[ 1023.813238][T15704] usb 1-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1023.962449][T15704] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 23995, setting to 1024
[ 1023.974065][T15704] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 1024
[ 1023.984264][T15704] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 255
[ 1023.999204][T15704] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1024.008502][T15704] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1024.016729][T15704] usb 1-1: SerialNumber: syz
[ 1024.156638][T16760] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1024.416057][T15704] usb 1-1: USB disconnect, device number 24
[ 1025.281385][   T28] kauditd_printk_skb: 53 callbacks suppressed
[ 1025.281423][   T28] audit: type=1400 audit(1747283568.962:6085): avc:  denied  { module_request } for  pid=16835 comm="syz.0.5672" kmod="netdev-pim6reg1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1025.574243][T16837] device pim6reg1 entered promiscuous mode
[ 1026.055804][T16861] loop1: detected capacity change from 0 to 512
[ 1026.112006][   T28] audit: type=1400 audit(1747283569.832:6086): avc:  denied  { mount } for  pid=16860 comm="syz.1.5682" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[ 1026.411415][T16267] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1026.621352][T16267] usb 2-1: Using ep0 maxpacket: 16
[ 1026.630935][T16267] usb 2-1: config 1 has an invalid descriptor of length 225, skipping remainder of the config
[ 1026.683041][T16267] usb 2-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1026.706172][T16267] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 23995, setting to 1024
[ 1026.729740][T16267] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 1024
[ 1026.750162][T16267] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 255
[ 1026.768498][   T28] audit: type=1326 audit(1747283570.492:6087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1026.777933][T16267] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1026.793313][   T28] audit: type=1326 audit(1747283570.492:6088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1026.814695][T16267] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1026.832675][T16267] usb 2-1: SerialNumber: syz
[ 1026.833480][   T28] audit: type=1326 audit(1747283570.522:6089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1026.862583][   T28] audit: type=1326 audit(1747283570.522:6090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1026.875588][T16861] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1026.903227][   T28] audit: type=1326 audit(1747283570.522:6091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1026.978366][   T28] audit: type=1326 audit(1747283570.562:6092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1027.002351][   T28] audit: type=1326 audit(1747283570.562:6093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1027.046957][   T28] audit: type=1326 audit(1747283570.562:6094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16871 comm="syz.3.5685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1027.155221][T16878] syz.4.5686[16878] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1027.155330][T16878] syz.4.5686[16878] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1027.225129][   T40] usb 2-1: USB disconnect, device number 30
[ 1027.861576][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1028.367806][T16267] syzkaller0: tun_net_xmit 76
[ 1028.372712][T16267] syzkaller0: tun_net_xmit 48
[ 1028.508922][T16907] syz.2.5692[16907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1028.509004][T16907] syz.2.5692[16907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1029.091373][  T604] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1029.301432][  T604] usb 4-1: Using ep0 maxpacket: 16
[ 1029.307797][  T604] usb 4-1: config 1 has an invalid descriptor of length 225, skipping remainder of the config
[ 1029.340533][  T604] usb 4-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1029.357118][  T604] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1029.378816][  T604] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1029.388839][  T604] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 255
[ 1029.411453][  T604] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1029.430831][  T604] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1029.449073][  T604] usb 4-1: SerialNumber: syz
[ 1029.719142][ T2532] usb 4-1: USB disconnect, device number 40
[ 1030.302243][   T28] kauditd_printk_skb: 38 callbacks suppressed
[ 1030.302260][   T28] audit: type=1326 audit(1747283574.022:6133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.382264][   T28] audit: type=1326 audit(1747283574.062:6134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.459158][   T28] audit: type=1326 audit(1747283574.062:6135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.525734][   T28] audit: type=1326 audit(1747283574.062:6136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.578078][   T28] audit: type=1326 audit(1747283574.062:6137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.626798][   T28] audit: type=1326 audit(1747283574.062:6138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1030.697995][   T28] audit: type=1326 audit(1747283574.062:6139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3e71b8e9a3 code=0x7ffc0000
[ 1030.725084][T16943] device pim6reg1 entered promiscuous mode
[ 1030.747649][   T28] audit: type=1326 audit(1747283574.062:6140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3e71b8d41f code=0x7ffc0000
[ 1030.826851][   T28] audit: type=1326 audit(1747283574.062:6141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f3e71b8e9f7 code=0x7ffc0000
[ 1030.901907][   T28] audit: type=1326 audit(1747283574.062:6142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16932 comm="syz.3.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3e71b8d2d0 code=0x7ffc0000
[ 1032.225396][T16954] loop1: detected capacity change from 0 to 40427
[ 1032.286237][T16954] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1032.331734][T16954] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1033.109084][T16974] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5717'.
[ 1033.418213][T16975] syz.1.5714: attempt to access beyond end of device
[ 1033.418213][T16975] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1033.817663][T16991] device veth0_vlan left promiscuous mode
[ 1033.823482][T16991] device veth0_vlan entered promiscuous mode
[ 1033.861494][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1033.937312][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1034.044025][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1034.171266][T16999] 9pnet_fd: Insufficient options for proto=fd
[ 1034.179840][T16997] device pim6reg1 entered promiscuous mode
[ 1034.381565][T15638] syz-executor: attempt to access beyond end of device
[ 1034.381565][T15638] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1035.344485][   T28] kauditd_printk_skb: 105 callbacks suppressed
[ 1035.344504][   T28] audit: type=1400 audit(1747283578.792:6248): avc:  denied  { bpf } for  pid=17016 comm="syz.4.5735" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1035.371433][   T28] audit: type=1400 audit(1747283578.792:6249): avc:  denied  { prog_load } for  pid=17016 comm="syz.4.5735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1035.390775][   T28] audit: type=1400 audit(1747283578.802:6250): avc:  denied  { create } for  pid=17016 comm="syz.4.5735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1035.424344][   T28] audit: type=1400 audit(1747283578.812:6251): avc:  denied  { write } for  pid=17016 comm="syz.4.5735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1035.446841][   T28] audit: type=1400 audit(1747283578.832:6252): avc:  denied  { map_create } for  pid=17016 comm="syz.4.5735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1035.472621][   T28] audit: type=1400 audit(1747283578.832:6253): avc:  denied  { perfmon } for  pid=17016 comm="syz.4.5735" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1035.504688][T17028] 9pnet_fd: Insufficient options for proto=fd
[ 1035.542643][T17031] syz.0.5739[17031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1035.542764][T17031] syz.0.5739[17031] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1035.622196][T17032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5736'.
[ 1035.846356][   T28] audit: type=1400 audit(1747283578.832:6254): avc:  denied  { map_read map_write } for  pid=17016 comm="syz.4.5735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1035.870745][   T28] audit: type=1400 audit(1747283579.052:6255): avc:  denied  { prog_run } for  pid=17021 comm="syz.1.5732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1035.892942][   T28] audit: type=1400 audit(1747283579.222:6256): avc:  denied  { mounton } for  pid=17027 comm="syz.0.5738" path="/89/file0" dev="tmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 1035.905176][T17033] block device autoloading is deprecated and will be removed.
[ 1035.915960][   T28] audit: type=1400 audit(1747283579.332:6257): avc:  denied  { create } for  pid=17023 comm="syz.1.5736" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1035.966680][T17033] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1036.168453][T17042] device veth0_vlan left promiscuous mode
[ 1036.174425][T17042] device veth0_vlan entered promiscuous mode
[ 1036.185638][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1036.606522][T17044] loop1: detected capacity change from 0 to 512
[ 1036.614125][T17044] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1036.623109][T17044] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 0
[ 1036.633375][T17033] F2FS-fs (loop7): Unable to read 1th superblock
[ 1036.640168][T17033] I/O error, dev loop7, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1036.668814][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1036.691398][T17033] F2FS-fs (loop7): Unable to read 2th superblock
[ 1036.748877][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1037.266377][T17062] 9pnet_fd: Insufficient options for proto=fd
[ 1037.368055][T17068] syz.3.5752[17068] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1037.368173][T17068] syz.3.5752[17068] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1037.403049][T17072] loop1: detected capacity change from 0 to 256
[ 1037.426558][T17072] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1037.456529][T17076] netlink: 'syz.0.5753': attribute type 13 has an invalid length.
[ 1037.467482][T17076] gretap0: refused to change device tx_queue_len
[ 1037.474354][T17076] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1038.345247][T17096] device pim6reg1 entered promiscuous mode
[ 1038.496233][T17102] 9pnet_fd: Insufficient options for proto=fd
[ 1038.709216][T17110] syz.2.5766[17110] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1038.709313][T17110] syz.2.5766[17110] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1038.770863][T17115] device pim6reg1 entered promiscuous mode
[ 1038.870351][T17122] syz.4.5771[17122] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1038.870439][T17122] syz.4.5771[17122] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1039.006223][T17132] 9pnet_fd: Insufficient options for proto=fd
[ 1039.700937][T17143] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5777'.
[ 1040.495356][T17155] syz.3.5781[17155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1040.495463][T17155] syz.3.5781[17155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1040.517839][   T28] kauditd_printk_skb: 166 callbacks suppressed
[ 1040.517856][   T28] audit: type=1400 audit(1747283584.232:6424): avc:  denied  { create } for  pid=17154 comm="syz.3.5781" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1040.759031][   T28] audit: type=1400 audit(1747283584.442:6425): avc:  denied  { create } for  pid=17158 comm="syz.2.5783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1040.952776][T17169] 9pnet_fd: Insufficient options for proto=fd
[ 1041.006203][T17168] loop1: detected capacity change from 0 to 256
[ 1041.034584][   T28] audit: type=1326 audit(1747283584.512:6426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17144 comm="syz.4.5778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1041.059452][T17168] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1041.076329][   T28] audit: type=1326 audit(1747283584.512:6427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17144 comm="syz.4.5778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1041.118978][   T28] audit: type=1326 audit(1747283584.512:6428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.144922][   T28] audit: type=1326 audit(1747283584.512:6429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.169146][T17172] syz.4.5788[17172] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1041.169230][T17172] syz.4.5788[17172] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1041.174279][   T28] audit: type=1326 audit(1747283584.612:6430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.218196][   T28] audit: type=1326 audit(1747283584.612:6431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.242998][   T28] audit: type=1326 audit(1747283584.612:6432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.266804][   T28] audit: type=1326 audit(1747283584.672:6433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17166 comm="syz.1.5787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1041.711351][T17136] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1041.898100][T17186] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5792'.
[ 1042.166273][T17136] usb 3-1: Using ep0 maxpacket: 16
[ 1042.179816][T17136] usb 3-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1042.205933][T17136] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1042.236101][T17136] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1042.252730][T17136] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 255
[ 1042.266902][T17136] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1042.285840][T17136] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1042.292302][T17199] random: crng reseeded on system resumption
[ 1042.294336][T17136] usb 3-1: SerialNumber: syz
[ 1042.305489][T17202] 9pnet_fd: Insufficient options for proto=fd
[ 1042.717031][  T604] usb 3-1: USB disconnect, device number 15
[ 1043.454423][T17218] syz.2.5805[17218] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1043.454507][T17218] syz.2.5805[17218] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1044.742182][T17243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5813'.
[ 1045.617261][   T28] kauditd_printk_skb: 75 callbacks suppressed
[ 1045.617278][   T28] audit: type=1326 audit(1747283589.332:6509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1045.916515][   T28] audit: type=1326 audit(1747283589.402:6510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1046.170414][   T28] audit: type=1326 audit(1747283589.462:6511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1046.558846][   T28] audit: type=1326 audit(1747283589.462:6512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1046.825725][T17271] syz.1.5823[17271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1046.825810][T17271] syz.1.5823[17271] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1046.838937][T17271] loop1: detected capacity change from 0 to 128
[ 1046.856969][T17271] ext4: Unknown parameter 'nouser_xattr'
[ 1046.984579][   T28] audit: type=1326 audit(1747283589.462:6513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1047.376283][   T28] audit: type=1326 audit(1747283589.462:6514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1047.531986][   T28] audit: type=1326 audit(1747283589.472:6515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7fe538e969 code=0x7ffc0000
[ 1047.626297][T17282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5826'.
