last executing test programs:

45.107010411s ago: executing program 3:
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x200080, 0x0)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0x17, &(0x7f0000000380)={&(0x7f0000001000)={[{&(0x7f00000001c0)="a2edf0aa36551b563bf575f8748e5fcad086c5097d58d8f031ce62da64dd65b7dccf0a772969486bf66ff0ae423feaf3dd53f793a76ae97804fd3fa9c4bdcca668bdf459ca36e30cf4204c2af5b6f6ec5c60119563d6479d5f384f2d7cd52045a7af54b510e66c863848350ced37e7abb8fe14c35bf6a662a1aceab67fd142673e7d2dd254c86732c0393455dde943651bcc241e86b95b7b7c5407aa96b83ea9cd7e6041949d8eebf58633fd95f04642b4ec64a743c8e1ef0cd6ed03d244b01267b8eae9fa472b07cb9203c997539ce1f3eac78db2132a5dc8abbd07a8149ab2ec180b8940406b6689b9b35cdcf4", 0xee}]}, 0x1}, 0x1)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a"], 0x1, 0x14fe, &(0x7f0000002ac0)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
pwrite64(r1, 0x0, 0x0, 0x8000000)
r2 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x18d042, 0x0)
write$FUSE_DIRENTPLUS(r2, 0x0, 0x79000)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ftruncate(r1, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000080)=@v1={0x2, @adiantum, 0x6, @auto="0b319a38ac61c2d8"})
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000003c0)={0x0, 0x10000})
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x82, &(0x7f0000000240)={[{@shortname_winnt}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@rodir}, {@numtail}, {@numtail}, {@shortname_mixed}, {@fat=@flush}, {@shortname_win95}, {@utf8no}, {@rodir}, {@utf8no}]}, 0x26, 0x358, &(0x7f0000000800)="$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")
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='cpuset.memory_pressure\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r3, &(0x7f00000021c0)={0x2020}, 0x2020)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000e40)={0x30, 0x5, 0x0, {0x0, 0x0, 0x0, 0x5}}, 0x30)

42.95618188s ago: executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, 0x0, 0x25, 0x0, @void}, 0x10)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
r2 = socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000380)=@abs={0x0, 0x0, 0x100000}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1=0xe0000010}}, 0x1c, 0x0}}], 0x6c00, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$unix(r5, &(0x7f0000000940)={&(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000900)=[{&(0x7f0000000400)="9839f5fe039f63eaaa571c024be2a5b606281c54de843e72e28c0e397c226bf1f011d0b4a4608f5bccd16570b90f10c78710717579bb7c60e89ac6c446f7b492075c230b022a3fcad0796cb5bbfe51df1d815a4dfe552c9b8b712f2cefb344afc1146bf8602cfd806e102e0d40ed7b8eac717fb4939fd755d5284f85421271746119e3a23ae2359a8e31352418678bf7dcb33d546e0aec0585841353f08e313c6283b75cf675fd4cc5f43bd7a9efd55dec3b39f6713e010b679729a5c154c3872759a577eea6e9ca6c2cdc45662fe067e0144459f2a8909fc19d11baccc303a083fea6b4ace7a6168c8f0d924476d4049d3bb35bdd", 0xf5}, {0x0}, {&(0x7f00000001c0)="f3a32617e421ab00bad86c0e768581b4f7ea8a2d172921749a401839964f8f9d41851d7e7217d5", 0x27}], 0x3, 0x0, 0x0, 0x40080}, 0x20048000)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x318, 0x0, 0x25, 0x148, 0x138, 0x60, 0x280, 0x2a8, 0x2a8, 0x280, 0x2a8, 0x3, 0x0, {[{{@ip={@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'nr0\x00', 'veth1_to_batadv\x00'}, 0x0, 0xf0, 0x138, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff}}}, @common=@unspec=@cgroup0={{0x28}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x378)
r8 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r8, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r8, &(0x7f0000000480), 0x2e9, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r8, 0x29, 0x3b, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)

39.383002586s ago: executing program 3:
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040), 0x4)
dup3(r3, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r5, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000001780))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
r8 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000030020f003176c40000000000109022472510000000009040000120701030009050102000000000009058202"], 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_usb_disconnect(r8)
sendmsg$tipc(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000440)="fb6bba8825fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4e49bcb25b1811d40a203bf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91091c2796", 0x3d}], 0x1}, 0x0)

38.285930465s ago: executing program 1:
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_CONTROL(r1, 0x10, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)

37.868449015s ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x204410, &(0x7f0000000740), 0xfe, 0x4a1, &(0x7f00000001c0)="$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")
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64], 0x1, 0x375, &(0x7f0000000880)="$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")
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setrlimit(0x4, &(0x7f00000006c0)={0x9})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000003c0)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$binfmt_elf64(r0, &(0x7f0000000480)=ANY=[], 0xfd14)

37.305225426s ago: executing program 0:
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSCTTY(r0, 0x540e, 0x0)

36.790942533s ago: executing program 0:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x2, 0x7bc, &(0x7f0000000a80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000049500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
syz_genetlink_get_family_id$tipc(&(0x7f00000004c0), 0xffffffffffffffff)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$netlink(r5, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB], 0x10}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x0, 0x8, 0x0, 0x0, 0x1}, 0x48)
r6 = socket$inet(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_msfilter(r6, 0x0, 0x29, 0x0, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xd, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x2}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {0x4, 0x0, 0x6}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

36.450745217s ago: executing program 4:
r0 = msgget$private(0x0, 0x0)
msgrcv(r0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000240)={0x0, 0x3938700}, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
write$binfmt_script(r1, &(0x7f0000000340), 0xffffff46)
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, 0x1c)
r5 = dup3(r4, r3, 0x0)
rt_sigreturn()
connect$inet(r5, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)

36.041904612s ago: executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x81, 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000480)="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", 0x10af6109, 0xc000, 0x0, 0xfffffcef)
recvmmsg(r0, &(0x7f0000000c80)=[{{0x0, 0x0, &(0x7f0000003140)=[{&(0x7f0000002140)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
getpeername$inet(r0, 0x0, 0x0)

34.94111763s ago: executing program 2:
mknod(&(0x7f0000000000)='./file0\x00', 0x1000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2000005)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

34.850671157s ago: executing program 0:
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file2\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="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"], 0x1, 0x1cf, &(0x7f0000000780)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x2fe, 0x0, 0x700, 0x0, 0x0})
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_LIST_RULES(r3, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x3f5, 0x2, 0x70bd2c, 0x25dfdbfb, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x1}, 0x10)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendto$inet6(r1, &(0x7f00000000c0)="02", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pwritev(r5, &(0x7f00000002c0)=[{&(0x7f00000000c0)='q', 0x1}, {0x0}], 0x2, 0x0, 0x0)
socket(0xa, 0xa, 0x0)
clock_gettime(0x0, &(0x7f00000027c0))
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = dup(r7)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)

34.829766602s ago: executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@link_local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x8, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0x0, 0x8}}}}}}, 0x0)

34.771789493s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0x43400)

34.727724316s ago: executing program 4:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x0)

34.671239579s ago: executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
dup(r0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000200)={0x1, 0x0, 0x0, &(0x7f0000000140)=""/41, 0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000080))
r3 = dup(r2)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r3})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f00000003c0)={0x1})
syz_emit_ethernet(0x66, 0x0, 0x0)

34.584620854s ago: executing program 3:
prlimit64(0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000001d40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001c40)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_police={0x6c, 0x2, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x1}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf0}}, 0x0)

34.489640484s ago: executing program 2:
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11091, &(0x7f0000000440)={[{@grpquota}, {@grpid}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@data_journal}, {@nombcache}]}, 0x8, 0x5fa, &(0x7f00000004c0)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_emit_ethernet(0x7e, &(0x7f00000004c0)={@local, @empty, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ea3827", 0x44, 0x2f, 0x0, @loopback, @dev}}}}, 0x0)
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004c8]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000600))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

33.958726051s ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
utime(0x0, 0x0)

33.846858787s ago: executing program 0:
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000380)={0x0, <r0=>0x0, <r1=>0x0}, &(0x7f0000000480)=0xc)
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000006c0)={[{@check_strict}, {@overriderock}, {@cruft}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@check_relaxed}, {@nojoliet}, {@check_relaxed}, {@nojoliet}, {@map_off}, {@overriderock}, {@gid={'gid', 0x3d, r1}}, {@mode={'mode', 0x3d, 0xfe8}}, {@uid={'uid', 0x3d, r0}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}]}, 0x3d, 0x563, &(0x7f0000001240)="$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")

33.807325703s ago: executing program 2:
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(r0, 0x20000005)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x9b4c, 0x0}}], 0x500, 0x0)

33.745727875s ago: executing program 4:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x8, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="850000006100000054000000000000009500000000000000b4a8b1541208000000f46e463f1e15ba36eca61203de54cf77c9062430bc020029aff136b31fa7e358fd"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x2000000, 0xe40, 0x60ff, &(0x7f00000001c0)="5cdd3086ddffff6633c9bbac88a8861000dffd00139fb7a884bdfc14f48788a8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x0, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x0, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "09007a15"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
r4 = syz_open_dev$vcsn(&(0x7f0000000280), 0x7, 0x101000)
setsockopt$inet_tcp_int(r4, 0x6, 0x0, &(0x7f00000000c0)=0x20001, 0x4)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = fcntl$dupfd(r2, 0x0, r3)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000100)={@in={{0x2, 0x0, @private}}, 0x0, 0x0, 0x11, 0x0, "3c982b2bf01cf3cba642d926a9b478c7242d59b62119a4bb9c8fc8ab386ef7c15e29bdd5c551445dd5a59b3d8ce81fc117f007a585e6f6a140426acae47f8e35d4a94ca47759f310808440717dad795d"}, 0xd8)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000600)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x0, 0x35, 0x0, "679f672c00b69e65b0934066fc7c3406caf2c09e33bd50116312e2b00fee650af69b2150ccaa762a3db7ad752fe616e085e991c0436e7e7111238865d27b4e82dcc94700ddd1878b088736009d15f1fa"}, 0xd8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@user_xattr}, {@nombcache}, {@noblock_validity}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@debug}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000000780)=ANY=[], 0xfeeb, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
unlinkat(r6, &(0x7f0000000000)='./file0\x00', 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='thermal_power_devfreq_limit\x00', r8}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{r7}, &(0x7f00000005c0), &(0x7f0000000600)='%pi6   \x00'}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0xfffd}}}}]}}]}}, 0x0)
read$hidraw(r3, &(0x7f00000000c0)=""/34, 0x22)
syz_usb_ep_write(r1, 0x81, 0x1, &(0x7f0000000000)='B')

33.728371816s ago: executing program 1:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x2, 0x7bc, &(0x7f0000000a80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000049500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
syz_genetlink_get_family_id$tipc(&(0x7f00000004c0), 0xffffffffffffffff)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$netlink(r5, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB], 0x10}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x0, 0x8, 0x0, 0x0, 0x1}, 0x48)
r6 = socket$inet(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_msfilter(r6, 0x0, 0x29, 0x0, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xd, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x2}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {0x4, 0x0, 0x6}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

33.55910355s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="05060000db3c000000001f000000080001"], 0x1c}}, 0x0)

33.503093971s ago: executing program 2:
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040), 0x4)
dup3(r3, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r5, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000001780))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
r8 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000030020f003176c40000000000109022472510000000009040000120701030009050102000000000009058202"], 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_usb_disconnect(r8)
sendmsg$tipc(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000440)="fb6bba8825fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4e49bcb25b1811d40a203bf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91091c2796", 0x3d}], 0x1}, 0x0)

30.052244202s ago: executing program 4:
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="05060000db3c000000001f000000080001"], 0x1c}}, 0x0)

4.533676183s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYBLOB="1000000000000000b7040000080000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x8, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000008510000003000000180000000000000000000000000000009500000000000000ddaa000000"], 0x0}, 0x90)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wg2\x00'})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='./bus\x00')
mkdir(0x0, 0x0)
rename(0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
readlinkat(r0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000680)=""/206, 0xce)

3.670867264s ago: executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
dup(r0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000200)={0x1, 0x0, 0x0, &(0x7f0000000140)=""/41, 0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000080))
r3 = dup(r2)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r3})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f00000003c0)={0x1})
syz_emit_ethernet(0x66, 0x0, 0x0)

3.521512474s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
getdents(r4, &(0x7f0000001080)=""/4096, 0x1000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x10001, 0x8, 0x1}, 0x48)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x5, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x1, 0x1}]}, @enum={0xc, 0x4, 0x0, 0x6, 0x4, [{0xd, 0x800}, {0x6, 0x4}, {0x9, 0xba6d}, {0x5, 0x7}]}]}, {0x0, [0x30, 0x0, 0x2e]}}, &(0x7f00000002c0)=""/224, 0x5d, 0xe0, 0x1}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(0x0, 0x80080)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xb, 0x4, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x11, 0x63, 0xa, 0xff04}, [@call={0x44}, @exit, @map_fd, @jmp]}, &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