[ 1047.910238][   T28] audit: type=1326 audit(1747283589.472:6516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7fe538e9a3 code=0x7ffc0000
[ 1047.939008][   T28] audit: type=1326 audit(1747283589.472:6517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7fe538d41f code=0x7ffc0000
[ 1048.006311][   T28] audit: type=1326 audit(1747283589.472:6518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17257 comm="syz.2.5820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f7fe538e9f7 code=0x7ffc0000
[ 1048.033070][T17292] loop1: detected capacity change from 0 to 256
[ 1048.048907][T17292] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1049.316279][T17320] loop1: detected capacity change from 0 to 128
[ 1049.323070][T17320] ext4: Unknown parameter 'nouser_xattr'
[ 1049.373586][T16864] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1050.274813][T17333] binder: 17331:17333 ioctl 4018620d 0 returned -22
[ 1050.551272][T17337] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5845'.
[ 1050.855574][T17343] loop1: detected capacity change from 0 to 256
[ 1050.871837][T17343] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1052.245166][T17369] device veth0_vlan left promiscuous mode
[ 1052.251010][T17369] device veth0_vlan entered promiscuous mode
[ 1052.282792][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1052.336271][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1052.456956][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1052.490979][   T28] kauditd_printk_skb: 144 callbacks suppressed
[ 1052.490995][   T28] audit: type=1326 audit(1747283596.202:6663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.521264][   T28] audit: type=1326 audit(1747283596.202:6664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.552339][   T28] audit: type=1326 audit(1747283596.202:6665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.576074][   T28] audit: type=1326 audit(1747283596.202:6666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.599819][   T28] audit: type=1326 audit(1747283596.202:6667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.623532][   T28] audit: type=1326 audit(1747283596.202:6668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1052.647500][   T28] audit: type=1326 audit(1747283596.202:6669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5844b8e9a3 code=0x7ffc0000
[ 1052.671669][   T28] audit: type=1326 audit(1747283596.202:6670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5844b8d41f code=0x7ffc0000
[ 1052.696293][   T28] audit: type=1326 audit(1747283596.202:6671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5844b8e9f7 code=0x7ffc0000
[ 1052.700818][T17381] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1052.729984][T17381] F2FS-fs (loop7): Unable to read 1th superblock
[ 1052.736667][T17381] I/O error, dev loop7, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1052.745920][T17381] F2FS-fs (loop7): Unable to read 2th superblock
[ 1052.763210][   T28] audit: type=1326 audit(1747283596.202:6672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17375 comm="syz.4.5859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5844b8d2d0 code=0x7ffc0000
[ 1053.672707][T17385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5861'.
[ 1054.044681][T17395] device pim6reg1 entered promiscuous mode
[ 1054.071465][T17397] binder: 17396:17397 ioctl c0306201 200000000280 returned -14
[ 1054.162288][T17407] binder: BINDER_SET_CONTEXT_MGR already set
[ 1054.168370][T17407] binder: 17406:17407 ioctl 4018620d 200000000040 returned -16
[ 1054.392664][T17416] device veth0_vlan left promiscuous mode
[ 1054.398452][T17416] device veth0_vlan entered promiscuous mode
[ 1054.696294][T17427] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5876'.
[ 1054.937240][T17426] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1054.981766][T17426] F2FS-fs (loop3): Unable to read 1th superblock
[ 1054.996678][T17426] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1055.016100][T17426] F2FS-fs (loop3): Unable to read 2th superblock
[ 1055.859307][T17456] device pim6reg1 entered promiscuous mode
[ 1057.095235][T17480] netlink: 'syz.0.5894': attribute type 13 has an invalid length.
[ 1057.103919][T17480] gretap0: refused to change device tx_queue_len
[ 1057.110521][T17480] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1057.685206][   T28] kauditd_printk_skb: 89 callbacks suppressed
[ 1057.685221][   T28] audit: type=1400 audit(1747283601.402:6762): avc:  denied  { setopt } for  pid=17491 comm="syz.2.5901" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1057.715796][T17494] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5902'.
[ 1058.006559][T17504] device veth0_vlan left promiscuous mode
[ 1058.012373][T17504] device veth0_vlan entered promiscuous mode
[ 1058.102602][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1058.139988][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1058.296084][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1058.482764][T17514] device pim6reg1 entered promiscuous mode
[ 1058.915368][   T28] audit: type=1400 audit(1747283602.282:6763): avc:  denied  { unlink } for  pid=17510 comm="syz.0.5908" name="#11b" dev="tmpfs" ino=695 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1058.938042][   T28] audit: type=1400 audit(1747283602.282:6764): avc:  denied  { mount } for  pid=17510 comm="syz.0.5908" name="/" dev="overlay" ino=690 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1059.037854][   T28] audit: type=1400 audit(1747283602.752:6765): avc:  denied  { mount } for  pid=17527 comm="syz.1.5915" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1059.074178][   T28] audit: type=1400 audit(1747283602.792:6766): avc:  denied  { unmount } for  pid=15638 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1059.174118][   T28] audit: type=1400 audit(1747283602.882:6767): avc:  denied  { create } for  pid=17523 comm="syz.4.5912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1059.388028][   T28] audit: type=1400 audit(1747283602.882:6768): avc:  denied  { write } for  pid=17523 comm="syz.4.5912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1059.428098][   T28] audit: type=1400 audit(1747283603.122:6769): avc:  denied  { unmount } for  pid=15372 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1059.489451][T17541] device pim6reg1 entered promiscuous mode
[ 1059.730856][T17550] device veth0_vlan left promiscuous mode
[ 1059.736697][T17550] device veth0_vlan entered promiscuous mode
[ 1060.014935][T17554] device pim6reg1 entered promiscuous mode
[ 1060.100190][T17558] loop1: detected capacity change from 0 to 512
[ 1060.157461][T17558] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1060.166568][T17558] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1060.178034][T17558] netlink: 'syz.1.5926': attribute type 13 has an invalid length.
[ 1060.187587][T17558] gretap0: refused to change device tx_queue_len
[ 1060.194222][T17558] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1060.315300][T17565] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5928'.
[ 1060.324570][T17565] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5928'.
[ 1060.340432][   T28] audit: type=1400 audit(1747283604.062:6770): avc:  denied  { create } for  pid=17564 comm="syz.4.5928" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 1060.426866][T17575] ÿÿÿÿÿÿ: renamed from vlan1
[ 1060.514522][T17582] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5936'.
[ 1060.622633][T15699] syzkaller0: tun_net_xmit 76
[ 1060.627520][T15699] syzkaller0: tun_net_xmit 48
[ 1061.053341][T15638] EXT4-fs (loop1): unmounting filesystem.
[ 1061.344085][T17611] netlink: 216 bytes leftover after parsing attributes in process `syz.4.5949'.
[ 1061.353290][T17611] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5949'.
[ 1061.459928][T17620] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1061.469262][T17620] F2FS-fs (loop3): Unable to read 1th superblock
[ 1061.475815][T17620] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1061.485065][T17620] F2FS-fs (loop3): Unable to read 2th superblock
[ 1061.691345][T17633] netlink: 'syz.4.5958': attribute type 13 has an invalid length.
[ 1061.700898][T17633] gretap0: refused to change device tx_queue_len
[ 1061.708163][T17633] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1061.732690][   T28] audit: type=1326 audit(1747283605.452:6771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17637 comm="syz.3.5960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e71b8e969 code=0x7ffc0000
[ 1061.865696][T17644] 9pnet: Could not find request transport: fd0x0000000000000005
[ 1062.011227][T17654] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1062.020469][T17654] F2FS-fs (loop1): Unable to read 1th superblock
[ 1062.026935][T17654] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1062.036094][T17654] F2FS-fs (loop1): Unable to read 2th superblock
[ 1063.166974][T17676] 9pnet_fd: Insufficient options for proto=fd
[ 1063.207778][T17678] device pim6reg1 entered promiscuous mode
[ 1063.307597][T17684] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1063.316917][T17684] F2FS-fs (loop7): Unable to read 1th superblock
[ 1063.323388][T17684] I/O error, dev loop7, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1063.324191][T17691] loop1: detected capacity change from 0 to 128
[ 1063.332575][T17684] F2FS-fs (loop7): Unable to read 2th superblock
[ 1063.402730][   T28] kauditd_printk_skb: 37 callbacks suppressed
[ 1063.402747][   T28] audit: type=1326 audit(1747283607.122:6809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1063.437907][T17691] ext4: Unknown parameter 'nouser_xattr'
[ 1063.438260][   T28] audit: type=1326 audit(1747283607.152:6810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1063.501351][   T28] audit: type=1326 audit(1747283607.152:6811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1063.530055][T17700] netlink: 'syz.2.5981': attribute type 13 has an invalid length.
[ 1063.538868][T17700] gretap0: refused to change device tx_queue_len
[ 1063.545764][T17700] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1063.942016][   T28] audit: type=1326 audit(1747283607.152:6812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1064.063324][   T28] audit: type=1326 audit(1747283607.152:6813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1064.099410][   T28] audit: type=1326 audit(1747283607.152:6814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17685 comm="syz.0.5980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202f58e969 code=0x7ffc0000
[ 1064.551146][T17711] 9pnet_fd: Insufficient options for proto=fd
[ 1064.961454][T17719] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5988'.
[ 1066.362471][T17724] device pim6reg1 entered promiscuous mode
[ 1066.622521][T17735] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1066.631726][T17735] F2FS-fs (loop9): Unable to read 1th superblock
[ 1066.638147][T17735] I/O error, dev loop9, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[ 1066.647349][T17735] F2FS-fs (loop9): Unable to read 2th superblock
[ 1067.301948][T17744] 9pnet_fd: Insufficient options for proto=fd
[ 1067.767978][T17755] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6002'.
[ 1067.971860][   T28] audit: type=1400 audit(1747283611.692:6815): avc:  denied  { read write open } for  pid=17760 comm="syz.0.6005" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1068.091069][   T28] audit: type=1400 audit(1747283611.752:6816): avc:  denied  { map } for  pid=17760 comm="syz.0.6005" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1068.137020][T17772] 9pnet_fd: Insufficient options for proto=fd
[ 1068.141848][   T28] audit: type=1400 audit(1747283611.752:6817): avc:  denied  { ioctl } for  pid=17760 comm="syz.0.6005" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1068.179687][   T28] audit: type=1400 audit(1747283611.752:6818): avc:  denied  { set_context_mgr } for  pid=17760 comm="syz.0.6005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1068.491571][   T28] kauditd_printk_skb: 15 callbacks suppressed
[ 1068.491624][   T28] audit: type=1400 audit(1747283612.142:6834): avc:  denied  { create } for  pid=17774 comm="syz.2.6012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1068.666969][   T28] audit: type=1400 audit(1747283612.142:6835): avc:  denied  { write } for  pid=17774 comm="syz.2.6012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1068.712118][   T28] audit: type=1400 audit(1747283612.382:6836): avc:  denied  { bpf } for  pid=17779 comm="syz.1.6015" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1068.762996][   T28] audit: type=1400 audit(1747283612.382:6837): avc:  denied  { map_create } for  pid=17779 comm="syz.1.6015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1068.784631][   T28] audit: type=1400 audit(1747283612.382:6838): avc:  denied  { map_read map_write } for  pid=17779 comm="syz.1.6015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1068.807682][   T28] audit: type=1400 audit(1747283612.402:6839): avc:  denied  { prog_load } for  pid=17779 comm="syz.1.6015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 1068.851074][   T28] audit: type=1400 audit(1747283612.402:6840): avc:  denied  { perfmon } for  pid=17779 comm="syz.1.6015" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1068.872820][   T28] audit: type=1326 audit(1747283612.402:6841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17779 comm="syz.1.6015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1068.898338][T17801] 9pnet_fd: Insufficient options for proto=fd
[ 1068.898504][   T28] audit: type=1326 audit(1747283612.402:6842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17779 comm="syz.1.6015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1068.942006][   T28] audit: type=1326 audit(1747283612.402:6843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17779 comm="syz.1.6015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1069.208251][T17822] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6027'.