3.470149873s ago: executing program 2:
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file2\x00', 0x800, &(0x7f0000004140)=ANY=[@ANYBLOB="00a3d9feb86e02e3b0bd5e574a822aa023060829d9f570706daaf7e64385f4c757c8c1509cbd06003c6d03000000ffdde116534a3e539068b679d93c646500b71c53966a788a93af70a9e8378a4dff15e4a14b5a4b6c14d2feff8ec15164ffffba586557115ae1b2470a06d956cae4ea3b76e646ef7b00f8bcbad4030fa2f87bae1c91858fdee78fd19866212b8aedf818fea039932b8d5f454cf4fa9f9c1c0bd1c3f8c02f1bc702d7359eb8be446f88b77ce92c3d943828ece9eef54e10c2b4d66fb887ed9e56e2fbf982ea3443c9c30d40c4dd067682187e224173e49a3d0700efeb8fc6570ce5feb7d4c9ab5c4cc09ba9ae6276845ff55c7fdaab25776edddef50000000064dadb122182564d38cae5597ef4d5a2bf63415fdfe0867dee339da4a49e99fcf977e3be588fb6a8e4ee0d5395982f374f3802e1cf12c5849a07af1ad1e9f1f52725eab00af283cbfbd18fdc8e1951ba26508eb3781117b3a5263e3671d0b9e5aedd4e9261654e7cd5213600a77f55f0ab706a787ac204fff298dc72be1e80389d8f55f42c3b92acaee0df6b6bea8459d98d7bdc8e99b33022a2474d5527b68ba085ce52bf894f86c0f0f2f76c1ffe1e7ecbf2f1d7f8de553ebd38a1ad1f67e43da56f853f594b16be3822b97389b248dd3079e41ce185206267e9f174fd6ba01f9cc52c465608000048d0ad524a70f1688d1f30ca729963f14d140bf06f606065187fef9b44e884699a5bda981b07000000000000009a74a84388dc82ed1ba29abafd6b9f6e11ea249e4870494ede40f7bc48dc2a14669c1b94b32209f16b4246a6f14f44e22c4b7d5422322a2f8d967532b133014da9c571ffc2664e0831391e0242bcacaa0c00358bdefaf2bc51dcf4a7673703b89cf213c3365c64493f3ed9866c4994c119363dec364813d2a1f3732323d6fde44b8178d35f936200a96118889bc34d1800779c82b877ba24d7aadec4abe72a3b5e9280cc12d3f3b60fa0163fc3ccdce18ced9a8ccf33122055f8870f804fb91d9f91ba8db505d020c01f532c9307117f34693dd535e1fc52ccc94ba178aaf524117c214fa858d6da2f91c14ab5ea3080500366075694cf317cdad3e61d17bfa4490124e3616a0d581cf05cf2cecc0a9b83fe000000000000000000000000ed9111e3396fea123d15ff825b66e25945cb3fd6d31773af0634a155fe85159a643b064fba1135ff23d713431f3cf8587d8778f7eb1a02d155fb6185d105d26844d111c85fd6321fc4a9a368c04cd3f29a8badfb8a0152e7bb8b10a8e680292eb9ab00d3efd86111ca430dcfbf1910b235e636e99b615163989a3779e520b59d2e7db309a3710d5b11ae9c21ad7e4c7d000000000000000000000024aafb0479e8ea1ab8bfd97c2186a3a784ce996d63c42c31e3a211c284f7c0187429d7f01748d6f04519921b9d81a510de2ff2f21e7423328036d45adf7df57a0572a6dfba1e0e7dbed9aeebb7cd806f3685459be46dc69d314fd3ea633b1539f466c8d32a2e9392d1620656958900ffbf0c3f5139c03580f83516f02c1adbb6e16040f273456e982741fe40b3f6a3e9c8237f9da13572c209968b40dd6bf4fbb056d303698c74cdbd4c38c54e945e8e93ff946aa2a1fc940646fc7dbcb3455221cf6192c986eb7a087af45e68868f8495d2831c34ae5a824b2a"], 0x1, 0x1cf, &(0x7f0000000780)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x2fe, 0x0, 0x700, 0x0, 0x0})
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_LIST_RULES(r3, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x3f5, 0x2, 0x70bd2c, 0x25dfdbfb, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x1}, 0x10)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendto$inet6(r1, &(0x7f00000000c0)="02", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pwritev(r5, &(0x7f00000002c0)=[{&(0x7f00000000c0)='q', 0x1}, {0x0}], 0x2, 0x0, 0x0)
socket(0xa, 0xa, 0x0)
clock_gettime(0x0, &(0x7f00000027c0))
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = dup(r7)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)

0s ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000700)=ANY=[@ANYBLOB="3801"], 0x138)
write$FUSE_CREATE_OPEN(r3, &(0x7f00000004c0)={0xa0}, 0xa0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
setxattr$incfs_id(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240), 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