[ 1069.680421][T17835] 9pnet_fd: Insufficient options for proto=fd
[ 1070.007032][T17839] netlink: 'syz.0.6037': attribute type 13 has an invalid length.
[ 1070.094276][T17839] gretap0: refused to change device tx_queue_len
[ 1070.117798][T17839] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1071.897393][T17870] device pim6reg1 entered promiscuous mode
[ 1072.750746][T17136] syzkaller0: tun_net_xmit 76
[ 1072.755658][T17136] syzkaller0: tun_net_xmit 48
[ 1072.868639][T17896] loop1: detected capacity change from 0 to 256
[ 1072.905699][T17896] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1073.188341][T17909] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6063'.
[ 1073.781748][   T28] kauditd_printk_skb: 57 callbacks suppressed
[ 1073.781956][   T28] audit: type=1400 audit(1747283616.882:6901): avc:  denied  { write } for  pid=17901 comm="syz.2.6063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1074.117533][   T28] audit: type=1400 audit(1747283616.892:6902): avc:  denied  { read } for  pid=17901 comm="syz.2.6063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1074.302459][T17923] device syzkaller0 entered promiscuous mode
[ 1074.388616][T17927] device veth0_vlan left promiscuous mode
[ 1074.394484][T17927] device veth0_vlan entered promiscuous mode
[ 1074.643316][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1074.664130][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1074.682833][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): ÿÿÿÿÿÿ: link becomes ready
[ 1075.042770][T17931] loop1: detected capacity change from 0 to 40427
[ 1075.103237][T17931] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1075.152682][T17931] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1075.537062][T17957] random: crng reseeded on system resumption
[ 1075.546289][   T28] audit: type=1400 audit(1747283619.252:6903): avc:  denied  { write } for  pid=17956 comm="syz.2.6082" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1075.642476][T17961] syz.1.6073: attempt to access beyond end of device
[ 1075.642476][T17961] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1075.768084][   T28] audit: type=1400 audit(1747283619.252:6904): avc:  denied  { open } for  pid=17956 comm="syz.2.6082" path="/dev/snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1075.837233][   T28] audit: type=1400 audit(1747283619.352:6905): avc:  denied  { write } for  pid=17930 comm="syz.1.6073" name="/" dev="loop1" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1075.859676][   T28] audit: type=1400 audit(1747283619.352:6906): avc:  denied  { add_name } for  pid=17930 comm="syz.1.6073" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1075.864455][T17963] device syzkaller0 entered promiscuous mode
[ 1075.908325][   T28] audit: type=1400 audit(1747283619.352:6907): avc:  denied  { create } for  pid=17930 comm="syz.1.6073" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[ 1076.011142][T15638] syz-executor: attempt to access beyond end of device
[ 1076.011142][T15638] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1076.038683][   T28] audit: type=1400 audit(1747283619.752:6908): avc:  denied  { module_request } for  pid=17976 comm="syz.3.6089" kmod="netdev-pim6reg1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1076.225110][T17985] netlink: 216 bytes leftover after parsing attributes in process `syz.3.6094'.
[ 1076.234261][T17985] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6094'.
[ 1076.244289][   T28] audit: type=1400 audit(1747283619.972:6909): avc:  denied  { create } for  pid=17983 comm="syz.3.6094" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 1076.407717][T18003] device pim6reg1 entered promiscuous mode
[ 1076.414180][   T28] audit: type=1326 audit(1747283620.132:6910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17989 comm="syz.1.6090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1076.517025][T18005] device syzkaller0 entered promiscuous mode
[ 1077.958680][T18031] netlink: 216 bytes leftover after parsing attributes in process `syz.2.6109'.
[ 1077.967909][T18031] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6109'.
[ 1078.110409][T18041] netlink: 'syz.0.6112': attribute type 13 has an invalid length.
[ 1078.119230][T18041] gretap0: refused to change device tx_queue_len
[ 1078.125994][T18041] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1078.771459][T18064] device pim6reg1 entered promiscuous mode
[ 1078.955700][   T28] kauditd_printk_skb: 30 callbacks suppressed
[ 1078.955717][   T28] audit: type=1400 audit(1747283622.672:6941): avc:  denied  { unmount } for  pid=15428 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1079.527841][   T28] audit: type=1326 audit(1747283623.242:6942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1079.575635][   T28] audit: type=1326 audit(1747283623.272:6943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1079.618955][   T28] audit: type=1326 audit(1747283623.272:6944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1079.670752][   T28] audit: type=1326 audit(1747283623.272:6945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1079.698432][   T28] audit: type=1326 audit(1747283623.272:6946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1079.723854][   T28] audit: type=1326 audit(1747283623.272:6947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18076 comm="syz.4.6127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5844b8e969 code=0x7ffc0000
[ 1080.201752][T18103] device veth0_vlan left promiscuous mode
[ 1080.207631][T18103] device veth0_vlan entered promiscuous mode
[ 1080.331851][T18104] netlink: 'syz.0.6136': attribute type 13 has an invalid length.
[ 1080.344675][T18104] gretap0: refused to change device tx_queue_len
[ 1080.352408][T18104] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1080.372449][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1080.389245][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1080.440646][  T528] IPv6: ADDRCONF(NETDEV_CHANGE): ÿÿÿÿÿÿ: link becomes ready
[ 1080.486178][   T28] audit: type=1400 audit(1747283624.202:6948): avc:  denied  { relabelfrom } for  pid=18107 comm="syz.1.6138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1080.524769][   T28] audit: type=1400 audit(1747283624.222:6949): avc:  denied  { relabelto } for  pid=18107 comm="syz.1.6138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1080.714196][   T28] audit: type=1400 audit(1747283624.432:6950): avc:  denied  { create } for  pid=18116 comm="syz.4.6142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1083.981310][   T28] kauditd_printk_skb: 4 callbacks suppressed
[ 1083.981326][   T28] audit: type=1400 audit(1747283627.692:6955): avc:  denied  { unmount } for  pid=15638 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1084.310526][   T28] audit: type=1400 audit(1747283628.022:6956): avc:  denied  { module_request } for  pid=18198 comm="syz.2.6172" kmod="netdev-pim6reg1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 1084.506862][T18195] loop1: detected capacity change from 0 to 40427
[ 1084.754186][T18195] F2FS-fs (loop1): Unrecognized mount option "errors=continue" or missing value
[ 1085.387194][   T28] audit: type=1400 audit(1747283629.102:6957): avc:  denied  { write } for  pid=18214 comm="syz.4.6176" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1085.774173][T18237] device veth0_vlan left promiscuous mode
[ 1085.779955][T18237] device veth0_vlan entered promiscuous mode
[ 1086.138140][   T28] audit: type=1400 audit(1747283629.842:6958): avc:  denied  { write } for  pid=18240 comm="syz.1.6186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1086.211160][   T28] audit: type=1400 audit(1747283629.882:6959): avc:  denied  { setopt } for  pid=18240 comm="syz.1.6186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1087.219609][T18290] device veth0_vlan left promiscuous mode
[ 1087.225540][T18290] device veth0_vlan entered promiscuous mode
[ 1087.731791][   T28] audit: type=1400 audit(1747283631.392:6960): avc:  denied  { create } for  pid=18293 comm="syz.4.6209" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1089.326594][T18331] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6221'.
[ 1089.615943][   T28] audit: type=1400 audit(1747283633.042:6961): avc:  denied  { read } for  pid=18321 comm="syz.4.6221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1090.436952][T18354] netlink: 216 bytes leftover after parsing attributes in process `syz.4.6232'.
[ 1090.446158][T18354] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6232'.
[ 1090.502653][   T28] audit: type=1326 audit(1747283634.222:6962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1090.534559][T18367] loop1: detected capacity change from 0 to 256
[ 1090.546677][T18367] FAT-fs (loop1): Unrecognized mount option "shor†name=mixed" or missing value
[ 1090.566742][   T28] audit: type=1326 audit(1747283634.252:6963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1090.590614][   T28] audit: type=1326 audit(1747283634.252:6964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1090.615288][   T28] audit: type=1326 audit(1747283634.252:6965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1090.639432][   T28] audit: type=1326 audit(1747283634.252:6966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1090.726934][T18372] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6236'.
[ 1091.023563][   T28] audit: type=1326 audit(1747283634.252:6967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0e3238e969 code=0x7ffc0000
[ 1091.047920][   T28] audit: type=1326 audit(1747283634.252:6968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0e3238e9a3 code=0x7ffc0000
[ 1091.079651][   T28] audit: type=1326 audit(1747283634.252:6969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0e3238d41f code=0x7ffc0000
[ 1091.117734][   T28] audit: type=1326 audit(1747283634.252:6970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.1.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0e3238e9f7 code=0x7ffc0000
[ 1091.749748][T18399] netlink: 216 bytes leftover after parsing attributes in process `syz.3.6248'.
[ 1091.758938][T18399] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6248'.
[ 1091.876161][T18403] binder: 18402:18403 ioctl c0306201 200000000280 returned -14
[ 1224.831291][   T29] INFO: task khugepaged:33 blocked for more than 122 seconds.
[ 1224.838904][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1225.042735][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1225.221274][   T29] task:khugepaged      state:D stack:27440 pid:33    ppid:2      flags:0x00004000
[ 1225.230634][   T29] Call Trace:
[ 1225.391342][   T29]  <TASK>
[ 1225.394411][   T29]  __schedule+0xb87/0x14e0
[ 1225.398861][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1225.405093][   T29]  schedule+0xbd/0x170
[ 1225.409199][   T29]  schedule_timeout+0xa6/0x2e0
[ 1225.414185][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1225.419681][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1225.425184][   T29]  wait_for_common+0x354/0x620
[ 1225.429994][   T29]  ? wait_for_completion+0x20/0x20
[ 1225.435247][   T29]  ? try_to_wake_up+0x613/0x1220
[ 1225.440205][   T29]  ? wake_up_process+0x10/0x20
[ 1225.445172][   T29]  ? insert_work+0x271/0x300
[ 1225.449880][   T29]  wait_for_completion+0x18/0x20
[ 1225.454949][   T29]  __flush_work+0x4fb/0x620
[ 1225.459594][   T29]  ? flush_work+0x20/0x20
[ 1225.463995][   T29]  ? __cfi_wq_barrier_func+0x10/0x10
[ 1225.469320][   T29]  ? schedule_timeout+0x17a/0x2e0
[ 1225.474445][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1225.479856][   T29]  flush_work+0x15/0x20
[ 1225.484161][   T29]  __lru_add_drain_all+0x644/0x7b0
[ 1225.489386][   T29]  lru_add_drain_all+0x10/0x20
[ 1225.494207][   T29]  khugepaged+0x12c/0x1560
[ 1225.498707][   T29]  ? __kasan_check_write+0x14/0x20
[ 1225.503916][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1225.508793][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1225.514919][   T29]  ? __switch_to_asm+0x3a/0x60
[ 1225.519717][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1225.525949][   T29]  ? __schedule+0xb8f/0x14e0
[ 1225.530565][   T29]  ? __kasan_check_write+0x14/0x20
[ 1225.535744][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1225.541322][   T29]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1225.547584][   T29]  ? __kasan_check_read+0x11/0x20
[ 1225.552663][   T29]  ? __kthread_parkme+0x142/0x180
[ 1225.557717][   T29]  kthread+0x281/0x320
[ 1225.561823][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1225.566723][   T29]  ? __cfi_kthread+0x10/0x10
[ 1225.571357][   T29]  ret_from_fork+0x1f/0x30
[ 1225.575803][   T29]  </TASK>
[ 1225.651283][   T29] INFO: task syz.1.6260:18422 blocked for more than 123 seconds.