syz-executor.4" laddr=::1 lport=1 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  711.716819][   T29] audit: type=1400 audit(1718759318.472:481): avc:  denied  { write } for  pid=9728 comm="syz-executor.4" laddr=::1 lport=1 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  712.004514][ T9738] loop2: detected capacity change from 0 to 64
[  712.019994][ T9738] hfs: get root inode failed
[  714.405383][ T9748] 9pnet_fd: Insufficient options for proto=fd
[  714.415858][ T9748] vivid-004: disconnect
[  714.651122][ T9740] vivid-004: reconnect
[  715.230979][ T8434] vhci_hcd: vhci_device speed not set
[  715.301368][ T5161] vhci_hcd: vhci_device speed not set
[  715.348646][ T9755] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  715.519006][   T29] audit: type=1326 audit(1718759322.962:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9757 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  717.134838][ T9768] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  717.141420][ T9768] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  717.157628][ T9768] vhci_hcd vhci_hcd.0: Device attached
[  717.305250][ T9754] syzkaller0: entered promiscuous mode
[  717.311405][ T9754] syzkaller0: entered allmulticast mode
[  717.323312][ T9764] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  717.438407][ T8434] usb 15-1: new low-speed USB device number 6 using vhci_hcd
[  717.569960][ T9769] vhci_hcd: connection reset by peer
[  717.595538][   T61] vhci_hcd: stop threads
[  717.602528][   T61] vhci_hcd: release socket
[  717.608606][   T61] vhci_hcd: disconnect device
[  717.690135][ T9775] loop0: detected capacity change from 0 to 2048
[  717.712894][ T9775] udf: Unknown parameter 'dont_hash'
[  717.968543][ T9778] loop0: detected capacity change from 0 to 256
[  717.996386][ T9778] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  718.057050][   T29] audit: type=1800 audit(1718759325.502:483): pid=9778 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="loop0" ino=1048668 res=0 errno=0
[  721.089346][ T9784] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  721.869063][ T9799] 9pnet_fd: Insufficient options for proto=fd
[  721.882126][ T9799] vivid-004: disconnect
[  722.480447][ T9794] vivid-004: reconnect
[  722.778848][ T8434] vhci_hcd: vhci_device speed not set
[  722.877243][ T9792] loop0: detected capacity change from 0 to 4096
[  722.940130][ T9792] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  723.404415][ T9792] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  724.369225][ T5113] Bluetooth: hci5: sending frame failed (-49)
[  724.379316][ T5122] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  724.475096][ T9813] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  724.481668][ T9813] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  724.493161][ T9813] vhci_hcd vhci_hcd.0: Device attached
[  724.587408][ T9818] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  725.616621][ T9815] vhci_hcd: connection closed
[  725.629119][ T1098] vhci_hcd: stop threads
[  725.651071][ T5161] usb 11-1: new low-speed USB device number 3 using vhci_hcd
[  725.676419][ T9823] loop2: detected capacity change from 0 to 64
[  725.701165][ T1098] vhci_hcd: release socket
[  725.705831][ T9823] hfs: get root inode failed
[  725.722045][ T1098] vhci_hcd: disconnect device
[  727.096814][ T9831] loop0: detected capacity change from 0 to 2048
[  727.122160][ T9831] udf: Unknown parameter 'dont_hash'
[  727.326309][ T9835] loop0: detected capacity change from 0 to 256
[  727.338966][   T29] audit: type=1326 audit(1718759334.762:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9836 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  727.369641][ T9829] syzkaller0: entered promiscuous mode
[  727.382700][ T9829] syzkaller0: entered allmulticast mode
[  727.410556][ T9835] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  727.445363][ T9838] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  727.496563][   T29] audit: type=1800 audit(1718759334.942:485): pid=9835 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="loop0" ino=1048670 res=0 errno=0
[  727.518865][    C1] vkms_vblank_simulate: vblank timer overrun
[  731.154744][ T5161] vhci_hcd: vhci_device speed not set
[  731.709477][ T9866] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  732.686716][ T9871] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  733.178030][ T9875] netlink: 'syz-executor.0': attribute type 16 has an invalid length.
[  733.186714][ T9875] netlink: 64138 bytes leftover after parsing attributes in process `syz-executor.0'.
[  733.226383][ T9875] loop0: detected capacity change from 0 to 16
[  733.439027][ T9875] loop0: detected capacity change from 0 to 2048
[  733.446820][   T29] audit: type=1400 audit(1718759340.882:486): avc:  denied  { remount } for  pid=9874 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  733.594706][   T29] audit: type=1400 audit(1718759341.032:487): avc:  denied  { map } for  pid=9874 comm="syz-executor.0" path="/dev/video0" dev="devtmpfs" ino=848 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  735.676467][ T9882] loop2: detected capacity change from 0 to 2048
[  735.709703][ T9882] udf: Unknown parameter 'dont_hash'
[  736.167084][ T9890] loop2: detected capacity change from 0 to 256
[  736.699939][ T9895] 9pnet_fd: Insufficient options for proto=fd
[  736.718890][ T9895] vivid-002: disconnect
[  737.385751][ T9892] vivid-002: reconnect
[  737.670247][ T9890] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  737.693967][ T9884] loop1: detected capacity change from 0 to 2048
[  737.728302][   T29] audit: type=1800 audit(1718759345.172:488): pid=9890 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="loop2" ino=1048672 res=0 errno=0
[  737.730286][ T9897] loop3: detected capacity change from 0 to 256
[  737.798938][ T3304] Bluetooth: hci5: Frame reassembly failed (-84)
[  737.829563][ T9884] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  737.856350][ T3304] Bluetooth: hci5: Frame reassembly failed (-84)
[  737.933633][ T9884] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  737.966010][ T9897] usb usb8: usbfs: process 9897 (syz-executor.3) did not claim interface 0 before use
[  738.330576][ T9899] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  738.407715][ T9902] loop0: detected capacity change from 0 to 2048
[  738.493699][ T9905] loop2: detected capacity change from 0 to 64
[  738.505638][ T9905] hfs: invalid btree extent records (0 size)
[  738.511912][ T9905] hfs: unable to open catalog tree
[  739.841118][ T5113] Bluetooth: hci5: command 0x1003 tx timeout
[  740.762063][ T5122] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  741.106433][ T9902] netlink: 'syz-executor.0': attribute type 11 has an invalid length.
[  741.122925][ T9902] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  741.720145][ T9914] overlayfs: missing 'lowerdir'
[  742.856919][ T9919] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  743.058368][   T29] audit: type=1326 audit(1718759350.482:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9924 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  743.298089][ T9923] syzkaller0: entered promiscuous mode
[  743.370043][ T9923] syzkaller0: entered allmulticast mode
[  743.835903][ T9935] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  744.897804][ T9947] loop2: detected capacity change from 0 to 2048
[  744.919778][ T9947] udf: Unknown parameter 'dont_hash'
[  745.137511][ T9948] loop2: detected capacity change from 0 to 256
[  745.240117][ T9948] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  745.328182][   T29] audit: type=1800 audit(1718759352.772:490): pid=9948 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="loop2" ino=1048675 res=0 errno=0
[  746.019186][ T9951] loop3: detected capacity change from 0 to 256
[  746.111223][ T9951] usb usb8: usbfs: process 9951 (syz-executor.3) did not claim interface 0 before use
[  746.427572][ T9955] loop3: detected capacity change from 0 to 64
[  746.487112][ T9955] hfs: invalid btree extent records (0 size)
[  746.493833][ T9955] hfs: unable to open catalog tree
[  747.487419][ T9957] loop3: detected capacity change from 0 to 2048
[  747.504325][ T9957] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  747.518307][ T9957] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  749.489314][ T9959] dummy0: entered promiscuous mode
[  749.539288][ T9961] dummy0: left promiscuous mode
[  749.633469][ T9965] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  750.201841][ T9974] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  750.211256][ T9974] bridge_slave_1: left allmulticast mode
[  750.216911][ T9974] bridge_slave_1: left promiscuous mode
[  750.222812][ T9974] bridge0: port 2(bridge_slave_1) entered disabled state
[  750.242224][ T9973] loop2: detected capacity change from 0 to 8
[  750.292735][ T9974] bridge_slave_0: left allmulticast mode
[  750.301057][ T9974] bridge_slave_0: left promiscuous mode
[  750.306907][ T9974] bridge0: port 1(bridge_slave_0) entered disabled state
[  750.459510][ T9973] SQUASHFS error: Failed to read block 0x4e8: -5
[  750.493239][   T29] audit: type=1800 audit(1718759357.942:491): pid=9973 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz-executor.2" name="file1" dev="loop2" ino=5 res=0 errno=0
[  751.412534][ T9991] loop0: detected capacity change from 0 to 256
[  751.647643][ T9995] loop1: detected capacity change from 0 to 64
[  751.683386][ T9995] hfs: invalid btree extent records (0 size)
[  751.689997][ T9995] hfs: unable to open catalog tree
[  751.800048][ T9991] usb usb8: usbfs: process 9991 (syz-executor.0) did not claim interface 0 before use
[  752.722215][   T29] audit: type=1326 audit(1718759360.172:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6ee87cf29 code=0x0
[  752.872356][T10001] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  752.891411][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  752.898594][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  753.258968][T10005] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  753.425190][T10011] loop2: detected capacity change from 0 to 2048
[  753.461530][T10011] udf: Unknown parameter 'dont_hash'
[  753.641529][T10012] syzkaller0: entered promiscuous mode
[  753.681270][T10012] syzkaller0: entered allmulticast mode
[  753.712977][T10016] loop2: detected capacity change from 0 to 256
[  753.801738][T10016] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  753.960027][   T29] audit: type=1800 audit(1718759361.402:493): pid=10017 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="loop2" ino=1048678 res=0 errno=0
[  754.128265][T10019] loop1: detected capacity change from 0 to 64
[  754.129325][T10021] dummy0: entered promiscuous mode
[  754.539439][T10028] loop2: detected capacity change from 0 to 8
[  754.589933][T10028] SQUASHFS error: Failed to read block 0x62: -5
[  754.606573][T10028] squashfs image failed sanity check
[  755.182203][ T5113] Bluetooth: hci0: command 0x0406 tx timeout
[  755.430745][T10033] can: request_module (can-proto-4) failed.
[  755.738242][T10037] loop3: detected capacity change from 0 to 4096
[  757.259306][   T29] audit: type=1400 audit(1718759364.702:494): avc:  denied  { watch watch_reads } for  pid=10036 comm="syz-executor.3" path=2F726F6F742F73797A6B616C6C65722D74657374646972313130343835363337362F73797A6B616C6C65722E374F326831582F39342F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop3" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  757.685992][T10041] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  757.802027][T10042] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  758.554194][T10044] loop1: detected capacity change from 0 to 256
[  758.615927][T10044] usb usb8: usbfs: process 10044 (syz-executor.1) did not claim interface 0 before use
[  758.818881][T10048] loop3: detected capacity change from 0 to 64
[  758.852742][T10048] hfs: invalid btree extent records (0 size)
[  758.859359][T10048] hfs: unable to open catalog tree
[  759.289835][T10050] loop1: detected capacity change from 0 to 8
[  759.519859][T10050] SQUASHFS error: Failed to read block 0x4e8: -5
[  759.550382][   T29] audit: type=1800 audit(1718759366.992:495): pid=10050 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="loop1" ino=5 res=0 errno=0
[  759.989764][T10051] SQUASHFS error: Failed to read block 0xed04f1: -5
[  759.998159][T10051] SQUASHFS error: Failed to read block 0x4e8: -5
[  760.005201][T10051] SQUASHFS error: Failed to read block 0x4e8: -5
[  760.012986][T10051] SQUASHFS error: Failed to read block 0x4e8: -5
[  760.057669][   T29] audit: type=1400 audit(1718759367.432:496): avc:  denied  { map } for  pid=10049 comm="syz-executor.1" path="/root/syzkaller-testdir865387790/syzkaller.cMcGfF/22/file1/file1" dev="loop1" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  760.668698][   T29] audit: type=1326 audit(1718759368.112:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6ee87cf29 code=0x0
[  760.888373][T10053] loop3: detected capacity change from 0 to 32768
[  761.139262][T10053] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  761.499549][T10053] XFS (loop3): Ending clean mount
[  761.619496][T10022] dummy0: left promiscuous mode
[  761.628311][T10031] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  761.637993][T10031] bridge_slave_1: left allmulticast mode
[  761.643946][T10031] bridge_slave_1: left promiscuous mode
[  761.649794][T10031] bridge0: port 2(bridge_slave_1) entered disabled state
[  761.675477][T10031] bridge_slave_0: left allmulticast mode
[  761.681981][T10031] bridge_slave_0: left promiscuous mode
[  761.687917][T10031] bridge0: port 1(bridge_slave_0) entered disabled state
[  761.755262][   T29] audit: type=1400 audit(1718759369.202:498): avc:  denied  { ioctl } for  pid=10052 comm="syz-executor.3" path="socket:[26971]" dev="sockfs" ino=26971 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  762.035268][ T8482] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  762.093507][   T29] audit: type=1400 audit(1718759369.532:499): avc:  denied  { ioctl } for  pid=10074 comm="syz-executor.2" path="socket:[26985]" dev="sockfs" ino=26985 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  762.356343][   T29] audit: type=1800 audit(1718759369.792:500): pid=10083 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1942 res=0 errno=0
[  763.187004][T10087] loop1: detected capacity change from 0 to 40427
[  763.327435][T10087] F2FS-fs (loop1): Found nat_bits in checkpoint
[  763.440995][T10087] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  763.541999][T10095] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  763.860967][T10101] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  764.143747][T10107] usb usb8: usbfs: process 10107 (syz-executor.2) did not claim interface 0 before use
[  764.168943][T10103] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  764.319336][T10112] loop3: detected capacity change from 0 to 64
[  765.280981][ T5113] Bluetooth: hci3: command 0x0406 tx timeout
[  766.754211][T10112] hfs: invalid btree extent records (0 size)
[  766.760519][T10112] hfs: unable to open catalog tree
[  767.037474][T10114] loop2: detected capacity change from 0 to 1764
[  767.101756][T10114] iso9660: Unknown parameter ''
[  768.980525][T10116] syzkaller0: entered promiscuous mode
[  770.036169][T10128] loop3: detected capacity change from 0 to 32768
[  770.120525][T10116] syzkaller0: entered allmulticast mode
[  770.149689][T10128] workqueue: Failed to create a rescuer kthread for wq "bcachefs": -EINTR
[  770.150284][T10128] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): shutdown complete
[  770.583643][T10131] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  770.880250][T10131] loop0: detected capacity change from 0 to 1024
[  771.115322][T10135] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  771.246857][T10135] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  771.396226][T10135] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  771.571744][T10139] loop1: detected capacity change from 0 to 8
[  771.597670][   T29] audit: type=1326 audit(1718759379.042:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10137 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  771.633297][T10139] SQUASHFS error: Failed to read block 0x62: -5
[  771.641598][T10139] squashfs image failed sanity check
[  772.273448][T10143] loop0: detected capacity change from 0 to 2048
[  772.294786][T10143] udf: Unknown parameter 'dont_hash'
[  772.628362][T10149] loop0: detected capacity change from 0 to 256
[  772.686817][T10151] loop2: detected capacity change from 0 to 64
[  772.716175][T10151] hfs: unable to parse mount options
[  772.751132][T10149] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  772.794664][   T29] audit: type=1800 audit(1718759380.232:502): pid=10149 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="loop0" ino=1048680 res=0 errno=0
[  772.853091][   T29] audit: type=1800 audit(1718759380.262:503): pid=10151 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1971 res=0 errno=0
[  772.931963][T10153] loop2: detected capacity change from 0 to 2048
[  773.021081][T10153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  773.047309][T10153] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.504815][   T29] audit: type=1400 audit(1718759380.952:504): avc:  denied  { getopt } for  pid=10150 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  775.628787][T10146] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  775.638385][T10146] bridge_slave_1: left allmulticast mode
[  775.644102][T10146] bridge_slave_1: left promiscuous mode
[  775.649939][T10146] bridge0: port 2(bridge_slave_1) entered disabled state
[  775.661846][T10146] bridge_slave_0: left allmulticast mode
[  775.667529][T10146] bridge_slave_0: left promiscuous mode
[  775.676413][T10146] bridge0: port 1(bridge_slave_0) entered disabled state
[  776.008052][T10162] usb usb8: usbfs: process 10162 (syz-executor.1) did not claim interface 0 before use
[  776.163269][T10169] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  776.276621][T10176] loop0: detected capacity change from 0 to 64
[  776.291687][T10176] hfs: invalid btree extent records (0 size)
[  776.298349][T10176] hfs: unable to open catalog tree
[  777.258811][T10174] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  777.316401][T10177] iommufd_mock iommufd_mock2: Adding to iommu group 2
[  777.470957][T10185] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  777.635904][T10186] loop0: detected capacity change from 0 to 1764
[  777.672430][T10186] iso9660: Unknown parameter ''
[  777.735705][T10189] loop2: detected capacity change from 0 to 64
[  777.851641][T10190] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  777.910179][T10190] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  778.033748][T10190] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  778.181492][T10198] loop3: detected capacity change from 0 to 8
[  778.226474][T10198] SQUASHFS error: Failed to read block 0x62: -5
[  778.240411][T10198] squashfs image failed sanity check
[  778.312999][T10195] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  778.913703][T10196] syzkaller0: entered promiscuous mode
[  778.941593][T10196] syzkaller0: entered allmulticast mode
[  778.949847][T10210] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  778.959407][T10210] bridge_slave_1: left allmulticast mode
[  778.967476][T10210] bridge_slave_1: left promiscuous mode
[  778.973549][T10210] bridge0: port 2(bridge_slave_1) entered disabled state
[  779.001343][T10210] bridge_slave_0: left allmulticast mode
[  779.007078][T10210] bridge_slave_0: left promiscuous mode
[  779.013130][T10210] bridge0: port 1(bridge_slave_0) entered disabled state
[  779.584715][   T29] audit: type=1326 audit(1718759387.022:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10220 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  779.740907][   T29] audit: type=1800 audit(1718759387.172:506): pid=10222 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1957 res=0 errno=0
[  779.905160][T10229] usb usb8: usbfs: process 10229 (syz-executor.1) did not claim interface 0 before use
[  780.081377][ T5158] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  780.250640][T10234] loop1: detected capacity change from 0 to 64
[  780.305786][T10234] hfs: invalid btree extent records (0 size)
[  780.312443][T10234] hfs: unable to open catalog tree
[  781.121098][ T5158] usb 1-1: Using ep0 maxpacket: 8
[  781.131740][ T5158] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  781.163153][ T5158] usb 1-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  781.199009][ T5158] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  781.226179][ T5158] usb 1-1: SerialNumber: syz
[  781.239739][ T5158] usb 1-1: config 0 descriptor??
[  781.275025][T10237] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  781.275339][ T5158] usb 1-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  781.296319][T10237] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  781.311656][ T5158] usb 1-1: No valid video chain found.
[  781.357942][T10237] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  781.526542][    T9] usb 1-1: USB disconnect, device number 10
[  782.846174][T10246] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  783.012002][T10247] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  785.630586][T10243] netlink: 'syz-executor.1': attribute type 6 has an invalid length.
[  786.246259][T10264] usb usb8: usbfs: process 10264 (syz-executor.3) did not claim interface 0 before use
[  786.334264][T10269] loop0: detected capacity change from 0 to 8
[  786.426937][T10271] loop1: detected capacity change from 0 to 64
[  786.513193][T10271] hfs: invalid btree extent records (0 size)
[  786.519378][T10271] hfs: unable to open catalog tree
[  788.549241][T10269] SQUASHFS error: Failed to read block 0x62: -5
[  788.555874][T10269] squashfs image failed sanity check
[  789.135990][T10277] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  789.145398][T10277] bridge_slave_1: left allmulticast mode
[  789.151138][T10277] bridge_slave_1: left promiscuous mode
[  789.157099][T10277] bridge0: port 2(bridge_slave_1) entered disabled state
[  789.195061][T10277] bridge_slave_0: left allmulticast mode
[  789.200956][T10277] bridge_slave_0: left promiscuous mode
[  789.209200][T10277] bridge0: port 1(bridge_slave_0) entered disabled state
[  789.461848][T10286] warning: `syz-executor.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  789.627628][   T29] audit: type=1400 audit(1718759397.072:507): avc:  denied  { connect } for  pid=10289 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  789.659864][T10288] loop0: detected capacity change from 0 to 2048
[  789.721428][   T29] audit: type=1400 audit(1718759397.072:508): avc:  denied  { bind } for  pid=10289 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  789.734389][T10288] udf: Unknown parameter 'dont_hash'
[  789.771702][   T29] audit: type=1400 audit(1718759397.102:509): avc:  denied  { write } for  pid=10289 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  789.810928][   T29] audit: type=1400 audit(1718759397.102:510): avc:  denied  { getopt } for  pid=10289 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  789.838971][T10295] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  789.876986][   T29] audit: type=1400 audit(1718759397.102:511): avc:  denied  { setopt } for  pid=10289 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  789.915822][T10295] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  789.936821][T10288] loop0: detected capacity change from 0 to 256
[  789.957413][T10288] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  790.031178][   T29] audit: type=1800 audit(1718759397.462:512): pid=10288 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="loop0" ino=1048682 res=0 errno=0
[  790.219799][   T29] audit: type=1800 audit(1718759397.662:513): pid=10304 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1952 res=0 errno=0
[  790.423508][   T29] audit: type=1326 audit(1718759397.872:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10312 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  790.579567][T10315] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  790.939757][T10307] syzkaller0: entered promiscuous mode
[  790.968115][T10307] syzkaller0: entered allmulticast mode
[  791.031176][T10320] usb usb8: usbfs: process 10320 (syz-executor.4) did not claim interface 0 before use
[  791.488659][T10326] 9pnet_fd: Insufficient options for proto=fd
[  791.500538][T10326] vivid-000: disconnect
[  791.591505][T10325] loop1: detected capacity change from 0 to 8
[  791.705967][T10325] SQUASHFS error: Failed to read block 0x62: -5
[  791.774303][T10325] squashfs image failed sanity check
[  796.215037][T10331] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  796.215957][T10321] vivid-000: reconnect
[  796.229939][T10336] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  796.873754][T10354] loop2: detected capacity change from 0 to 256
[  797.135385][T10358] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  797.230626][T10358] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  798.170695][T10360] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  798.279853][T10367] usb usb8: usbfs: process 10367 (syz-executor.3) did not claim interface 0 before use
[  798.517534][T10373] loop3: detected capacity change from 0 to 8
[  798.569509][T10374] loop2: detected capacity change from 0 to 256
[  798.590941][T10373] SQUASHFS error: Failed to read block 0x62: -5
[  798.598814][T10373] squashfs image failed sanity check
[  798.676511][T10352] loop0: detected capacity change from 0 to 32768
[  799.265148][T10376] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  799.408984][   T29] audit: type=1400 audit(1718759406.842:515): avc:  denied  { setattr } for  pid=10349 comm="syz-executor.0" name="file0" dev="loop0" ino=32 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  799.960718][T10385] 9pnet_fd: Insufficient options for proto=fd
[  799.975688][T10385] vivid-003: disconnect
[  800.561128][T10381] vivid-003: reconnect
[  800.813379][T10387] loop3: detected capacity change from 0 to 8
[  800.872397][T10387] SQUASHFS error: Failed to read block 0x62: -5
[  800.916849][T10387] squashfs image failed sanity check
[  801.032433][   T29] audit: type=1800 audit(1718759408.482:516): pid=10380 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=7 res=0 errno=0
[  801.063428][T10389] loop1: detected capacity change from 0 to 8
[  801.204618][T10389] SQUASHFS error: Failed to read block 0x4e8: -5
[  801.532337][   T29] audit: type=1800 audit(1718759408.672:517): pid=10389 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="loop1" ino=5 res=0 errno=0
[  801.690466][T10391] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  802.078591][T10399] SQUASHFS error: Failed to read block 0xed04f1: -5
[  802.089939][T10399] SQUASHFS error: Failed to read block 0x4e8: -5
[  802.096834][T10399] SQUASHFS error: Failed to read block 0x4e8: -5
[  802.103913][T10399] SQUASHFS error: Failed to read block 0x4e8: -5
[  802.597772][   T29] audit: type=1326 audit(1718759410.042:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10398 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  802.870682][T10396] syzkaller0: entered promiscuous mode
[  802.876372][T10396] syzkaller0: entered allmulticast mode
[  802.928815][T10405] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  802.988912][T10402] loop3: detected capacity change from 0 to 1024
[  803.048400][T10402] hfsplus: uid requires an argument
[  803.096246][T10402] hfsplus: unable to parse mount options
[  803.434493][T10412] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  803.441066][T10412] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  803.508317][T10412] vhci_hcd vhci_hcd.0: Device attached
[  803.631143][T10402] loop3: detected capacity change from 0 to 256
[  803.794694][ T5161] usb 11-1: new low-speed USB device number 4 using vhci_hcd
[  804.210186][T10419] loop0: detected capacity change from 0 to 32768
[  804.228275][T10414] vhci_hcd: connection reset by peer
[  804.268777][ T3882] vhci_hcd: stop threads
[  804.273434][ T3882] vhci_hcd: release socket
[  804.279600][ T3882] vhci_hcd: disconnect device
[  804.524888][T10419] loop0: detected capacity change from 0 to 1024
[  804.532063][T10419] EXT4-fs: Ignoring removed bh option
[  804.592321][T10419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  804.614635][T10419] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  805.062122][T10424] usb usb8: usbfs: process 10424 (syz-executor.0) did not claim interface 0 before use
[  805.208164][T10428] loop0: detected capacity change from 0 to 8
[  805.226405][T10428] SQUASHFS error: Failed to read block 0x62: -5
[  805.252940][T10428] squashfs image failed sanity check
[  806.657688][T10438] overlayfs: missing 'lowerdir'
[  808.984001][ T5161] vhci_hcd: vhci_device speed not set
[  809.839975][T10432] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  810.285164][T10457] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  810.555179][T10464] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  810.575449][T10464] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  810.674494][T10465] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  811.558450][T10464] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  811.829653][T10474] usb usb8: usbfs: process 10474 (syz-executor.2) did not claim interface 0 before use
[  811.858708][T10470] loop3: detected capacity change from 0 to 64
[  812.734669][T10487] loop1: detected capacity change from 0 to 512
[  812.776321][T10487] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  812.824894][T10449] loop0: detected capacity change from 0 to 32768
[  812.875676][T10487] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  812.968516][T10487] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz-executor.1: inode #15: comm syz-executor.1: iget: illegal inode #
[  813.031315][T10487] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz-executor.1: couldn't read orphan inode 15 (err -117)
[  813.050168][T10493] binder: Unknown parameter 'max	'
[  813.089863][T10487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  813.468299][T10496] loop2: detected capacity change from 0 to 128
[  814.403921][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  815.424337][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  815.707589][ T9146] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  815.999749][   T29] audit: type=1326 audit(1718759423.443:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10498 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  816.127864][T10500] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  816.838303][T10514] loop3: detected capacity change from 0 to 8
[  816.872386][T10514] SQUASHFS error: Failed to read block 0x62: -5
[  816.896643][T10514] squashfs image failed sanity check
[  817.054154][T10508] syzkaller0: entered promiscuous mode
[  817.403665][T10508] syzkaller0: entered allmulticast mode
[  817.896878][T10523] usb usb8: usbfs: process 10523 (syz-executor.4) did not claim interface 0 before use
[  818.298569][T10532] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  818.442845][T10532] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  818.640888][T10536] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  819.286354][T10545] loop2: detected capacity change from 0 to 64
[  821.631480][   T29] audit: type=1800 audit(1718759429.083:520): pid=10554 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="file1" dev="sda1" ino=1963 res=0 errno=0
[  822.927625][   T29] audit: type=1326 audit(1718759430.373:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10555 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  824.201893][T10517] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  824.605359][   T29] audit: type=1400 audit(1718759432.053:522): avc:  denied  { execute } for  pid=10559 comm="syz-executor.3" path="/root/syzkaller-testdir1104856376/syzkaller.7O2h1X/121/file0/bus" dev="hugetlbfs" ino=28762 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  824.681728][T10562] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  824.731517][T10562] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  824.848753][T10570] usb usb8: usbfs: process 10570 (syz-executor.2) did not claim interface 0 before use
[  825.100214][T10562] loop3: detected capacity change from 0 to 4096
[  825.127239][   T29] audit: type=1400 audit(1718759432.573:523): avc:  denied  { mounton } for  pid=10559 comm="syz-executor.3" path=2F726F6F742F73797A6B616C6C65722D74657374646972313130343835363337362F73797A6B616C6C65722E374F326831582F3132312F66696C65302F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="hugetlbfs" ino=28533 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  825.175122][T10562] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  825.788145][T10583] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  825.800955][T10583] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  826.098001][T10585] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  826.312682][T10589] loop0: detected capacity change from 0 to 1024
[  826.442427][   T29] audit: type=1400 audit(1718759433.873:524): avc:  denied  { unmount } for  pid=8482 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  826.510845][T10589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  826.556219][T10591] loop2: detected capacity change from 0 to 1024
[  826.865271][T10591] hfsplus: uid requires an argument
[  826.876322][T10605] loop3: detected capacity change from 0 to 512
[  827.557333][T10591] hfsplus: unable to parse mount options
[  827.578189][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  827.672972][T10605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  827.705212][T10605] ext4 filesystem being mounted at /root/syzkaller-testdir1104856376/syzkaller.7O2h1X/122/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  828.758846][T10612] syzkaller0: entered promiscuous mode
[  828.776409][T10591] loop2: detected capacity change from 0 to 256
[  828.796150][T10612] syzkaller0: entered allmulticast mode