[ 1225.659143][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1225.941258][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1225.949977][   T29] task:syz.1.6260      state:D stack:25920 pid:18422 ppid:15638  flags:0x00004004
[ 1226.231301][   T29] Call Trace:
[ 1226.234629][   T29]  <TASK>
[ 1226.237572][   T29]  __schedule+0xb87/0x14e0
[ 1226.242073][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1226.247992][   T29]  ? calc_wheel_index+0x1a3/0x8b0
[ 1226.253096][   T29]  schedule+0xbd/0x170
[ 1226.257193][   T29]  io_schedule+0x84/0xe0
[ 1226.261560][   T29]  bit_wait_io+0x13/0xd0
[ 1226.265872][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1226.270403][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1226.275524][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1226.280510][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1226.286042][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1226.292119][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1226.297608][   T29]  ? __getblk_gfp+0x3b/0x7d0
[ 1226.302301][   T29]  do_get_write_access+0x536/0xd70
[ 1226.307474][   T29]  jbd2_journal_get_write_access+0x19a/0x2e0
[ 1226.313494][   T29]  __ext4_journal_get_write_access+0x216/0x6c0
[ 1226.319719][   T29]  ? __cfi___ext4_journal_get_write_access+0x10/0x10
[ 1226.326462][   T29]  ? slab_post_alloc_hook+0x6d/0x2d0
[ 1226.331861][   T29]  ? jbd2__journal_start+0x13d/0x6e0
[ 1226.337253][   T29]  ext4_reserve_inode_write+0x1f2/0x2e0
[ 1226.342896][   T29]  __ext4_mark_inode_dirty+0xb2/0x600
[ 1226.348303][   T29]  ext4_dirty_inode+0xbd/0x100
[ 1226.353124][   T29]  ? __cfi_ext4_dirty_inode+0x10/0x10
[ 1226.358528][   T29]  __mark_inode_dirty+0x1f6/0x980
[ 1226.363670][   T29]  __file_update_time+0x243/0x260
[ 1226.368776][   T29]  file_update_time+0x2d3/0x340
[ 1226.373678][   T29]  ? debug_smp_processor_id+0x17/0x20
[ 1226.379172][   T29]  ? __cfi_file_update_time+0x10/0x10
[ 1226.384614][   T29]  ? __cfi____update_load_sum+0x10/0x10
[ 1226.390192][   T29]  ext4_page_mkwrite+0x2c4/0x1300
[ 1226.395293][   T29]  ? __cfi_ext4_page_mkwrite+0x10/0x10
[ 1226.400878][   T29]  ? fpu__restore_sig+0x848/0xf40
[ 1226.406023][   T29]  wp_page_shared+0x505/0x8d0
[ 1226.410750][   T29]  do_wp_page+0xde4/0xfc0
[ 1226.415163][   T29]  handle_mm_fault+0x10e4/0x2640
[ 1226.420152][   T29]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1226.425578][   T29]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1226.430819][   T29]  do_user_addr_fault+0x905/0x1050
[ 1226.436028][   T29]  exc_page_fault+0x51/0xb0
[ 1226.440555][   T29]  asm_exc_page_fault+0x27/0x30
[ 1226.445469][   T29] RIP: 0033:0x7f0e3226ea27
[ 1226.449917][   T29] RSP: 002b:00007fffda9c3c80 EFLAGS: 00010206
[ 1226.456756][   T29] RAX: 0000001b2cf1ff90 RBX: 00007f0e330e5720 RCX: ffffffff812ea694
[ 1226.464871][   T29] RDX: 0000001b2cf1ff8c RSI: 0000000000000004 RDI: 00007f0e330e5720
[ 1226.473141][   T29] RBP: ffffffffffffff90 R08: 00007f0e325b6038 R09: 00007f0e325a2000
[ 1226.481317][   T29] R10: 00007f0e317ff008 R11: 0000000000000005 R12: 0000000000000070
[ 1226.489489][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000003b63b
[ 1226.497513][   T29]  ? xfpregs_set+0x114/0x3f0
[ 1226.502158][   T29]  </TASK>
[ 1226.551242][   T29] NMI backtrace for cpu 0
[ 1226.555626][   T29] CPU: 0 PID: 29 Comm: khungtaskd Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1226.566848][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1226.577008][   T29] Call Trace:
[ 1226.580302][   T29]  <TASK>
[ 1226.583249][   T29]  __dump_stack+0x21/0x24
[ 1226.587607][   T29]  dump_stack_lvl+0xee/0x150
[ 1226.592236][   T29]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1226.597482][   T29]  dump_stack+0x15/0x24
[ 1226.601934][   T29]  nmi_cpu_backtrace+0x2b4/0x2c0
[ 1226.606989][   T29]  ? rcu_read_unlock_special+0xab/0x480
[ 1226.612565][   T29]  ? __cfi_nmi_cpu_backtrace+0x10/0x10
[ 1226.618752][   T29]  ? __rcu_read_unlock+0xa0/0xa0
[ 1226.623802][   T29]  ? memcpy+0x56/0x70
[ 1226.627819][   T29]  ? __cfi_nmi_raise_cpu_backtrace+0x10/0x10
[ 1226.633827][   T29]  nmi_trigger_cpumask_backtrace+0x16b/0x3a0
[ 1226.639956][   T29]  arch_trigger_cpumask_backtrace+0x10/0x20
[ 1226.645868][   T29]  watchdog+0xd44/0xe80
[ 1226.650166][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1226.654954][   T29]  ? __kasan_check_read+0x11/0x20
[ 1226.660175][   T29]  ? __kthread_parkme+0x142/0x180
[ 1226.665321][   T29]  kthread+0x281/0x320
[ 1226.669580][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1226.674288][   T29]  ? __cfi_kthread+0x10/0x10
[ 1226.679012][   T29]  ret_from_fork+0x1f/0x30
[ 1226.683743][   T29]  </TASK>
[ 1226.686887][   T29] Sending NMI from CPU 0 to CPUs 1:
[ 1226.692156][    C1] NMI backtrace for cpu 1
[ 1226.692171][    C1] CPU: 1 PID: 18410 Comm: syz.2.6253 Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1226.692193][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1226.692203][    C1] RIP: 0010:kasan_check_range+0x253/0x290
[ 1226.692231][    C1] Code: 19 02 eb 1a 4f 8d 4c 19 03 eb 13 4f 8d 4c 19 04 eb 0c 4f 8d 4c 19 05 eb 05 4f 8d 4c 19 06 4d 89 ce 4d 85 c9 0f 84 5b ff ff ff <4c> 8d 4c 3e ff 4d 89 ca 49 c1 ea 03 4d 01 c2 4d 39 d6 75 11 41 83
[ 1226.692247][    C1] RSP: 0018:ffffc900001b0de8 EFLAGS: 00000082
[ 1226.692262][    C1] RAX: 0000000000000101 RBX: ffffffffffffffff RCX: ffffffff84efa360
[ 1226.692276][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc900001b0e40
[ 1226.692288][    C1] RBP: ffffc900001b0e00 R08: dffffc0000000000 R09: fffff520000361c8
[ 1226.692301][    C1] R10: fffff520000361c9 R11: 1ffff920000361c8 R12: 1ffff920000361c4
[ 1226.692315][    C1] R13: dffffc0000000000 R14: fffff520000361c8 R15: dffffc0000000001
[ 1226.692329][    C1] FS:  00007f7fe62166c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1226.692345][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1226.692357][    C1] CR2: 00007f5844b71da0 CR3: 0000000124377000 CR4: 00000000003506a0
[ 1226.692373][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1226.692383][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1226.692394][    C1] Call Trace:
[ 1226.692399][    C1]  <IRQ>
[ 1226.692405][    C1]  __kasan_check_write+0x14/0x20
[ 1226.692430][    C1]  _raw_spin_lock_irqsave+0xb0/0x110
[ 1226.692453][    C1]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1226.692475][    C1]  ? sched_clock_cpu+0x6e/0x250
[ 1226.692529][    C1]  ? __cfi_sched_clock_cpu+0x10/0x10
[ 1226.692549][    C1]  try_to_wake_up+0x4d/0x1220
[ 1226.692570][    C1]  wake_up_process+0x10/0x20
[ 1226.692586][    C1]  handle_softirqs+0x539/0x600
[ 1226.692606][    C1]  __do_softirq+0xb/0xd
[ 1226.692622][    C1]  do_softirq+0xc6/0x120
[ 1226.692637][    C1]  </IRQ>
[ 1226.692642][    C1]  <TASK>
[ 1226.692648][    C1]  ? __cfi_do_softirq+0x10/0x10
[ 1226.692665][    C1]  ? fpu__clear_user_states+0x38/0x1f0
[ 1226.692685][    C1]  ? fpu__clear_user_states+0x38/0x1f0
[ 1226.692703][    C1]  __local_bh_enable_ip+0x75/0x80
[ 1226.692720][    C1]  fpu__clear_user_states+0x166/0x1f0
[ 1226.692743][    C1]  arch_do_signal_or_restart+0x410/0x1030
[ 1226.692770][    C1]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[ 1226.692797][    C1]  exit_to_user_mode_loop+0x7a/0xb0
[ 1226.692814][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1226.692831][    C1]  syscall_exit_to_user_mode+0x1a/0x30
[ 1226.692850][    C1]  do_syscall_64+0x58/0xa0
[ 1226.692872][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1226.692887][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1226.692903][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1226.692928][    C1] RIP: 0033:0x7f7fe524d980
[ 1226.692941][    C1] Code: 44 24 20 0f 29 44 24 30 0f 29 44 24 40 48 8b 44 24 08 ff d0 48 83 c4 50 31 c0 5b 5d 41 5c 41 5d 41 5e c3 0f 1f 80 00 00 00 00 <c3> 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 c3 66 66 2e 0f 1f
[ 1226.692955][    C1] RSP: 002b:00007f7fe6215b38 EFLAGS: 00000246
[ 1226.692968][    C1] RAX: 0000000000000000 RBX: 00007f7fe55b5fa8 RCX: 00007f7fe538e969
[ 1226.692980][    C1] RDX: 00007f7fe6215b40 RSI: 00007f7fe6215c70 RDI: 0000000000000011
[ 1226.692992][    C1] RBP: 00007f7fe55b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1226.693003][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7fe55b5fac
[ 1226.693014][    C1] R13: 0000000000000000 R14: 00007fff5af3c140 R15: 00007fff5af3c228
[ 1226.693030][    C1]  </TASK>
[ 1249.791776][   T29] INFO: task khugepaged:33 blocked for more than 147 seconds.
[ 1249.800121][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1250.061417][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1250.070233][   T29] task:khugepaged      state:D stack:27440 pid:33    ppid:2      flags:0x00004000
[ 1250.311308][   T29] Call Trace:
[ 1250.314657][   T29]  <TASK>
[ 1250.317710][   T29]  __schedule+0xb87/0x14e0
[ 1250.322214][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1250.328140][   T29]  schedule+0xbd/0x170
[ 1250.332326][   T29]  schedule_timeout+0xa6/0x2e0
[ 1250.337128][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1250.342538][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1250.348018][   T29]  wait_for_common+0x354/0x620
[ 1250.352822][   T29]  ? wait_for_completion+0x20/0x20
[ 1250.357950][   T29]  ? try_to_wake_up+0x613/0x1220
[ 1250.362958][   T29]  ? wake_up_process+0x10/0x20
[ 1250.367737][   T29]  ? insert_work+0x271/0x300
[ 1250.372389][   T29]  wait_for_completion+0x18/0x20
[ 1250.377370][   T29]  __flush_work+0x4fb/0x620
[ 1250.381927][   T29]  ? flush_work+0x20/0x20
[ 1250.386283][   T29]  ? __cfi_wq_barrier_func+0x10/0x10
[ 1250.391833][   T29]  ? schedule_timeout+0x17a/0x2e0
[ 1250.396975][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1250.402424][   T29]  flush_work+0x15/0x20
[ 1250.406600][   T29]  __lru_add_drain_all+0x644/0x7b0
[ 1250.411775][   T29]  lru_add_drain_all+0x10/0x20
[ 1250.416654][   T29]  khugepaged+0x12c/0x1560
[ 1250.421085][   T29]  ? __kasan_check_write+0x14/0x20
[ 1250.426435][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1250.431532][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1250.437619][   T29]  ? __switch_to_asm+0x3a/0x60
[ 1250.442488][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1250.448663][   T29]  ? __schedule+0xb8f/0x14e0
[ 1250.453294][   T29]  ? __kasan_check_write+0x14/0x20
[ 1250.458465][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1250.463987][   T29]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1250.470015][   T29]  ? __kasan_check_read+0x11/0x20
[ 1250.475134][   T29]  ? __kthread_parkme+0x142/0x180
[ 1250.480189][   T29]  kthread+0x281/0x320
[ 1250.484296][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1250.489178][   T29]  ? __cfi_kthread+0x10/0x10
[ 1250.493889][   T29]  ret_from_fork+0x1f/0x30
[ 1250.498331][   T29]  </TASK>
[ 1250.592466][   T29] INFO: task jbd2/sda1-8:66 blocked for more than 128 seconds.