[  829.512630][ T8482] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  829.820832][   T29] audit: type=1326 audit(1718759437.263:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  829.911183][T10636] usb usb8: usbfs: process 10636 (syz-executor.2) did not claim interface 0 before use
[  830.179046][   T29] audit: type=1400 audit(1718759437.613:526): avc:  denied  { accept } for  pid=10640 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  830.263260][T10619] loop0: detected capacity change from 0 to 32768
[  830.930300][   T29] audit: type=1800 audit(1718759438.373:527): pid=10646 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=7 res=0 errno=0
[  833.597878][T10649] loop2: detected capacity change from 0 to 64
[  833.741243][   T29] audit: type=1804 audit(1718759441.183:528): pid=10656 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3228871702/syzkaller.Pcc2Mo/321/file0" dev="sda1" ino=1957 res=1 errno=0
[  834.041962][T10654] IPVS: Scheduler module ip_vs_sip not found
[  834.234248][T10665] loop3: detected capacity change from 0 to 1047
[  834.308934][T10665] hfsplus: invalid secondary volume header
[  834.315236][T10665] hfsplus: unable to find HFS+ superblock
[  835.297502][T10676] sp0: Synchronizing with TNC
[  835.349632][T10674] [U] �
[  835.815335][T10694] overlayfs: missing 'lowerdir'
[  836.788482][   T29] audit: type=1326 audit(1718759444.233:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10706 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  837.072836][T10704] syzkaller0: entered promiscuous mode
[  837.095474][T10704] syzkaller0: entered allmulticast mode
[  837.887206][T10693] loop3: detected capacity change from 0 to 32768
[  838.239779][   T29] audit: type=1800 audit(1718759445.683:530): pid=10723 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="loop3" ino=7 res=0 errno=0
[  838.561548][T10729] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  842.737142][   T29] audit: type=1800 audit(1718759450.183:531): pid=10761 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1955 res=0 errno=0
[  843.866226][T10770] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  844.717011][T10780] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  844.778384][T10780] netlink: 64138 bytes leftover after parsing attributes in process `syz-executor.1'.
[  844.964525][T10786] loop0: detected capacity change from 0 to 64
[  845.064766][T10787] overlayfs: missing 'lowerdir'
[  846.028189][T10786] hfs: invalid btree extent records (0 size)
[  846.034961][T10786] hfs: unable to open catalog tree
[  846.393719][T10780] loop1: detected capacity change from 0 to 16
[  846.699434][   T29] audit: type=1326 audit(1718759454.143:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10800 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  846.752899][T10804] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  846.790417][T10780] loop1: detected capacity change from 0 to 2048
[  846.837777][T10804] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  846.927366][T10799] syzkaller0: entered promiscuous mode
[  846.946058][T10799] syzkaller0: entered allmulticast mode
[  846.967411][T10804] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  847.131759][T10811] loop1: detected capacity change from 0 to 64
[  848.759690][   T29] audit: type=1400 audit(1718759456.203:533): avc:  denied  { setopt } for  pid=10819 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  848.863455][T10825] mmap: syz-executor.2 (10825) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  850.058520][T10836] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  853.750987][T10843] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
[  854.137884][T10855] loop0: detected capacity change from 0 to 256
[  854.141020][   T29] audit: type=1400 audit(1718759461.573:534): avc:  denied  { read } for  pid=10847 comm="syz-executor.1" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  854.180633][T10856] loop3: detected capacity change from 0 to 64
[  854.607532][   T29] audit: type=1400 audit(1718759461.583:535): avc:  denied  { open } for  pid=10847 comm="syz-executor.1" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  855.015787][T10855] loop0: detected capacity change from 0 to 16
[  855.028344][   T29] audit: type=1400 audit(1718759461.793:536): avc:  denied  { ioctl } for  pid=10847 comm="syz-executor.1" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x940b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  855.092046][T10855] erofs: Unknown parameter '����0xffffffffffffffff01777777777777777777777��������'
[  855.204918][T10855] fuse: Bad value for 'user_id'
[  855.401509][T10875] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  855.431389][   T29] audit: type=1400 audit(1718759462.883:537): avc:  denied  { shutdown } for  pid=10866 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  855.991071][T10883] loop0: detected capacity change from 0 to 40427
[  856.024637][T10883] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  856.032546][T10883] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  856.061803][T10883] F2FS-fs (loop0): Found nat_bits in checkpoint
[  856.143668][T10883] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  856.150957][T10883] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  857.315374][   T29] audit: type=1400 audit(1718759464.393:538): avc:  denied  { bind } for  pid=10881 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  857.530429][   T29] audit: type=1400 audit(1718759464.853:539): avc:  denied  { bind } for  pid=10881 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  857.603378][   T29] audit: type=1326 audit(1718759465.053:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10889 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  857.737722][T10897] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  858.016139][   T29] audit: type=1400 audit(1718759465.463:541): avc:  denied  { bind } for  pid=10895 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  858.106096][   T29] audit: type=1400 audit(1718759465.463:542): avc:  denied  { name_bind } for  pid=10895 comm="syz-executor.3" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  858.156081][T10898] syzkaller0: entered promiscuous mode
[  858.166322][   T29] audit: type=1400 audit(1718759465.463:543): avc:  denied  { node_bind } for  pid=10895 comm="syz-executor.3" saddr=fc01::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  858.189040][T10898] syzkaller0: entered allmulticast mode
[  860.001706][T10923] loop2: detected capacity change from 0 to 64
[  860.058601][T10923] hfs: invalid btree extent records (0 size)
[  860.065355][T10923] hfs: unable to open catalog tree
[  860.784969][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  860.784994][   T29] audit: type=1400 audit(1718759468.233:545): avc:  denied  { audit_write } for  pid=10925 comm="syz-executor.1" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  861.825635][ T3882] Bluetooth: hci5: Frame reassembly failed (-84)
[  862.279556][T10942] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  862.549239][ T4479] Bluetooth: hci6: sending frame failed (-49)
[  862.560186][ T5113] Bluetooth: hci6: Opcode 0x1003 failed: -49
[  862.958412][T10927] loop3: detected capacity change from 0 to 32768
[  862.978784][T10927] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (10927)
[  863.051023][T10927] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  863.090403][T10927] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  863.142239][T10927] BTRFS info (device loop3): using free-space-tree
[  863.414470][   T29] audit: type=1400 audit(1718759470.863:546): avc:  denied  { mount } for  pid=10957 comm="syz-executor.1" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  863.516425][   T29] audit: type=1400 audit(1718759470.963:547): avc:  denied  { unmount } for  pid=9146 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  863.559688][   T29] audit: type=1400 audit(1718759471.003:548): avc:  denied  { write } for  pid=10924 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  863.841415][ T5113] Bluetooth: hci5: command 0x1003 tx timeout
[  863.900912][ T5122] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  863.971800][T10969] loop2: detected capacity change from 0 to 256
[  864.018054][T10974] serio: Serial port pts0
[  864.314013][T10977] loop1: detected capacity change from 0 to 1024
[  864.925275][ T8482] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  865.796563][   T29] audit: type=1400 audit(1718759473.233:549): avc:  denied  { listen } for  pid=10982 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  866.125939][   T29] audit: type=1326 audit(1718759473.473:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10987 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  867.138885][   T29] audit: type=1326 audit(1718759473.973:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10988 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  867.449533][T11000] loop0: detected capacity change from 0 to 64
[  867.535910][T11000] hfs: invalid btree extent records (0 size)
[  867.544320][T11000] hfs: unable to open catalog tree
[  868.456992][   T29] audit: type=1400 audit(1718759475.903:552): avc:  denied  { watch watch_reads } for  pid=11001 comm="syz-executor.0" path="/proc/11001" dev="proc" ino=29352 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  868.484549][   T29] audit: type=1326 audit(1718759475.933:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11001 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  868.618652][T11003] loop0: detected capacity change from 0 to 256
[  870.131917][ T3304] Bluetooth: hci5: Frame reassembly failed (-84)
[  870.949021][   T11] hfsplus: b-tree write err: -5, ino 4
[  871.067862][T11011] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  871.245119][T11020] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  871.320137][T11020] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  871.465415][T11025] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  871.851919][T11031] loop2: detected capacity change from 0 to 256
[  872.161183][ T5113] Bluetooth: hci5: command 0x1003 tx timeout
[  872.170079][ T5122] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  872.602070][T11036] fuse: Bad value for 'user_id'
[  872.634572][   T29] audit: type=1326 audit(1718759480.083:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  872.729710][   T29] audit: type=1326 audit(1718759480.083:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  872.833547][   T29] audit: type=1326 audit(1718759480.103:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  872.844277][T11044] loop1: detected capacity change from 0 to 256
[  872.905013][ T8434] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  872.924843][   T29] audit: type=1326 audit(1718759480.123:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  872.956535][   T29] audit: type=1326 audit(1718759480.123:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  873.019398][   T29] audit: type=1326 audit(1718759480.133:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  873.111102][   T29] audit: type=1326 audit(1718759480.133:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x7ffc0000
[  873.207447][   T29] audit: type=1326 audit(1718759480.133:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7efefba7a6a7 code=0x7ffc0000
[  873.390010][   T29] audit: type=1326 audit(1718759480.133:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7efefba40379 code=0x7ffc0000
[  873.541089][   T29] audit: type=1326 audit(1718759480.133:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11037 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7efefba7a6a7 code=0x7ffc0000
[  873.728466][T11047] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  874.349869][T11042] loop0: detected capacity change from 0 to 32768
[  874.561235][T11042] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (11042)
[  874.618824][T11042] BTRFS info (device loop0): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  874.648022][T11051] syzkaller0: entered promiscuous mode
[  874.653258][T11042] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  874.663908][T11051] syzkaller0: entered allmulticast mode
[  874.682558][T11042] BTRFS info (device loop0): using free-space-tree
[  874.790835][T11042] BTRFS info (device loop0): checking UUID tree
[  874.800361][T11070] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  875.303843][ T8357] BTRFS info (device loop0): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  875.766964][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  875.787029][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  876.160109][T11091] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  876.803583][T11104] loop3: detected capacity change from 0 to 8
[  876.884630][T11104] SQUASHFS error: Failed to read block 0x4e8: -5
[  877.366199][T11106] SQUASHFS error: Failed to read block 0xed04f1: -5
[  877.376381][T11106] SQUASHFS error: Failed to read block 0x4e8: -5
[  877.383129][T11106] SQUASHFS error: Failed to read block 0x4e8: -5
[  877.389747][T11106] SQUASHFS error: Failed to read block 0x4e8: -5
[  878.720156][T11102] loop0: detected capacity change from 0 to 32768
[  879.271523][T11102] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (11102)
[  879.648555][T11102] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  879.666126][T11102] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  879.700258][T11102] BTRFS info (device loop0): using free-space-tree
[  879.721120][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  879.722564][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  879.759438][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  879.773641][   T29] kauditd_printk_skb: 253 callbacks suppressed
[  879.773666][   T29] audit: type=1800 audit(1718759487.223:817): pid=11121 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1946 res=0 errno=0
[  879.777456][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  879.794281][   T29] audit: type=1800 audit(1718759487.233:818): pid=11117 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1946 res=0 errno=0
[  879.811609][    C1] vkms_vblank_simulate: vblank timer overrun
[  879.824400][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  879.948535][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  879.986889][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  880.012275][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  880.023397][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  880.037125][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  880.054745][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  880.068708][T11102] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  880.157942][T11102] BTRFS error (device loop0): open_ctree failed
[  880.230869][   T29] audit: type=1400 audit(1718759487.673:819): avc:  denied  { read } for  pid=11124 comm="syz-executor.1" path="socket:[30180]" dev="sockfs" ino=30180 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  880.846624][T11142] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  881.239293][T11145] loop0: detected capacity change from 0 to 32768
[  881.265198][T11145] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (11145)
[  881.297032][T11145] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  881.307428][T11145] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  881.316286][T11145] BTRFS info (device loop0): using free-space-tree
[  882.299293][ T8357] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  882.978065][T11165] delete_channel: no stack
[  883.044787][T11165] loop0: detected capacity change from 0 to 128
[  883.139638][T11165] VFS: Found a Xenix FS (block size = 512) on device loop0
[  883.188529][   T29] audit: type=1400 audit(1718759490.623:820): avc:  denied  { mount } for  pid=11163 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysv_t tclass=filesystem permissive=1
[  883.211925][T11165] sysv_free_block: trying to free block not in datazone
[  883.333187][   T29] audit: type=1400 audit(1718759490.783:821): avc:  denied  { unmount } for  pid=8357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysv_t tclass=filesystem permissive=1
[  883.357279][ T8357] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  883.573931][T11170] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  884.002629][T11177] loop0: detected capacity change from 0 to 256
[  884.058095][T11177] FAT-fs (loop0): Directory bread(block 64) failed
[  884.064862][T11177] FAT-fs (loop0): Directory bread(block 65) failed
[  884.071857][T11177] FAT-fs (loop0): Directory bread(block 66) failed
[  884.078430][T11177] FAT-fs (loop0): Directory bread(block 67) failed
[  884.085246][T11177] FAT-fs (loop0): Directory bread(block 68) failed
[  884.091957][T11177] FAT-fs (loop0): Directory bread(block 69) failed
[  884.098648][T11177] FAT-fs (loop0): Directory bread(block 70) failed
[  884.105294][T11177] FAT-fs (loop0): Directory bread(block 71) failed
[  884.112035][T11177] FAT-fs (loop0): Directory bread(block 72) failed
[  884.118601][T11177] FAT-fs (loop0): Directory bread(block 73) failed
[  887.133022][ T1098] kworker/u8:6: attempt to access beyond end of device
[  887.133022][ T1098] loop0: rw=1, sector=1224, nr_sectors = 4 limit=256