[ 1250.600145][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1250.901401][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1250.910204][   T29] task:jbd2/sda1-8     state:D stack:24552 pid:66    ppid:2      flags:0x00004000
[ 1251.161268][   T29] Call Trace:
[ 1251.164615][   T29]  <TASK>
[ 1251.167738][   T29]  __schedule+0xb87/0x14e0
[ 1251.172436][   T29]  ? sbitmap_any_bit_set+0x11a/0x160
[ 1251.178518][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1251.184588][   T29]  schedule+0xbd/0x170
[ 1251.188700][   T29]  io_schedule+0x84/0xe0
[ 1251.193104][   T29]  bit_wait_io+0x13/0xd0
[ 1251.197564][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1251.202147][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1251.207232][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1251.212676][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1251.218183][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1251.224583][   T29]  ? _raw_spin_lock+0x8e/0xe0
[ 1251.229388][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1251.235886][   T29]  ? __cfi__raw_write_lock+0x10/0x10
[ 1251.241340][   T29]  ? _raw_read_unlock+0x25/0x40
[ 1251.246582][   T29]  __wait_on_buffer+0x56/0x70
[ 1251.251391][   T29]  jbd2_journal_commit_transaction+0x2d77/0x5530
[ 1251.258172][   T29]  ? __cfi_jbd2_journal_commit_transaction+0x10/0x10
[ 1251.264888][   T29]  ? __cfi___switch_to+0x10/0x10
[ 1251.270192][   T29]  ? _raw_spin_unlock+0x4c/0x70
[ 1251.275296][   T29]  ? finish_task_switch+0x16b/0x7b0
[ 1251.281039][   T29]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1251.287253][   T29]  ? __kasan_check_write+0x14/0x20
[ 1251.292519][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1251.298005][   T29]  ? detach_if_pending+0xf4/0x300
[ 1251.303202][   T29]  ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 1251.309048][   T29]  ? del_timer_sync+0x144/0x1a0
[ 1251.314028][   T29]  kjournald2+0x3e7/0x760
[ 1251.319167][   T29]  ? __cfi_kjournald2+0x10/0x10
[ 1251.324070][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1251.330254][   T29]  ? __kasan_check_read+0x11/0x20
[ 1251.335853][   T29]  ? __kthread_parkme+0x142/0x180
[ 1251.341289][   T29]  kthread+0x281/0x320
[ 1251.345448][   T29]  ? __cfi_kjournald2+0x10/0x10
[ 1251.350619][   T29]  ? __cfi_kthread+0x10/0x10
[ 1251.355261][   T29]  ret_from_fork+0x1f/0x30
[ 1251.360059][   T29]  </TASK>
[ 1251.451340][   T29] INFO: task syz.2.6253:18408 blocked for more than 129 seconds.
[ 1251.459204][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1251.771267][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1251.780253][   T29] task:syz.2.6253      state:D stack:25920 pid:18408 ppid:15428  flags:0x00004004
[ 1252.001295][   T29] Call Trace:
[ 1252.004631][   T29]  <TASK>
[ 1252.007589][   T29]  __schedule+0xb87/0x14e0
[ 1252.012352][   T29]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1252.018544][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1252.024515][   T29]  ? __cfi_kasan_check_range+0x10/0x10
[ 1252.030085][   T29]  ? __kasan_check_read+0x11/0x20
[ 1252.035310][   T29]  ? folio_mark_accessed+0x1b8/0x3f0
[ 1252.040692][   T29]  schedule+0xbd/0x170
[ 1252.044993][   T29]  io_schedule+0x84/0xe0
[ 1252.049258][   T29]  bit_wait_io+0x13/0xd0
[ 1252.053546][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1252.058114][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1252.063127][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1252.068151][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1252.073895][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1252.079923][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1252.085476][   T29]  ? __getblk_gfp+0x3b/0x7d0
[ 1252.090115][   T29]  do_get_write_access+0x536/0xd70
[ 1252.095284][   T29]  jbd2_journal_get_write_access+0x19a/0x2e0
[ 1252.101394][   T29]  __ext4_journal_get_write_access+0x216/0x6c0
[ 1252.107590][   T29]  ? __cfi___ext4_journal_get_write_access+0x10/0x10
[ 1252.114318][   T29]  ? slab_post_alloc_hook+0x6d/0x2d0
[ 1252.119709][   T29]  ? jbd2__journal_start+0x13d/0x6e0
[ 1252.125045][   T29]  ext4_reserve_inode_write+0x1f2/0x2e0
[ 1252.131344][   T29]  __ext4_mark_inode_dirty+0xb2/0x600
[ 1252.136880][   T29]  ext4_dirty_inode+0xbd/0x100
[ 1252.141710][   T29]  ? __cfi_ext4_dirty_inode+0x10/0x10
[ 1252.147196][   T29]  __mark_inode_dirty+0x1f6/0x980
[ 1252.152286][   T29]  __file_update_time+0x243/0x260
[ 1252.157423][   T29]  file_update_time+0x2d3/0x340
[ 1252.162325][   T29]  ? debug_smp_processor_id+0x17/0x20
[ 1252.167802][   T29]  ? __cfi_file_update_time+0x10/0x10
[ 1252.173316][   T29]  ? __pv_queued_spin_lock_slowpath+0x889/0xc40
[ 1252.179758][   T29]  ext4_page_mkwrite+0x2c4/0x1300
[ 1252.185006][   T29]  ? __cfi_ext4_page_mkwrite+0x10/0x10
[ 1252.190484][   T29]  ? sysvec_reschedule_ipi+0x78/0x80
[ 1252.196113][   T29]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1252.201788][   T29]  wp_page_shared+0x505/0x8d0
[ 1252.206490][   T29]  do_wp_page+0xde4/0xfc0
[ 1252.210928][   T29]  handle_mm_fault+0x10e4/0x2640
[ 1252.216007][   T29]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1252.221337][   T29]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1252.226745][   T29]  do_user_addr_fault+0x905/0x1050
[ 1252.231899][   T29]  exc_page_fault+0x51/0xb0
[ 1252.236425][   T29]  asm_exc_page_fault+0x27/0x30
[ 1252.241365][   T29] RIP: 0033:0x7f7fe526ea27
[ 1252.245963][   T29] RSP: 002b:00007fff5af3c260 EFLAGS: 00010202
[ 1252.252071][   T29] RAX: 0000001b2f91ff40 RBX: 00007f7fe60e5720 RCX: ffffffff81445f5f
[ 1252.260152][   T29] RDX: 0000001b2f91ff3c RSI: 0000000000000004 RDI: 00007f7fe60e5720
[ 1252.268376][   T29] RBP: ffffffffffffff40 R08: 00007f7fe55b6038 R09: 00007f7fe55a2000
[ 1252.276616][   T29] R10: 00007f7fe47ff008 R11: 0000000000000009 R12: 00000000000000c0
[ 1252.284720][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000007ffff
[ 1252.293169][   T29]  ? __send_signal_locked+0x3f/0xb70
[ 1252.298524][   T29]  </TASK>
[ 1252.422488][   T29] INFO: task syz.1.6260:18422 blocked for more than 150 seconds.
[ 1252.430262][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1252.752775][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1252.921281][   T29] task:syz.1.6260      state:D stack:25920 pid:18422 ppid:15638  flags:0x00004004
[ 1252.930546][   T29] Call Trace:
[ 1253.041312][   T29]  <TASK>
[ 1253.044390][   T29]  __schedule+0xb87/0x14e0
[ 1253.048939][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1253.054908][   T29]  ? calc_wheel_index+0x1a3/0x8b0
[ 1253.059957][   T29]  schedule+0xbd/0x170
[ 1253.064172][   T29]  io_schedule+0x84/0xe0
[ 1253.068465][   T29]  bit_wait_io+0x13/0xd0
[ 1253.072750][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1253.077271][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1253.082258][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1253.087219][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1253.092809][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1253.098815][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1253.104313][   T29]  ? __getblk_gfp+0x3b/0x7d0
[ 1253.109095][   T29]  do_get_write_access+0x536/0xd70
[ 1253.114250][   T29]  jbd2_journal_get_write_access+0x19a/0x2e0
[ 1253.120427][   T29]  __ext4_journal_get_write_access+0x216/0x6c0
[ 1253.126823][   T29]  ? __cfi___ext4_journal_get_write_access+0x10/0x10
[ 1253.133642][   T29]  ? slab_post_alloc_hook+0x6d/0x2d0
[ 1253.138954][   T29]  ? jbd2__journal_start+0x13d/0x6e0
[ 1253.144295][   T29]  ext4_reserve_inode_write+0x1f2/0x2e0
[ 1253.149878][   T29]  __ext4_mark_inode_dirty+0xb2/0x600
[ 1253.155320][   T29]  ext4_dirty_inode+0xbd/0x100
[ 1253.160114][   T29]  ? __cfi_ext4_dirty_inode+0x10/0x10
[ 1253.165548][   T29]  __mark_inode_dirty+0x1f6/0x980
[ 1253.170596][   T29]  __file_update_time+0x243/0x260
[ 1253.175945][   T29]  file_update_time+0x2d3/0x340
[ 1253.181787][   T29]  ? debug_smp_processor_id+0x17/0x20
[ 1253.187200][   T29]  ? __cfi_file_update_time+0x10/0x10
[ 1253.192714][   T29]  ? __cfi____update_load_sum+0x10/0x10
[ 1253.198506][   T29]  ext4_page_mkwrite+0x2c4/0x1300
[ 1253.204395][   T29]  ? __cfi_ext4_page_mkwrite+0x10/0x10
[ 1253.209981][   T29]  ? fpu__restore_sig+0x848/0xf40
[ 1253.215053][   T29]  wp_page_shared+0x505/0x8d0
[ 1253.219762][   T29]  do_wp_page+0xde4/0xfc0
[ 1253.224226][   T29]  handle_mm_fault+0x10e4/0x2640
[ 1253.229194][   T29]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1253.234543][   T29]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1253.240042][   T29]  do_user_addr_fault+0x905/0x1050
[ 1253.245467][   T29]  exc_page_fault+0x51/0xb0
[ 1253.250019][   T29]  asm_exc_page_fault+0x27/0x30
[ 1253.255086][   T29] RIP: 0033:0x7f0e3226ea27
[ 1253.259511][   T29] RSP: 002b:00007fffda9c3c80 EFLAGS: 00010206
[ 1253.265804][   T29] RAX: 0000001b2cf1ff90 RBX: 00007f0e330e5720 RCX: ffffffff812ea694
[ 1253.274087][   T29] RDX: 0000001b2cf1ff8c RSI: 0000000000000004 RDI: 00007f0e330e5720