[  887.895814][T11205] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  887.905252][   T29] audit: type=1400 audit(1718759495.343:822): avc:  denied  { setattr } for  pid=11202 comm="syz-executor.0" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  887.984360][   T29] audit: type=1400 audit(1718759495.393:823): avc:  denied  { ioctl } for  pid=11202 comm="syz-executor.0" path="/root/syzkaller-testdir3142574266/syzkaller.HmKpbw/131/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  888.102734][   T29] audit: type=1800 audit(1718759495.423:824): pid=11203 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz-executor.0" name="/" dev="9p" ino=2 res=0 errno=0
[  888.309891][   T29] audit: type=1326 audit(1718759495.753:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11212 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  888.451536][T11217] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  888.476769][T11219] loop3: detected capacity change from 0 to 256
[  888.520861][T11219] FAT-fs (loop3): Directory bread(block 64) failed
[  888.527492][T11219] FAT-fs (loop3): Directory bread(block 65) failed
[  888.536906][T11219] FAT-fs (loop3): Directory bread(block 66) failed
[  888.543535][T11219] FAT-fs (loop3): Directory bread(block 67) failed
[  888.550273][T11219] FAT-fs (loop3): Directory bread(block 68) failed
[  888.556971][T11219] FAT-fs (loop3): Directory bread(block 69) failed
[  888.564253][T11219] FAT-fs (loop3): Directory bread(block 70) failed
[  888.570898][T11219] FAT-fs (loop3): Directory bread(block 71) failed
[  888.577582][T11219] FAT-fs (loop3): Directory bread(block 72) failed
[  888.584189][T11219] FAT-fs (loop3): Directory bread(block 73) failed
[  889.025988][T11218] syzkaller0: entered promiscuous mode
[  889.049054][T11218] syzkaller0: entered allmulticast mode
[  889.116422][T11226] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.2'.
[  889.765297][   T61] kworker/u8:4: attempt to access beyond end of device
[  889.765297][   T61] loop3: rw=1, sector=1224, nr_sectors = 4 limit=256
[  889.790020][   T29] audit: type=1400 audit(1718759497.233:826): avc:  denied  { setattr } for  pid=11230 comm="syz-executor.4" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  890.051594][T11236] loop0: detected capacity change from 0 to 512
[  890.211527][T11236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  890.251531][T11236] ext4 filesystem being mounted at /root/syzkaller-testdir3142574266/syzkaller.HmKpbw/134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  890.461801][T11244] fuse: Bad value for 'fd'
[  890.495235][   T29] audit: type=1326 audit(1718759497.943:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11237 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  891.214272][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  891.353882][T11249] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  891.360570][T11249] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  891.371296][T11249] vhci_hcd vhci_hcd.0: Device attached
[  891.821598][ T5160] usb 17-1: new low-speed USB device number 4 using vhci_hcd
[  892.988678][T11250] vhci_hcd: connection reset by peer
[  893.000968][ T3304] vhci_hcd: stop threads
[  893.005289][ T3304] vhci_hcd: release socket
[  893.011348][ T3304] vhci_hcd: disconnect device
[  896.241217][T11272] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  896.368979][   T29] audit: type=1326 audit(1718759503.813:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6ee87cf29 code=0x0
[  896.787702][T11276] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  896.934947][T11285] loop0: detected capacity change from 0 to 64
[  897.000971][T11285] hfs: invalid btree extent records (0 size)
[  897.007582][T11285] hfs: unable to open catalog tree
[  897.247688][ T5160] vhci_hcd: vhci_device speed not set
[  898.340630][T11292] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  898.389553][T11294] loop0: detected capacity change from 0 to 512
[  898.446871][T11292] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  898.484972][T11294] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  898.570176][T11294] ext4 filesystem being mounted at /root/syzkaller-testdir3142574266/syzkaller.HmKpbw/138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  898.749086][T11292] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  899.127968][T11304] fuse: Bad value for 'fd'
[  899.136628][   T29] audit: type=1326 audit(1718759506.583:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11299 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6ee87cf29 code=0x0
[  900.112800][   T29] audit: type=1400 audit(1718759507.543:830): avc:  denied  { shutdown } for  pid=11308 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  900.278452][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  900.571997][T11313] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  900.578545][T11313] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  900.621203][T11313] vhci_hcd vhci_hcd.0: Device attached
[  901.275440][   T25] usb 15-1: new low-speed USB device number 7 using vhci_hcd
[  902.281637][T11314] vhci_hcd: connection reset by peer
[  902.330943][ T3304] vhci_hcd: stop threads
[  902.348915][ T3304] vhci_hcd: release socket
[  902.380924][ T3304] vhci_hcd: disconnect device
[  902.941374][T11335] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  903.009378][T11326] syzkaller0: entered promiscuous mode
[  903.031350][T11326] syzkaller0: entered allmulticast mode
[  903.072049][   T29] audit: type=1400 audit(1718759510.523:831): avc:  denied  { bind } for  pid=11338 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  903.148561][   T29] audit: type=1326 audit(1718759510.593:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11341 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  903.196649][T11342] netlink: 16402 bytes leftover after parsing attributes in process `syz-executor.4'.
[  903.257619][T11347] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  903.316578][T11347] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  903.428539][T11351] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  903.951621][T11361] loop1: detected capacity change from 0 to 512
[  904.048707][T11361] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  904.068688][T11361] ext4 filesystem being mounted at /root/syzkaller-testdir865387790/syzkaller.cMcGfF/93/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  904.337802][   T29] audit: type=1400 audit(1718759511.773:833): avc:  denied  { ioctl } for  pid=11371 comm="syz-executor.3" path="socket:[30910]" dev="sockfs" ino=30910 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  904.873694][ T9146] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  906.436678][   T25] vhci_hcd: vhci_device speed not set
[  907.145588][T11394] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  908.743019][T11400] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  911.261349][T11415] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  912.179275][T11415] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  912.195996][T11425] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  912.328837][T11427] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  912.605574][T11435] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  912.612247][T11435] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  912.660911][T11435] vhci_hcd vhci_hcd.0: Device attached
[  912.706681][T11440] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  912.915980][T11446] loop0: detected capacity change from 0 to 1024
[  912.932035][    T9] usb 13-1: new low-speed USB device number 3 using vhci_hcd
[  912.946205][T11446] EXT4-fs: Ignoring removed orlov option
[  912.974835][T11446] EXT4-fs (loop0): Test dummy encryption mode enabled
[  913.020273][T11446] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  913.103461][T11446] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  913.134810][T11451] syzkaller0: entered promiscuous mode
[  913.140852][T11451] syzkaller0: entered allmulticast mode
[  913.162496][T11436] vhci_hcd: connection reset by peer
[  913.171798][   T11] vhci_hcd: stop threads
[  913.176112][   T11] vhci_hcd: release socket
[  913.198780][   T11] vhci_hcd: disconnect device
[  913.515211][T11446] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  913.627477][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  913.871656][   T29] audit: type=1326 audit(1718759521.323:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11469 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefba7cf29 code=0x0
[  914.053510][   T29] audit: type=1400 audit(1718759521.493:835): avc:  denied  { read } for  pid=11471 comm="syz-executor.2" dev="sockfs" ino=30564 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  916.022987][T11490] fuse: Bad value for 'fd'
[  916.034690][   T29] audit: type=1326 audit(1718759523.483:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11487 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  918.098773][    T9] vhci_hcd: vhci_device speed not set
[  919.400386][T11483] netlink: 'syz-executor.3': attribute type 6 has an invalid length.
[  919.557797][T11494] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  919.585665][T11494] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  919.698204][T11498] loop1: detected capacity change from 0 to 64
[  919.747523][T11499] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  919.837603][T11499] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  919.850917][   T29] audit: type=1800 audit(1718759527.293:837): pid=11502 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1966 res=0 errno=0
[  919.955107][T11499] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  919.983956][T11506] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  920.006802][T11504] loop2: detected capacity change from 0 to 1024
[  920.020564][T11504] EXT4-fs: Ignoring removed orlov option
[  920.051150][T11504] EXT4-fs (loop2): Test dummy encryption mode enabled
[  920.078448][T11504] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  920.123510][T11504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  920.180842][ T5160] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  920.403516][ T5160] usb 5-1: Using ep0 maxpacket: 16
[  920.448541][ T5160] usb 5-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  920.515354][ T9207] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  920.555503][ T5160] usb 5-1: config 1 interface 0 has no altsetting 0
[  920.591021][ T5160] usb 5-1: New USB device found, idVendor=1532, idProduct=011d, bcdDevice= 0.40
[  920.672778][ T5160] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  920.696153][ T5160] usb 5-1: Product: 삨畯켋骳葃嵟ᾌ쯀毟ꌣꞦࣇ㸴⭙㜧멁誴ᙍ檆삃씰把ឫ쓭붾쇘笓㱚ꀂ◨݊
[  920.775163][ T5160] usb 5-1: Manufacturer: Ё
[  920.779765][ T5160] usb 5-1: SerialNumber: ဇ
[  921.069501][ T5160] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[  922.037525][   T29] audit: type=1400 audit(1718759529.483:838): avc:  denied  { ioctl } for  pid=11537 comm="syz-executor.2" path="socket:[31094]" dev="sockfs" ino=31094 ioctlcmd=0x894b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  922.461724][T11542] syzkaller0: entered promiscuous mode
[  922.741149][T11542] syzkaller0: entered allmulticast mode
[  924.493529][T11551] netlink: 'syz-executor.1': attribute type 6 has an invalid length.
[  924.755315][  T930] usb 5-1: USB disconnect, device number 15
[  924.891375][   T29] audit: type=1326 audit(1718759532.333:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11553 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6ee87cf29 code=0x0
[  924.949940][T11557] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  925.429253][T11566] loop3: detected capacity change from 0 to 1024
[  925.502403][T11566] EXT4-fs: Ignoring removed orlov option
[  925.527794][T11566] EXT4-fs (loop3): Test dummy encryption mode enabled
[  925.603993][T11566] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  926.369660][T11566] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  926.607253][T11574] loop2: detected capacity change from 0 to 16
[  926.689419][ T8482] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  926.899842][T11583] loop2: detected capacity change from 0 to 64
[  931.919671][T11597] netlink: 'syz-executor.2': attribute type 6 has an invalid length.
[  932.232627][T11600] loop2: detected capacity change from 0 to 512
[  932.282424][   T29] audit: type=1400 audit(1718759539.733:840): avc:  denied  { setopt } for  pid=11601 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  932.367541][   T29] audit: type=1400 audit(1718759539.813:841): avc:  denied  { set_context_mgr } for  pid=11604 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  932.396637][T11610] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  932.767065][T11606] binder: 11604:11606 ioctl c0306201 0 returned -14
[  932.791807][T11607] loop0: detected capacity change from 0 to 512
[  932.800170][T11607] EXT4-fs: Ignoring removed nobh option
[  932.810992][T11607] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  932.829469][T11600] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  932.843592][T11606] binder: 11604:11606 ioctl ae01 0 returned -22
[  932.850032][T11607] EXT4-fs (loop0): can't mount with both data=journal and delalloc
[  932.858933][T11600] ext4 filesystem being mounted at /root/syzkaller-testdir34046510/syzkaller.7DEV9b/95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  932.923570][T11615] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  933.060626][   T29] audit: type=1400 audit(1718759540.503:842): avc:  denied  { search } for  pid=11605 comm="syz-executor.0" name="/" dev="configfs" ino=1162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  933.244258][   T29] audit: type=1400 audit(1718759540.643:843): avc:  denied  { write } for  pid=11605 comm="syz-executor.0" name="/" dev="configfs" ino=1162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  933.340970][   T29] audit: type=1400 audit(1718759540.693:844): avc:  denied  { add_name } for  pid=11605 comm="syz-executor.0" name="core" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  933.520874][   T29] audit: type=1400 audit(1718759540.693:845): avc:  denied  { create } for  pid=11605 comm="syz-executor.0" name="core" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:configfs_t tclass=file permissive=1
[  933.597386][T11628] loop0: detected capacity change from 0 to 1024
[  933.653527][T11628] EXT4-fs: Ignoring removed orlov option
[  933.707315][T11628] EXT4-fs (loop0): Test dummy encryption mode enabled
[  933.733204][T11628] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  934.052335][ T9207] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  934.059026][T11628] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  934.949369][T11638] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[  935.225114][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  935.838763][T11645] netlink: 'syz-executor.3': attribute type 6 has an invalid length.
[  936.659277][T11650] netlink: 'syz-executor.1': attribute type 6 has an invalid length.
[  937.258328][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  937.264877][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  937.498823][   T29] audit: type=1326 audit(1718759544.943:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11653 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  937.546666][T11654] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  937.579245][T11654] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  937.621590][T11660] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  937.975354][T11658] syzkaller0: entered promiscuous mode
[  937.987915][T11668] loop2: detected capacity change from 0 to 512
[  937.988284][T11658] syzkaller0: entered allmulticast mode
[  938.009596][T11668] EXT4-fs: Ignoring removed nobh option
[  938.059084][T11668] EXT4-fs (loop2): can't mount with both data=journal and delalloc
[  938.956364][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  943.163960][T11691] loop2: detected capacity change from 0 to 1024
[  943.175712][T11691] EXT4-fs: Ignoring removed orlov option
[  943.196145][T11691] EXT4-fs (loop2): Test dummy encryption mode enabled
[  943.204439][T11691] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  943.295820][T11691] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  943.426155][T11702] loop3: detected capacity change from 0 to 256
[  943.484758][T11702] FAT-fs (loop3): Directory bread(block 64) failed
[  943.491589][T11702] FAT-fs (loop3): Directory bread(block 65) failed
[  943.498286][T11702] FAT-fs (loop3): Directory bread(block 66) failed
[  943.505046][T11702] FAT-fs (loop3): Directory bread(block 67) failed
[  943.511830][T11702] FAT-fs (loop3): Directory bread(block 68) failed
[  943.518398][T11702] FAT-fs (loop3): Directory bread(block 69) failed
[  943.527685][T11702] FAT-fs (loop3): Directory bread(block 70) failed
[  943.534392][T11702] FAT-fs (loop3): Directory bread(block 71) failed
[  943.541157][T11702] FAT-fs (loop3): Directory bread(block 72) failed
[  943.547758][T11702] FAT-fs (loop3): Directory bread(block 73) failed
[  943.715505][ T9207] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  945.016122][T11715] loop2: detected capacity change from 0 to 64
[  945.092629][   T29] audit: type=1326 audit(1718759552.533:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11716 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  948.364333][T11695] netlink: 'syz-executor.0': attribute type 6 has an invalid length.
[  948.910277][T11725] syzkaller0: tun_chr_ioctl cmd 1074025677
[  948.929355][ T1098] kworker/u8:6: attempt to access beyond end of device
[  948.929355][ T1098] loop3: rw=1, sector=1224, nr_sectors = 4 limit=256
[  948.931091][T11725] syzkaller0: linktype set to 825
[  949.495738][T11733] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  951.354643][T11739] loop0: detected capacity change from 0 to 512
[  951.398089][T11739] EXT4-fs: Ignoring removed nobh option
[  951.676680][T11739] EXT4-fs (loop0): can't mount with both data=journal and delalloc
[  954.749505][T11756] mac80211_hwsim hwsim23 wlan1: entered allmulticast mode
[  954.873043][T11757] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  954.924040][T11757] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  955.087920][T11760] loop3: detected capacity change from 0 to 256
[  955.142517][T11760] FAT-fs (loop3): Unrecognized mount option "dos1xflop	" or missing value
[  955.259332][   T29] audit: type=1326 audit(1718759562.703:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11765 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  955.611260][   T29] audit: type=1400 audit(1718759563.033:849): avc:  denied  { connect } for  pid=11753 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  955.817474][T11764] syzkaller0: entered promiscuous mode
[  955.833233][T11764] syzkaller0: entered allmulticast mode
[  957.048590][T11774] loop3: detected capacity change from 0 to 64
[  957.077895][T11774] hfs: get root inode failed
[  960.031503][ T5113] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  960.045284][ T5113] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  960.054409][ T5113] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  960.066209][ T5113] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  960.088273][ T5113] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  960.096058][ T5113] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  961.079564][T11794] loop3: detected capacity change from 0 to 256
[  962.161152][ T5122] Bluetooth: hci0: command tx timeout
[  962.488687][   T29] audit: type=1400 audit(1718759569.933:850): avc:  denied  { create } for  pid=11793 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  962.521497][   T29] audit: type=1400 audit(1718759569.933:851): avc:  denied  { ioctl } for  pid=11793 comm="syz-executor.3" path="socket:[31465]" dev="sockfs" ino=31465 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  962.521576][   T29] audit: type=1400 audit(1718759569.933:852): avc:  denied  { map } for  pid=11793 comm="syz-executor.3" path="socket:[31459]" dev="sockfs" ino=31459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  962.557362][   T29] audit: type=1326 audit(1718759570.003:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x7fc00000
[  963.002797][   T29] audit: type=1400 audit(1718759570.443:854): avc:  denied  { read } for  pid=11802 comm="syz-executor.4" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  963.055019][   T29] audit: type=1400 audit(1718759570.443:855): avc:  denied  { open } for  pid=11802 comm="syz-executor.4" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  963.405804][T11807] overlayfs: missing 'lowerdir'
[  964.241263][ T5122] Bluetooth: hci0: command tx timeout
[  964.871571][   T29] audit: type=1326 audit(1718759572.303:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11808 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd27587cf29 code=0x0
[  966.321782][ T5122] Bluetooth: hci0: command tx timeout
[  966.580359][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.837593][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.950939][   T29] audit: type=1400 audit(1718759574.393:857): avc:  denied  { setopt } for  pid=11822 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  967.421156][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.657184][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.720827][T11845] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  967.768884][T11845] input: syz0 as /devices/virtual/input/input6
[  967.914002][   T29] audit: type=1400 audit(1718759575.363:858): avc:  denied  { read } for  pid=4520 comm="acpid" name="js0" dev="devtmpfs" ino=2457 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  967.981536][   T29] audit: type=1400 audit(1718759575.363:859): avc:  denied  { open } for  pid=4520 comm="acpid" path="/dev/input/js0" dev="devtmpfs" ino=2457 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  968.044949][T11847] loop3: detected capacity change from 0 to 512
[  968.079875][T11847] EXT4-fs: Ignoring removed nobh option
[  968.088194][   T29] audit: type=1400 audit(1718759575.363:860): avc:  denied  { ioctl } for  pid=4520 comm="acpid" path="/dev/input/js0" dev="devtmpfs" ino=2457 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  968.157114][T11847] EXT4-fs (loop3): can't mount with both data=journal and delalloc
[  968.285739][T11853] ICMPv6: NA: 6a:00:08:4f:a5:3b advertised our address fe80::aa on syz_tun!
[  968.400996][ T5122] Bluetooth: hci0: command tx timeout
[  968.478245][T11853] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  970.217857][   T29] audit: type=1400 audit(1718759577.663:861): avc:  denied  { map } for  pid=11870 comm="syz-executor.0" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  970.255338][T11873] binder_alloc: 11870: binder_install_single_page failed to insert page at offset 1000 with -14
[  970.272437][   T29] audit: type=1400 audit(1718759577.703:862): avc:  denied  { call } for  pid=11870 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  970.781641][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  970.795477][   T29] audit: type=1326 audit(1718759578.243:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11874 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  970.820072][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  970.834294][   T12] bond0 (unregistering): Released all slaves
[  970.880253][T11866] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  970.933226][T11876] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  970.973264][T11872] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  971.029319][T11787] chnl_net:caif_netlink_parms(): no params data found
[  971.654666][T11886] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  971.671662][   T29] audit: type=1400 audit(1718759579.113:864): avc:  denied  { map } for  pid=11883 comm="syz-executor.0" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  972.569002][T11888] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  973.227873][T11900] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  973.248848][T11900] input: syz0 as /devices/virtual/input/input7
[  973.504914][   T12] hsr_slave_0: left promiscuous mode
[  973.530433][   T12] hsr_slave_1: left promiscuous mode
[  973.554374][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  973.565169][   T29] audit: type=1400 audit(1718759581.003:865): avc:  denied  { getopt } for  pid=11904 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  973.616370][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  973.756069][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  973.799860][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  974.127858][T11909] loop0: detected capacity change from 0 to 8
[  974.145759][   T12] veth1_macvtap: left promiscuous mode
[  974.152519][T11909] squashfs: Unknown parameter ''
[  974.158978][   T12] veth0_macvtap: left promiscuous mode
[  974.168157][   T12] veth1_vlan: left promiscuous mode
[  974.187598][   T12] veth0_vlan: left promiscuous mode
[  975.679433][T11928] loop2: detected capacity change from 0 to 2048
[  975.706365][T11928] NILFS (loop2): invalid segment: Sequence number mismatch
[  975.713905][T11928] NILFS (loop2): trying rollback from an earlier position
[  975.741877][T11928] NILFS (loop2): recovery complete
[  975.781281][T11930] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  976.492413][   T29] audit: type=1400 audit(1718759583.743:866): avc:  denied  { associate } for  pid=11927 comm="syz-executor.2" name="file1" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  977.043386][   T29] audit: type=1800 audit(1718759584.483:867): pid=11931 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=14 res=0 errno=0
[  977.660392][   T12] team0 (unregistering): Port device team_slave_1 removed
[  977.790204][   T12] team0 (unregistering): Port device team_slave_0 removed
[  978.033733][T11937] fuse: Bad value for 'fd'
[  978.113655][   T29] audit: type=1326 audit(1718759585.543:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11934 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94dc7cf29 code=0x0
[  980.788271][T11947] loop2: detected capacity change from 0 to 32768
[  981.051273][T11947] bcachefs (loop2): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  981.067551][T11947] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  981.142653][T11947] bcachefs (loop2): alloc_read... done
[  981.150286][T11947] bcachefs (loop2): stripes_read... done
[  981.156267][T11947] bcachefs (loop2): snapshots_read... done
[  981.173524][T11947] bcachefs (loop2): journal_replay... done
[  981.179428][T11947] bcachefs (loop2): resume_logged_ops... done
[  981.186313][T11947] bcachefs (loop2): going read-write
[  981.211543][T11947] bcachefs (loop2): done starting filesystem
[  981.236918][T11787] bridge0: port 1(bridge_slave_0) entered blocking state
[  981.247425][T11787] bridge0: port 1(bridge_slave_0) entered disabled state
[  981.255037][T11787] bridge_slave_0: entered allmulticast mode
[  981.263302][T11787] bridge_slave_0: entered promiscuous mode
[  981.325930][T11924] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  981.423138][T11787] bridge0: port 2(bridge_slave_1) entered blocking state
[  981.466800][T11787] bridge0: port 2(bridge_slave_1) entered disabled state
[  981.490213][T11787] bridge_slave_1: entered allmulticast mode
[  981.537242][T11787] bridge_slave_1: entered promiscuous mode
[  981.589593][ T9207] bcachefs (loop2): shutting down
[  981.602336][   T29] audit: type=1326 audit(1718759589.053:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11958 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d9ec7cf29 code=0x0
[  981.631077][ T9207] bcachefs (loop2): going read-only
[  981.637523][ T9207] bcachefs (loop2): finished waiting for writes to stop
[  981.650154][T11961] loop0: detected capacity change from 0 to 1024
[  981.737625][ T9207] bcachefs (loop2): flushing journal and stopping allocators, journal seq 10
[  981.773850][T11961] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  981.798679][ T9207] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 10
[  981.888160][T11787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  981.961259][   T29] audit: type=1400 audit(1718759589.393:870): avc:  denied  { execute } for  pid=11959 comm="syz-executor.0" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  981.984484][ T9207] bcachefs (loop2): shutdown complete, journal seq 11
[  982.004858][ T9207] bcachefs (loop2): marking filesystem clean
[  982.038932][T11787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  982.253732][   T25] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  982.277104][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  982.373758][ T9207] bcachefs (loop2): shutdown complete
[  982.378305][T11787] team0: Port device team_slave_0 added
[  982.445057][T11787] team0: Port device team_slave_1 added
[  982.725503][T11787] batman_adv: batadv0: Adding interface: batadv_slave_0
[  982.753936][T11787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  982.808215][T11787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  982.846291][T11787] batman_adv: batadv0: Adding interface: batadv_slave_1
[  982.878384][T11787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  982.906650][T11963] loop3: detected capacity change from 0 to 32768
[  982.952962][T11963] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (11963)
[  982.977880][T11787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.020747][T11963] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  983.072887][T11963] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  983.101043][T11963] BTRFS info (device loop3): using free-space-tree
[  983.231134][ T5162] libceph: connect (1)[c::]:6789 error -101
[  983.241001][ T5162] libceph: mon0 (1)[c::]:6789 connect error
[  983.301300][T11787] hsr_slave_0: entered promiscuous mode
[  983.318725][T11787] hsr_slave_1: entered promiscuous mode
[  983.325554][T11787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  983.334783][T11979] bad cache= option: noneontrolC#
[  983.334783][T11979] 
[  983.352261][T11979] CIFS: VFS: bad cache= option: noneontrolC#
[  983.360865][T11787] Cannot create hsr debugfs directory
[  983.378117][ T1098] BTRFS warning (device loop3): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xd75a2274 level 0
[  983.396199][T11963] BTRFS warning (device loop3): couldn't read tree root
[  983.521030][T11963] BTRFS error (device loop3): open_ctree failed
[  983.574716][   T25] libceph: connect (1)[c::]:6789 error -101
[  983.590643][T11993] loop0: detected capacity change from 0 to 512
[  983.615996][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  983.661525][T11993] EXT4-fs: Ignoring removed nobh option
[  983.690052][T11993] EXT4-fs (loop0): can't mount with both data=journal and delalloc
[  984.161688][   T25] libceph: connect (1)[c::]:6789 error -101
[  984.167836][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  984.407316][T11996] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  984.975594][T12001] loop2: detected capacity change from 0 to 256
[  985.073959][T11976] ceph: No mds server is up or the cluster is laggy
[  985.146400][T12001] FAT-fs (loop2): Directory bread(block 64) failed
[  985.153297][T12001] FAT-fs (loop2): Directory bread(block 65) failed
[  985.160016][T12001] FAT-fs (loop2): Directory bread(block 66) failed
[  985.166734][T12001] FAT-fs (loop2): Directory bread(block 67) failed
[  985.173499][T12001] FAT-fs (loop2): Directory bread(block 68) failed
[  985.180071][T12001] FAT-fs (loop2): Directory bread(block 69) failed
[  985.187117][T12001] FAT-fs (loop2): Directory bread(block 70) failed
[  985.193847][T12001] FAT-fs (loop2): Directory bread(block 71) failed
[  985.202719][T12001] FAT-fs (loop2): Directory bread(block 72) failed
[  985.209296][T12001] FAT-fs (loop2): Directory bread(block 73) failed
[  985.459312][ T5162] libceph: connect (1)[c::]:6789 error -101
[  985.494264][ T5162] libceph: mon0 (1)[c::]:6789 connect error
[  985.716048][   T29] audit: type=1400 audit(1718759593.163:871): avc:  denied  { accept } for  pid=12009 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  986.079978][T11787] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  986.117845][T11787] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  986.176710][T11787] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  986.218829][T11787] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  987.027591][ T2443] kworker/u8:7: attempt to access beyond end of device
[  987.027591][ T2443] loop2: rw=1, sector=1224, nr_sectors = 4 limit=256
[  987.041170][T11787] 8021q: adding VLAN 0 to HW filter on device bond0
[  987.082883][T11787] 8021q: adding VLAN 0 to HW filter on device team0
[  987.132845][ T5160] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.140196][ T5160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  987.174463][ T5160] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.181814][ T5160] bridge0: port 2(bridge_slave_1) entered forwarding state
[  987.289522][T12022] syzkaller0: entered promiscuous mode
[  987.307105][T12022] syzkaller0: entered allmulticast mode
[  987.543091][T12026] loop0: detected capacity change from 0 to 8192
[  987.618201][T12026] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  987.663899][T12026] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  987.695452][T12026] REISERFS (device loop0): using ordered data mode
[  987.717084][T12026] reiserfs: using flush barriers
[  987.743283][T12026] REISERFS warning (device loop0): sh-458 journal_init_dev: cannot init journal device unknown-block(7,0): -16
[  987.795544][T12026] REISERFS warning (device loop0): sh-462 journal_init: unable to initialize journal device
[  990.519069][   T29] audit: type=1400 audit(1718759597.963:872): avc:  denied  { create } for  pid=12082 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  995.416165][T12125] overlayfs: missing 'lowerdir'