[ 1253.282186][   T29] RBP: ffffffffffffff90 R08: 00007f0e325b6038 R09: 00007f0e325a2000
[ 1253.290182][   T29] R10: 00007f0e317ff008 R11: 0000000000000005 R12: 0000000000000070
[ 1253.299235][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000003b63b
[ 1253.307450][   T29]  ? xfpregs_set+0x114/0x3f0
[ 1253.312361][   T29]  </TASK>
[ 1253.433385][   T29] NMI backtrace for cpu 0
[ 1253.437759][   T29] CPU: 0 PID: 29 Comm: khungtaskd Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1253.448966][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1253.459309][   T29] Call Trace:
[ 1253.462611][   T29]  <TASK>
[ 1253.465564][   T29]  __dump_stack+0x21/0x24
[ 1253.470007][   T29]  dump_stack_lvl+0xee/0x150
[ 1253.474633][   T29]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1253.479689][   T29]  dump_stack+0x15/0x24
[ 1253.483878][   T29]  nmi_cpu_backtrace+0x2b4/0x2c0
[ 1253.488840][   T29]  ? rcu_read_unlock_special+0xab/0x480
[ 1253.494410][   T29]  ? __cfi_nmi_cpu_backtrace+0x10/0x10
[ 1253.500082][   T29]  ? __rcu_read_unlock+0xa0/0xa0
[ 1253.505132][   T29]  ? memcpy+0x56/0x70
[ 1253.509223][   T29]  ? __cfi_nmi_raise_cpu_backtrace+0x10/0x10
[ 1253.515226][   T29]  nmi_trigger_cpumask_backtrace+0x16b/0x3a0
[ 1253.521325][   T29]  arch_trigger_cpumask_backtrace+0x10/0x20
[ 1253.527252][   T29]  watchdog+0xd44/0xe80
[ 1253.531533][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1253.536265][   T29]  ? __kasan_check_read+0x11/0x20
[ 1253.541319][   T29]  ? __kthread_parkme+0x142/0x180
[ 1253.546378][   T29]  kthread+0x281/0x320
[ 1253.550993][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1253.555700][   T29]  ? __cfi_kthread+0x10/0x10
[ 1253.560488][   T29]  ret_from_fork+0x1f/0x30
[ 1253.564931][   T29]  </TASK>
[ 1253.568085][   T29] Sending NMI from CPU 0 to CPUs 1:
[ 1253.574131][    C1] NMI backtrace for cpu 1
[ 1253.574143][    C1] CPU: 1 PID: 18410 Comm: syz.2.6253 Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1253.574163][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1253.574174][    C1] RIP: 0010:unwind_next_frame+0x31e/0x700
[ 1253.574199][    C1] Code: 10 00 74 08 48 89 df e8 70 3f 7f 00 48 c7 03 00 00 00 00 b0 01 e9 a2 02 00 00 4c 8d 6b 50 4d 89 ee 49 c1 ee 03 41 80 3c 16 00 <74> 12 4c 89 ef e8 58 3e 7f 00 48 ba 00 00 00 00 00 fc ff df 49 8b
[ 1253.574213][    C1] RSP: 0018:ffffc900001b0768 EFLAGS: 00000046
[ 1253.574229][    C1] RAX: ffffc90000ca7f30 RBX: ffffc900001b07e8 RCX: 00000000001b0800
[ 1253.574242][    C1] RDX: dffffc0000000000 RSI: ffffffff817bf592 RDI: ffffc90000ca7f48
[ 1253.574255][    C1] RBP: ffffc900001b07d8 R08: ffffc900001b08b0 R09: ffffc900001b08a8
[ 1253.574268][    C1] R10: 0000000000000015 R11: 1ffff920000360fd R12: 0000000000000000
[ 1253.574280][    C1] R13: ffffc900001b0838 R14: 1ffff92000036107 R15: ffffc90000ca7cd0
[ 1253.574293][    C1] FS:  00007f7fe62166c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1253.574308][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1253.574320][    C1] CR2: 00007f5844b71da0 CR3: 0000000124377000 CR4: 00000000003506a0
[ 1253.574342][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1253.574352][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1253.574363][    C1] Call Trace:
[ 1253.574368][    C1]  <IRQ>
[ 1253.574375][    C1]  ? __kernel_text_address+0xd/0x30
[ 1253.574398][    C1]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[ 1253.574419][    C1]  arch_stack_walk+0x124/0x150
[ 1253.574445][    C1]  ? bpf_send_signal_common+0x2b2/0x420
[ 1253.574533][    C1]  stack_trace_save+0x98/0xe0
[ 1253.574552][    C1]  ? __cfi_stack_trace_save+0x10/0x10
[ 1253.574572][    C1]  ? __stack_depot_save+0x36/0x480
[ 1253.574621][    C1]  ? memset+0x35/0x40
[ 1253.574644][    C1]  kasan_set_track+0x4b/0x70
[ 1253.574659][    C1]  ? kasan_set_track+0x4b/0x70
[ 1253.574674][    C1]  ? kasan_save_alloc_info+0x25/0x30
[ 1253.574695][    C1]  ? __kasan_slab_alloc+0x72/0x80
[ 1253.574711][    C1]  ? slab_post_alloc_hook+0x4f/0x2d0
[ 1253.574731][    C1]  ? kmem_cache_alloc+0x16e/0x330
[ 1253.574749][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1253.574771][    C1]  ? __send_signal_locked+0x19d/0xb70
[ 1253.574790][    C1]  ? send_signal_locked+0x422/0x580
[ 1253.574809][    C1]  ? do_send_sig_info+0xd6/0x210
[ 1253.574828][    C1]  ? group_send_sig_info+0x118/0x2b0
[ 1253.574849][    C1]  ? do_bpf_send_signal+0x82/0x150
[ 1253.574887][    C1]  ? irq_work_run_list+0x18b/0x2b0
[ 1253.574922][    C1]  ? irq_work_run+0x6a/0xf0
[ 1253.574939][    C1]  ? __sysvec_irq_work+0x75/0x1c0
[ 1253.574962][    C1]  ? sysvec_irq_work+0xa1/0xc0
[ 1253.574978][    C1]  ? asm_sysvec_irq_work+0x1b/0x20
[ 1253.574993][    C1]  ? native_apic_msr_write+0x39/0x50
[ 1253.575016][    C1]  ? x2apic_send_IPI_self+0x6f/0x80
[ 1253.575038][    C1]  ? arch_irq_work_raise+0x98/0xf0
[ 1253.575061][    C1]  ? __irq_work_queue_local+0x115/0x190
[ 1253.575080][    C1]  ? irq_work_queue+0x9e/0x150
[ 1253.575098][    C1]  ? bpf_send_signal_common+0x2b2/0x420
[ 1253.575129][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1253.575152][    C1]  kasan_save_alloc_info+0x25/0x30
[ 1253.575174][    C1]  __kasan_slab_alloc+0x72/0x80
[ 1253.575192][    C1]  slab_post_alloc_hook+0x4f/0x2d0
[ 1253.575211][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1253.575234][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1253.575255][    C1]  kmem_cache_alloc+0x16e/0x330
[ 1253.575273][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1253.575296][    C1]  __sigqueue_alloc+0x13f/0x210
[ 1253.575319][    C1]  __send_signal_locked+0x19d/0xb70
[ 1253.575345][    C1]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1253.575369][    C1]  send_signal_locked+0x422/0x580
[ 1253.575391][    C1]  do_send_sig_info+0xd6/0x210
[ 1253.575412][    C1]  group_send_sig_info+0x118/0x2b0
[ 1253.575433][    C1]  ? __cfi_group_send_sig_info+0x10/0x10
[ 1253.575456][    C1]  do_bpf_send_signal+0x82/0x150
[ 1253.575480][    C1]  irq_work_run_list+0x18b/0x2b0
[ 1253.575499][    C1]  ? irq_work_run+0xf0/0xf0
[ 1253.575520][    C1]  irq_work_run+0x6a/0xf0
[ 1253.575538][    C1]  __sysvec_irq_work+0x75/0x1c0
[ 1253.575561][    C1]  sysvec_irq_work+0xa1/0xc0
[ 1253.575576][    C1]  </IRQ>
[ 1253.575581][    C1]  <TASK>
[ 1253.575587][    C1]  asm_sysvec_irq_work+0x1b/0x20
[ 1253.575602][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[ 1253.575627][    C1] Code: 74 05 83 ff 30 75 12 5d c3 81 ff d0 00 00 00 74 f6 81 ff e0 00 00 00 74 ee c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 eb d9 89 f6 31 d2 e8 4a 6a 56 01 5d c3 0f 1f 84 00 00 00 00
[ 1253.575641][    C1] RSP: 0018:ffffc90000ca7c20 EFLAGS: 00000246
[ 1253.575655][    C1] RAX: 00000000000000f6 RBX: 00000000000000f6 RCX: 000000000000083f
[ 1253.575666][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[ 1253.575677][    C1] RBP: ffffc90000ca7c20 R08: dffffc0000000000 R09: fffff52000194f81
[ 1253.575690][    C1] R10: 0000000000000000 R11: ffffffff813412a0 R12: 0000000000000000
[ 1253.575701][    C1] R13: dffffc0000000001 R14: ffffffff86487b50 R15: dffffc0000000000
[ 1253.575715][    C1]  ? __cfi_native_apic_msr_write+0x10/0x10
[ 1253.575742][    C1]  x2apic_send_IPI_self+0x6f/0x80
[ 1253.575765][    C1]  arch_irq_work_raise+0x98/0xf0
[ 1253.575788][    C1]  __irq_work_queue_local+0x115/0x190
[ 1253.575808][    C1]  irq_work_queue+0x9e/0x150
[ 1253.575827][    C1]  bpf_send_signal_common+0x2b2/0x420
[ 1253.575851][    C1]  ? trace_raw_output_bpf_trace_printk+0xd0/0xd0
[ 1253.575877][    C1]  bpf_send_signal+0x19/0x20
[ 1253.575895][    C1]  bpf_prog_7ba5217f62dcd359+0x38/0x3c
[ 1253.575912][    C1]  bpf_trace_run2+0xff/0x250
[ 1253.575933][    C1]  ? __cfi_bpf_trace_run2+0x10/0x10
[ 1253.575957][    C1]  __bpf_trace_sys_enter+0x62/0x70
[ 1253.575973][    C1]  trace_sys_enter+0x3d/0x50
[ 1253.575989][    C1]  syscall_trace_enter+0xf3/0x150
[ 1253.576005][    C1]  syscall_enter_from_user_mode+0x1f/0x30
[ 1253.576024][    C1]  do_syscall_64+0x24/0xa0
[ 1253.576046][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1253.576061][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1253.576077][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1253.576104][    C1] RIP: 0033:0x7f7fe532ab39
[ 1253.576116][    C1] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[ 1253.576130][    C1] RSP: 002b:00007f7fe6215b40 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[ 1253.576146][    C1] RAX: ffffffffffffffda RBX: 00007f7fe55b5fa8 RCX: 00007f7fe532ab39
[ 1253.576159][    C1] RDX: 00007f7fe6215b40 RSI: 00007f7fe6215c70 RDI: 0000000000000011
[ 1253.576171][    C1] RBP: 00007f7fe55b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1253.576182][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7fe55b5fac
[ 1253.576193][    C1] R13: 0000000000000000 R14: 00007fff5af3c140 R15: 00007fff5af3c228
[ 1253.576223][    C1]  </TASK>
[ 1276.671258][   T29] INFO: task khugepaged:33 blocked for more than 174 seconds.
[ 1276.679028][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1276.881267][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1276.890097][   T29] task:khugepaged      state:D stack:27440 pid:33    ppid:2      flags:0x00004000
[ 1277.211215][   T29] Call Trace:
[ 1277.214546][   T29]  <TASK>
[ 1277.217490][   T29]  __schedule+0xb87/0x14e0
[ 1277.321295][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1277.327261][   T29]  schedule+0xbd/0x170
[ 1277.331479][   T29]  schedule_timeout+0xa6/0x2e0
[ 1277.336260][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1277.341702][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1277.347197][   T29]  wait_for_common+0x354/0x620
[ 1277.352273][   T29]  ? wait_for_completion+0x20/0x20
[ 1277.357467][   T29]  ? try_to_wake_up+0x613/0x1220
[ 1277.362470][   T29]  ? wake_up_process+0x10/0x20
[ 1277.367251][   T29]  ? insert_work+0x271/0x300
[ 1277.371914][   T29]  wait_for_completion+0x18/0x20
[ 1277.376889][   T29]  __flush_work+0x4fb/0x620
[ 1277.381443][   T29]  ? flush_work+0x20/0x20
[ 1277.385880][   T29]  ? __cfi_wq_barrier_func+0x10/0x10
[ 1277.391240][   T29]  ? schedule_timeout+0x17a/0x2e0
[ 1277.396631][   T29]  ? __cfi_schedule_timeout+0x10/0x10
[ 1277.402127][   T29]  flush_work+0x15/0x20
[ 1277.406316][   T29]  __lru_add_drain_all+0x644/0x7b0
[ 1277.411564][   T29]  lru_add_drain_all+0x10/0x20
[ 1277.416547][   T29]  khugepaged+0x12c/0x1560
[ 1277.421155][   T29]  ? __kasan_check_write+0x14/0x20
[ 1277.426321][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1277.431229][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1277.437321][   T29]  ? __switch_to_asm+0x3a/0x60
[ 1277.442129][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1277.448312][   T29]  ? __schedule+0xb8f/0x14e0
[ 1277.452977][   T29]  ? __kasan_check_write+0x14/0x20
[ 1277.458127][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1277.463736][   T29]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1277.470107][   T29]  ? __kasan_check_read+0x11/0x20
[ 1277.475309][   T29]  ? __kthread_parkme+0x142/0x180
[ 1277.480456][   T29]  kthread+0x281/0x320
[ 1277.484560][   T29]  ? __cfi_khugepaged+0x10/0x10
[ 1277.489434][   T29]  ? __cfi_kthread+0x10/0x10
[ 1277.494064][   T29]  ret_from_fork+0x1f/0x30
[ 1277.498595][   T29]  </TASK>
[ 1277.621260][   T29] INFO: task jbd2/sda1-8:66 blocked for more than 155 seconds.
[ 1277.628849][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1277.921272][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1277.929987][   T29] task:jbd2/sda1-8     state:D stack:24552 pid:66    ppid:2      flags:0x00004000
[ 1278.256006][   T29] Call Trace:
[ 1278.259343][   T29]  <TASK>
[ 1278.271264][   T29]  __schedule+0xb87/0x14e0
[ 1278.275831][   T29]  ? sbitmap_any_bit_set+0x11a/0x160
[ 1278.281135][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1278.287116][   T29]  schedule+0xbd/0x170
[ 1278.291240][   T29]  io_schedule+0x84/0xe0
[ 1278.295516][   T29]  bit_wait_io+0x13/0xd0
[ 1278.299801][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1278.304362][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1278.309330][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1278.314508][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1278.320099][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1278.326228][   T29]  ? _raw_spin_lock+0x8e/0xe0
[ 1278.330929][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1278.336796][   T29]  ? __cfi__raw_write_lock+0x10/0x10
[ 1278.342145][   T29]  ? _raw_read_unlock+0x25/0x40
[ 1278.347208][   T29]  __wait_on_buffer+0x56/0x70
[ 1278.351955][   T29]  jbd2_journal_commit_transaction+0x2d77/0x5530
[ 1278.358320][   T29]  ? __cfi_jbd2_journal_commit_transaction+0x10/0x10
[ 1278.365038][   T29]  ? __cfi___switch_to+0x10/0x10
[ 1278.370020][   T29]  ? _raw_spin_unlock+0x4c/0x70
[ 1278.375001][   T29]  ? finish_task_switch+0x16b/0x7b0
[ 1278.380230][   T29]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1278.386163][   T29]  ? __kasan_check_write+0x14/0x20
[ 1278.391349][   T29]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1278.398053][   T29]  ? detach_if_pending+0xf4/0x300
[ 1278.403726][   T29]  ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 1278.409815][   T29]  ? del_timer_sync+0x144/0x1a0
[ 1278.414718][   T29]  kjournald2+0x3e7/0x760
[ 1278.419180][   T29]  ? __cfi_kjournald2+0x10/0x10
[ 1278.424109][   T29]  ? __cfi_autoremove_wake_function+0x10/0x10
[ 1278.430558][   T29]  ? __kasan_check_read+0x11/0x20
[ 1278.435688][   T29]  ? __kthread_parkme+0x142/0x180
[ 1278.440773][   T29]  kthread+0x281/0x320
[ 1278.444947][   T29]  ? __cfi_kjournald2+0x10/0x10
[ 1278.449844][   T29]  ? __cfi_kthread+0x10/0x10
[ 1278.454601][   T29]  ret_from_fork+0x1f/0x30
[ 1278.459224][   T29]  </TASK>
[ 1278.581295][   T29] INFO: task syz.2.6253:18408 blocked for more than 156 seconds.
[ 1278.589153][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1278.891230][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1278.899943][   T29] task:syz.2.6253      state:D stack:25920 pid:18408 ppid:15428  flags:0x00004004
[ 1279.191272][   T29] Call Trace:
[ 1279.194604][   T29]  <TASK>
[ 1279.197569][   T29]  __schedule+0xb87/0x14e0
[ 1279.202084][   T29]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1279.207747][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1279.213694][   T29]  ? __cfi_kasan_check_range+0x10/0x10
[ 1279.219184][   T29]  ? __kasan_check_read+0x11/0x20
[ 1279.224549][   T29]  ? folio_mark_accessed+0x1b8/0x3f0
[ 1279.229879][   T29]  schedule+0xbd/0x170
[ 1279.234362][   T29]  io_schedule+0x84/0xe0
[ 1279.238644][   T29]  bit_wait_io+0x13/0xd0
[ 1279.242938][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1279.247472][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1279.252652][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1279.257647][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1279.263248][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1279.269253][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1279.274791][   T29]  ? __getblk_gfp+0x3b/0x7d0
[ 1279.279396][   T29]  do_get_write_access+0x536/0xd70
[ 1279.284548][   T29]  jbd2_journal_get_write_access+0x19a/0x2e0
[ 1279.290652][   T29]  __ext4_journal_get_write_access+0x216/0x6c0
[ 1279.296949][   T29]  ? __cfi___ext4_journal_get_write_access+0x10/0x10
[ 1279.303875][   T29]  ? slab_post_alloc_hook+0x6d/0x2d0
[ 1279.309272][   T29]  ? jbd2__journal_start+0x13d/0x6e0
[ 1279.314857][   T29]  ext4_reserve_inode_write+0x1f2/0x2e0
[ 1279.320429][   T29]  __ext4_mark_inode_dirty+0xb2/0x600
[ 1279.325851][   T29]  ext4_dirty_inode+0xbd/0x100
[ 1279.330721][   T29]  ? __cfi_ext4_dirty_inode+0x10/0x10
[ 1279.336135][   T29]  __mark_inode_dirty+0x1f6/0x980
[ 1279.341198][   T29]  __file_update_time+0x243/0x260
[ 1279.346236][   T29]  file_update_time+0x2d3/0x340
[ 1279.351102][   T29]  ? debug_smp_processor_id+0x17/0x20
[ 1279.356582][   T29]  ? __cfi_file_update_time+0x10/0x10
[ 1279.361983][   T29]  ? __pv_queued_spin_lock_slowpath+0x889/0xc40
[ 1279.368605][   T29]  ext4_page_mkwrite+0x2c4/0x1300
[ 1279.373763][   T29]  ? __cfi_ext4_page_mkwrite+0x10/0x10
[ 1279.379243][   T29]  ? sysvec_reschedule_ipi+0x78/0x80
[ 1279.384652][   T29]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 1279.390315][   T29]  wp_page_shared+0x505/0x8d0
[ 1279.395658][   T29]  do_wp_page+0xde4/0xfc0
[ 1279.400280][   T29]  handle_mm_fault+0x10e4/0x2640
[ 1279.405298][   T29]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1279.410755][   T29]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1279.416026][   T29]  do_user_addr_fault+0x905/0x1050
[ 1279.421200][   T29]  exc_page_fault+0x51/0xb0
[ 1279.425809][   T29]  asm_exc_page_fault+0x27/0x30
[ 1279.430689][   T29] RIP: 0033:0x7f7fe526ea27
[ 1279.435243][   T29] RSP: 002b:00007fff5af3c260 EFLAGS: 00010202
[ 1279.441613][   T29] RAX: 0000001b2f91ff40 RBX: 00007f7fe60e5720 RCX: ffffffff81445f5f
[ 1279.450224][   T29] RDX: 0000001b2f91ff3c RSI: 0000000000000004 RDI: 00007f7fe60e5720
[ 1279.458450][   T29] RBP: ffffffffffffff40 R08: 00007f7fe55b6038 R09: 00007f7fe55a2000
[ 1279.467277][   T29] R10: 00007f7fe47ff008 R11: 0000000000000009 R12: 00000000000000c0
[ 1279.475489][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000007ffff
[ 1279.483600][   T29]  ? __send_signal_locked+0x3f/0xb70
[ 1279.488922][   T29]  </TASK>
[ 1279.503966][   T29] INFO: task syz.1.6260:18422 blocked for more than 177 seconds.
[ 1279.681214][   T29]       Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1279.690287][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1280.023612][   T29] task:syz.1.6260      state:D stack:25920 pid:18422 ppid:15638  flags:0x00004004
[ 1280.091273][   T29] Call Trace:
[ 1280.094601][   T29]  <TASK>
[ 1280.097549][   T29]  __schedule+0xb87/0x14e0
[ 1280.102030][   T29]  ? release_firmware_map_entry+0x194/0x194
[ 1280.107943][   T29]  ? calc_wheel_index+0x1a3/0x8b0
[ 1280.113201][   T29]  schedule+0xbd/0x170
[ 1280.117466][   T29]  io_schedule+0x84/0xe0
[ 1280.121772][   T29]  bit_wait_io+0x13/0xd0
[ 1280.126139][   T29]  __wait_on_bit+0xb9/0x2d0
[ 1280.130665][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1280.135688][   T29]  ? __cfi_bit_wait_io+0x10/0x10
[ 1280.140821][   T29]  out_of_line_wait_on_bit+0x11c/0x160
[ 1280.146349][   T29]  ? __cfi_out_of_line_wait_on_bit+0x10/0x10
[ 1280.152378][   T29]  ? __cfi_wake_bit_function+0x10/0x10
[ 1280.157863][   T29]  ? __getblk_gfp+0x3b/0x7d0
[ 1280.162768][   T29]  do_get_write_access+0x536/0xd70
[ 1280.167980][   T29]  jbd2_journal_get_write_access+0x19a/0x2e0
[ 1280.174052][   T29]  __ext4_journal_get_write_access+0x216/0x6c0
[ 1280.180274][   T29]  ? __cfi___ext4_journal_get_write_access+0x10/0x10
[ 1280.187211][   T29]  ? slab_post_alloc_hook+0x6d/0x2d0
[ 1280.192680][   T29]  ? jbd2__journal_start+0x13d/0x6e0
[ 1280.198008][   T29]  ext4_reserve_inode_write+0x1f2/0x2e0
[ 1280.203688][   T29]  __ext4_mark_inode_dirty+0xb2/0x600
[ 1280.209104][   T29]  ext4_dirty_inode+0xbd/0x100
[ 1280.213999][   T29]  ? __cfi_ext4_dirty_inode+0x10/0x10
[ 1280.219491][   T29]  __mark_inode_dirty+0x1f6/0x980
[ 1280.224580][   T29]  __file_update_time+0x243/0x260
[ 1280.230336][   T29]  file_update_time+0x2d3/0x340
[ 1280.235564][   T29]  ? debug_smp_processor_id+0x17/0x20
[ 1280.241064][   T29]  ? __cfi_file_update_time+0x10/0x10
[ 1280.246642][   T29]  ? __cfi____update_load_sum+0x10/0x10
[ 1280.252260][   T29]  ext4_page_mkwrite+0x2c4/0x1300
[ 1280.257322][   T29]  ? __cfi_ext4_page_mkwrite+0x10/0x10
[ 1280.262857][   T29]  ? fpu__restore_sig+0x848/0xf40
[ 1280.267928][   T29]  wp_page_shared+0x505/0x8d0
[ 1280.272722][   T29]  do_wp_page+0xde4/0xfc0
[ 1280.277098][   T29]  handle_mm_fault+0x10e4/0x2640
[ 1280.282705][   T29]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1280.288030][   T29]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1280.293735][   T29]  do_user_addr_fault+0x905/0x1050
[ 1280.298910][   T29]  exc_page_fault+0x51/0xb0
[ 1280.303831][   T29]  asm_exc_page_fault+0x27/0x30
[ 1280.308724][   T29] RIP: 0033:0x7f0e3226ea27
[ 1280.313276][   T29] RSP: 002b:00007fffda9c3c80 EFLAGS: 00010206
[ 1280.319379][   T29] RAX: 0000001b2cf1ff90 RBX: 00007f0e330e5720 RCX: ffffffff812ea694
[ 1280.327427][   T29] RDX: 0000001b2cf1ff8c RSI: 0000000000000004 RDI: 00007f0e330e5720
[ 1280.335469][   T29] RBP: ffffffffffffff90 R08: 00007f0e325b6038 R09: 00007f0e325a2000
[ 1280.343513][   T29] R10: 00007f0e317ff008 R11: 0000000000000005 R12: 0000000000000070
[ 1280.351819][   T29] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000003b63b
[ 1280.359816][   T29]  ? xfpregs_set+0x114/0x3f0
[ 1280.364557][   T29]  </TASK>
[ 1280.491223][   T29] NMI backtrace for cpu 0
[ 1280.495599][   T29] CPU: 0 PID: 29 Comm: khungtaskd Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1280.506893][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1280.517403][   T29] Call Trace:
[ 1280.520697][   T29]  <TASK>
[ 1280.523637][   T29]  __dump_stack+0x21/0x24
[ 1280.527992][   T29]  dump_stack_lvl+0xee/0x150
[ 1280.532658][   T29]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1280.537882][   T29]  dump_stack+0x15/0x24
[ 1280.542229][   T29]  nmi_cpu_backtrace+0x2b4/0x2c0
[ 1280.547190][   T29]  ? rcu_read_unlock_special+0xab/0x480
[ 1280.552951][   T29]  ? __cfi_nmi_cpu_backtrace+0x10/0x10
[ 1280.558516][   T29]  ? __rcu_read_unlock+0xa0/0xa0
[ 1280.563476][   T29]  ? memcpy+0x56/0x70
[ 1280.567478][   T29]  ? __cfi_nmi_raise_cpu_backtrace+0x10/0x10
[ 1280.573649][   T29]  nmi_trigger_cpumask_backtrace+0x16b/0x3a0
[ 1280.579654][   T29]  arch_trigger_cpumask_backtrace+0x10/0x20
[ 1280.585655][   T29]  watchdog+0xd44/0xe80
[ 1280.589841][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1280.594544][   T29]  ? __kasan_check_read+0x11/0x20
[ 1280.599609][   T29]  ? __kthread_parkme+0x142/0x180
[ 1280.604666][   T29]  kthread+0x281/0x320
[ 1280.608753][   T29]  ? __cfi_watchdog+0x10/0x10
[ 1280.613543][   T29]  ? __cfi_kthread+0x10/0x10
[ 1280.618150][   T29]  ret_from_fork+0x1f/0x30
[ 1280.622594][   T29]  </TASK>
[ 1280.625745][   T29] Sending NMI from CPU 0 to CPUs 1:
[ 1280.630961][    C1] NMI backtrace for cpu 1
[ 1280.630973][    C1] CPU: 1 PID: 18410 Comm: syz.2.6253 Tainted: G        W          6.1.134-syzkaller-00014-g3cd01bb5bd37 #0
[ 1280.630993][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1280.631004][    C1] RIP: 0010:update_stack_state+0x3d7/0x480
[ 1280.631029][    C1] Code: 8b 05 5d 6b cd 7e 49 39 45 00 74 0e 48 8b 7d d0 e8 2e fc ff ff 49 89 c6 eb 1d 4c 8b 75 d0 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 <74> 08 4c 89 f7 e8 8f 36 7f 00 4d 8b 36 48 83 c3 48 48 89 d8 48 c1
[ 1280.631045][    C1] RSP: 0018:ffffc900001b0698 EFLAGS: 00000046
[ 1280.631060][    C1] RAX: 1ffff92000194f6e RBX: ffffc900001b07e8 RCX: ffffc90000ca7b01
[ 1280.631074][    C1] RDX: ffffc90000ca7b68 RSI: ffffc90000ca8000 RDI: ffffc90000ca7b58
[ 1280.631088][    C1] RBP: ffffc900001b0758 R08: ffffc900001b0801 R09: ffffc900001b08a8
[ 1280.631102][    C1] R10: 000000000000000e R11: 1ffff920000360fd R12: dffffc0000000000
[ 1280.631114][    C1] R13: ffffc900001b0810 R14: ffffc90000ca7b70 R15: 1ffff92000036105
[ 1280.631128][    C1] FS:  00007f7fe62166c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1280.631145][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1280.631157][    C1] CR2: 00007f5844b71da0 CR3: 0000000124377000 CR4: 00000000003506a0
[ 1280.631178][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1280.631188][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1280.631201][    C1] Call Trace:
[ 1280.631206][    C1]  <IRQ>
[ 1280.631217][    C1]  unwind_next_frame+0x3d5/0x700
[ 1280.631237][    C1]  ? __kernel_text_address+0xd/0x30
[ 1280.631258][    C1]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[ 1280.631280][    C1]  arch_stack_walk+0x124/0x150
[ 1280.631307][    C1]  ? sysvec_irq_work+0xa1/0xc0
[ 1280.631325][    C1]  stack_trace_save+0x98/0xe0
[ 1280.631345][    C1]  ? __cfi_stack_trace_save+0x10/0x10
[ 1280.631365][    C1]  ? __stack_depot_save+0x36/0x480
[ 1280.631391][    C1]  ? memset+0x35/0x40
[ 1280.631413][    C1]  kasan_set_track+0x4b/0x70
[ 1280.631428][    C1]  ? kasan_set_track+0x4b/0x70
[ 1280.631443][    C1]  ? kasan_save_alloc_info+0x25/0x30
[ 1280.631464][    C1]  ? __kasan_slab_alloc+0x72/0x80
[ 1280.631482][    C1]  ? slab_post_alloc_hook+0x4f/0x2d0
[ 1280.631501][    C1]  ? kmem_cache_alloc+0x16e/0x330
[ 1280.631519][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1280.631542][    C1]  ? __send_signal_locked+0x19d/0xb70
[ 1280.631562][    C1]  ? send_signal_locked+0x422/0x580
[ 1280.631581][    C1]  ? do_send_sig_info+0xd6/0x210
[ 1280.631607][    C1]  ? group_send_sig_info+0x118/0x2b0
[ 1280.631627][    C1]  ? do_bpf_send_signal+0x82/0x150
[ 1280.631652][    C1]  ? irq_work_run_list+0x18b/0x2b0
[ 1280.631670][    C1]  ? irq_work_run+0x6a/0xf0
[ 1280.631688][    C1]  ? __sysvec_irq_work+0x75/0x1c0
[ 1280.631712][    C1]  ? sysvec_irq_work+0xa1/0xc0
[ 1280.631736][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1280.631759][    C1]  kasan_save_alloc_info+0x25/0x30
[ 1280.631781][    C1]  __kasan_slab_alloc+0x72/0x80
[ 1280.631798][    C1]  slab_post_alloc_hook+0x4f/0x2d0
[ 1280.631817][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1280.631841][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1280.631864][    C1]  kmem_cache_alloc+0x16e/0x330
[ 1280.631882][    C1]  ? __sigqueue_alloc+0x13f/0x210
[ 1280.631905][    C1]  __sigqueue_alloc+0x13f/0x210
[ 1280.631928][    C1]  __send_signal_locked+0x19d/0xb70
[ 1280.631948][    C1]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1280.631973][    C1]  send_signal_locked+0x422/0x580
[ 1280.631994][    C1]  do_send_sig_info+0xd6/0x210
[ 1280.632015][    C1]  group_send_sig_info+0x118/0x2b0
[ 1280.632037][    C1]  ? __cfi_group_send_sig_info+0x10/0x10
[ 1280.632060][    C1]  do_bpf_send_signal+0x82/0x150
[ 1280.632085][    C1]  irq_work_run_list+0x18b/0x2b0
[ 1280.632105][    C1]  ? irq_work_run+0xf0/0xf0
[ 1280.632125][    C1]  irq_work_run+0x6a/0xf0
[ 1280.632143][    C1]  __sysvec_irq_work+0x75/0x1c0
[ 1280.632167][    C1]  sysvec_irq_work+0xa1/0xc0
[ 1280.632182][    C1]  </IRQ>
[ 1280.632187][    C1]  <TASK>
[ 1280.632193][    C1]  asm_sysvec_irq_work+0x1b/0x20
[ 1280.632208][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[ 1280.632233][    C1] Code: 74 05 83 ff 30 75 12 5d c3 81 ff d0 00 00 00 74 f6 81 ff e0 00 00 00 74 ee c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 eb d9 89 f6 31 d2 e8 4a 6a 56 01 5d c3 0f 1f 84 00 00 00 00
[ 1280.632247][    C1] RSP: 0018:ffffc90000ca7c20 EFLAGS: 00000246
[ 1280.632261][    C1] RAX: 00000000000000f6 RBX: 00000000000000f6 RCX: 000000000000083f
[ 1280.632271][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[ 1280.632282][    C1] RBP: ffffc90000ca7c20 R08: dffffc0000000000 R09: fffff52000194f81
[ 1280.632295][    C1] R10: 0000000000000000 R11: ffffffff813412a0 R12: 0000000000000000
[ 1280.632307][    C1] R13: dffffc0000000001 R14: ffffffff86487b50 R15: dffffc0000000000
[ 1280.632321][    C1]  ? __cfi_native_apic_msr_write+0x10/0x10
[ 1280.632348][    C1]  x2apic_send_IPI_self+0x6f/0x80
[ 1280.632370][    C1]  arch_irq_work_raise+0x98/0xf0
[ 1280.632394][    C1]  __irq_work_queue_local+0x115/0x190
[ 1280.632413][    C1]  irq_work_queue+0x9e/0x150
[ 1280.632432][    C1]  bpf_send_signal_common+0x2b2/0x420
[ 1280.632456][    C1]  ? trace_raw_output_bpf_trace_printk+0xd0/0xd0
[ 1280.632483][    C1]  bpf_send_signal+0x19/0x20
[ 1280.632500][    C1]  bpf_prog_7ba5217f62dcd359+0x38/0x3c
[ 1280.632517][    C1]  bpf_trace_run2+0xff/0x250
[ 1280.632539][    C1]  ? __cfi_bpf_trace_run2+0x10/0x10
[ 1280.632562][    C1]  __bpf_trace_sys_enter+0x62/0x70
[ 1280.632579][    C1]  trace_sys_enter+0x3d/0x50
[ 1280.632600][    C1]  syscall_trace_enter+0xf3/0x150
[ 1280.632617][    C1]  syscall_enter_from_user_mode+0x1f/0x30
[ 1280.632635][    C1]  do_syscall_64+0x24/0xa0
[ 1280.632657][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1280.632672][    C1]  ? clear_bhb_loop+0x15/0x70
[ 1280.632688][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1280.632712][    C1] RIP: 0033:0x7f7fe532ab39
[ 1280.632725][    C1] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[ 1280.632739][    C1] RSP: 002b:00007f7fe6215b40 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[ 1280.632755][    C1] RAX: ffffffffffffffda RBX: 00007f7fe55b5fa8 RCX: 00007f7fe532ab39
[ 1280.632768][    C1] RDX: 00007f7fe6215b40 RSI: 00007f7fe6215c70 RDI: 0000000000000011
[ 1280.632780][    C1] RBP: 00007f7fe55b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1280.632791][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7fe55b5fac
[ 1280.632801][    C1] R13: 0000000000000000 R14: 00007fff5af3c140 R15: 00007fff5af3c228
[ 1280.632818][    C1]  </TASK>