[  998.108111][   T29] audit: type=1400 audit(1718759605.553:873): avc:  denied  { setopt } for  pid=12140 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  998.651359][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  998.671679][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  999.655657][   T29] audit: type=1400 audit(1718759607.093:874): avc:  denied  { create } for  pid=12144 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  999.675695][   T29] audit: type=1400 audit(1718759607.103:875): avc:  denied  { mount } for  pid=12144 comm="syz-executor.0" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  999.778631][   T29] audit: type=1400 audit(1718759607.213:876): avc:  denied  { unmount } for  pid=8357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[ 1000.305701][T12150] loop0: detected capacity change from 0 to 160
[ 1001.872663][T12165] overlayfs: missing 'lowerdir'
[ 1002.528785][T12169] loop0: detected capacity change from 0 to 2048
[ 1002.578980][T12169] EXT4-fs: Ignoring removed orlov option
[ 1002.625439][T12169] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1002.639925][T11787] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1002.782340][T12169] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1002.814057][T11787] veth0_vlan: entered promiscuous mode
[ 1002.861672][T12186] loop3: detected capacity change from 0 to 256
[ 1002.873732][T12169] EXT4-fs (loop0): Remounting filesystem read-only
[ 1002.887578][T11787] veth1_vlan: entered promiscuous mode
[ 1002.909010][T12186] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1002.983665][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1002.996430][T11787] veth0_macvtap: entered promiscuous mode
[ 1003.033526][T11787] veth1_macvtap: entered promiscuous mode
[ 1003.049652][   T29] audit: type=1800 audit(1718759610.493:877): pid=12186 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="loop3" ino=1048694 res=0 errno=0
[ 1003.125649][T12186] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[ 1003.130875][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1003.153601][   T29] audit: type=1800 audit(1718759610.603:878): pid=12191 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="loop3" ino=1048694 res=0 errno=0
[ 1003.158264][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.220283][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1003.225385][T12194] loop0: detected capacity change from 0 to 764
[ 1003.242623][T12194] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1003.248456][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.262277][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1003.278171][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.289928][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1003.296175][   T29] audit: type=1804 audit(1718759610.743:879): pid=12186 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1104856376/syzkaller.7O2h1X/207/file1/file1" dev="loop3" ino=1048694 res=1 errno=0
[ 1003.306323][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.333628][T12186] exFAT-fs (loop3): error, broken FAT chain.
[ 1003.360366][T12186] exFAT-fs (loop3): error, failed to bmap (inode : ffff88805e4fbc30 iblock : 8, err : -5)
[ 1003.383242][T12186] exFAT-fs (loop3): error, broken FAT chain.
[ 1003.389306][T12186] exFAT-fs (loop3): error, failed to bmap (inode : ffff88805e4fbc30 iblock : 8, err : -5)
[ 1003.399442][T12186] exFAT-fs (loop3): error, broken FAT chain.
[ 1003.405816][T12186] exFAT-fs (loop3): error, failed to bmap (inode : ffff88805e4fbc30 iblock : 9, err : -5)
[ 1003.460017][T11787] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1003.485024][   T29] audit: type=1800 audit(1718759610.923:880): pid=12186 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=1048694 res=0 errno=0
[ 1003.507081][  T930] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1003.548742][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1003.617382][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.662030][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1003.672724][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.682878][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1003.694389][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.704332][T11787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1003.708293][T12196] loop2: detected capacity change from 0 to 8
[ 1003.714853][T11787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1003.717549][T11787] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1004.740354][  T930] usb 5-1: Using ep0 maxpacket: 8
[ 1004.777503][T12196] SQUASHFS error: zlib decompression failed, data probably corrupt
[ 1004.803981][  T930] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1004.815546][T12196] SQUASHFS error: Failed to read block 0x9b: -5
[ 1004.831019][  T930] usb 5-1: config 179 has no interface number 0
[ 1004.847723][T12196] SQUASHFS error: Unable to read metadata cache entry [99]
[ 1004.881117][  T930] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1004.899298][T11787] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.908608][T12196] SQUASHFS error: Unable to read inode 0x127
[ 1004.942016][T11787] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.947974][  T930] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1004.957792][T11787] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.973055][T11787] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.978072][  T930] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1005.010334][  T930] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1005.138481][  T930] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1005.157968][  T930] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1005.221471][T12192] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1005.367090][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1005.407115][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1005.938607][  T930] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input8
[ 1005.975537][ T5162] usb 5-1: USB disconnect, device number 16
[ 1005.975580][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1005.991262][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1008.504137][ T5162] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1008.570264][ T3882] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.611652][ T3882] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.750261][T12221] loop0: detected capacity change from 0 to 164
[ 1008.865718][   T29] audit: type=1400 audit(1718759616.253:881): avc:  denied  { mounton } for  pid=12217 comm="syz-executor.0" path="/root/syzkaller-testdir3142574266/syzkaller.HmKpbw/197/file0" dev="loop0" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=dir permissive=1
[ 1008.972286][T12221] rock: directory entry would overflow storage
[ 1008.979686][T12221] rock: sig=0x4f50, size=4, remaining=3
[ 1008.985486][T12221] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1009.676753][T12227] veth0_vlan: entered allmulticast mode
[ 1009.733412][T12232] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1009.968560][T12236] loop0: detected capacity change from 0 to 2048
[ 1009.987354][  T930] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 1010.012588][T12236] EXT4-fs: Ignoring removed orlov option
[ 1010.117452][T12236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1010.335987][T12243] loop1: detected capacity change from 0 to 512
[ 1010.383016][T12236] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1010.431015][T12243] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino
[ 1010.449385][ T5158] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1010.463619][T12236] EXT4-fs (loop0): Remounting filesystem read-only
[ 1010.484632][T12243] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz-executor.1: couldn't read orphan inode 15 (err -117)
[ 1010.548197][T12243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1010.624484][ T8357] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1010.699631][ T5158] usb 4-1: Using ep0 maxpacket: 32
[ 1010.718275][ T5158] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1010.740809][  T930] usb 3-1: Using ep0 maxpacket: 32
[ 1010.749452][  T930] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1010.763467][  T930] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1010.764437][ T5158] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1010.772843][  T930] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1010.790405][  T930] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1010.802180][  T930] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1010.812513][  T930] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1010.822458][  T930] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1010.832344][  T930] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1010.847195][  T930] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1010.860902][  T930] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1010.893718][  T930] usb 3-1: config 0 descriptor??
[ 1011.138790][ T5158] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1011.148205][ T5158] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1011.157983][ T5158] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1011.168086][ T5158] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1011.178371][ T5158] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1011.188299][ T5158] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1011.201640][ T5158] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1011.213436][ T5158] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1011.225514][ T5158] usb 4-1: config 0 descriptor??
[ 1011.381778][  T930] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1011.419484][  T930] usb 3-1: USB disconnect, device number 12
[ 1011.443024][T12253] loop0: detected capacity change from 0 to 764
[ 1011.462884][  T930] usblp0: removed
[ 1011.478853][ T5158] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1011.509413][T12253] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1011.536946][ T5158] usb 4-1: USB disconnect, device number 11
[ 1011.589789][ T5158] usblp0: removed
[ 1011.879897][T11787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1013.288618][   T29] audit: type=1400 audit(1718759620.733:882): avc:  denied  { read } for  pid=12270 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1013.294405][T12273] loop0: detected capacity change from 0 to 8
[ 1013.337933][T12273] SQUASHFS error: zlib decompression failed, data probably corrupt
[ 1013.348054][T12273] SQUASHFS error: Failed to read block 0x9b: -5
[ 1013.367219][T12273] SQUASHFS error: Unable to read metadata cache entry [99]
[ 1013.378993][T12273] SQUASHFS error: Unable to read inode 0x127
[ 1013.534078][T12280] loop2: detected capacity change from 0 to 1024
[ 1014.216331][T12292] loop0: detected capacity change from 0 to 164
[ 1014.283338][   T29] audit: type=1400 audit(1718759621.733:883): avc:  denied  { connect } for  pid=12293 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[ 1014.350341][   T29] audit: type=1400 audit(1718759621.753:884): avc:  denied  { name_connect } for  pid=12293 comm="syz-executor.2" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[ 1014.370336][T12298] loop1: detected capacity change from 0 to 764
[ 1014.441123][T12298] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1015.207619][  T930] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1015.950829][   T46] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1016.000759][  T930] usb 5-1: Using ep0 maxpacket: 16
[ 1016.008817][  T930] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1016.020099][  T930] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1016.037295][  T930] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1016.048238][  T930] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1016.060276][  T930] usb 5-1: config 0 descriptor??
[ 1016.137537][   T46] usb 3-1: Using ep0 maxpacket: 32
[ 1016.151674][   T46] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1016.170362][   T46] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1016.179203][   T46] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1016.188490][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1016.198766][   T46] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1016.208570][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1016.218506][   T46] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1016.230448][   T46] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1016.251135][   T46] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1016.260387][   T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1016.285882][   T46] usb 3-1: config 0 descriptor??
[ 1016.539006][   T46] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 13 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1016.543460][  T930] microsoft 0003:045E:07DA.0001: No inputs registered, leaving
[ 1016.583468][   T46] usb 3-1: USB disconnect, device number 13
[ 1016.603364][  T930] microsoft 0003:045E:07DA.0001: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[ 1016.603698][   T46] usblp0: removed
[ 1016.630957][  T930] microsoft 0003:045E:07DA.0001: no inputs found
[ 1016.650765][  T930] microsoft 0003:045E:07DA.0001: could not initialize ff, continuing anyway
[ 1016.968661][T12295] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1016.979819][T12295] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1017.288462][T12244] usb 5-1: USB disconnect, device number 17
[ 1043.991883][ T5113] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1044.006247][ T5113] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1044.019145][ T5113] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1044.028273][ T5113] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1044.041607][ T5113] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1044.049302][ T5113] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1045.472573][ T5113] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1045.490457][ T5113] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1045.516611][ T5113] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1045.533115][ T4479] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1045.546331][T10946] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1045.554406][T10946] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1045.566667][T12327] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1045.566806][T10946] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1045.581620][T10946] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1045.596222][T10946] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1045.620532][ T5122] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1045.629891][ T5122] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1045.709837][ T5122] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1045.728005][ T5122] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1045.738910][ T5122] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1045.749478][ T5122] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1045.759042][ T5122] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1045.766773][ T5122] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1046.081309][ T5113] Bluetooth: hci5: command tx timeout
[ 1047.681022][ T5122] Bluetooth: hci6: command tx timeout
[ 1047.689632][ T5113] Bluetooth: hci7: command tx timeout
[ 1047.841347][ T5113] Bluetooth: hci8: command tx timeout
[ 1048.161185][ T5113] Bluetooth: hci5: command tx timeout
[ 1048.483758][ T5122] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1048.501043][ T5122] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1048.512559][ T5122] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1048.529886][ T5122] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1048.539939][ T5122] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1048.548317][ T5122] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1049.761237][ T5113] Bluetooth: hci7: command tx timeout
[ 1049.766735][ T5113] Bluetooth: hci6: command tx timeout
[ 1049.920952][ T5122] Bluetooth: hci8: command tx timeout
[ 1050.241058][ T5122] Bluetooth: hci5: command tx timeout
[ 1050.641214][ T5122] Bluetooth: hci9: command tx timeout
[ 1051.847361][ T5122] Bluetooth: hci7: command tx timeout
[ 1051.847383][ T5113] Bluetooth: hci6: command tx timeout
[ 1052.000860][ T5113] Bluetooth: hci8: command tx timeout
[ 1052.321021][ T5113] Bluetooth: hci5: command tx timeout
[ 1052.720828][ T5113] Bluetooth: hci9: command tx timeout
[ 1053.921013][ T5113] Bluetooth: hci6: command tx timeout
[ 1053.940779][ T5113] Bluetooth: hci7: command tx timeout
[ 1054.080871][ T5113] Bluetooth: hci8: command tx timeout
[ 1054.817578][ T5113] Bluetooth: hci9: command tx timeout
[ 1056.881061][ T5113] Bluetooth: hci9: command tx timeout
[ 1060.089731][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.096353][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[ 1082.651487][ T5122] Bluetooth: hci0: command 0x0406 tx timeout
[ 1109.340465][ T5122] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1109.358915][ T5122] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1109.370284][ T5122] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1109.401494][ T5122] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1109.411993][ T5122] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1109.421942][ T5122] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1110.273133][ T5113] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1110.292662][ T5113] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1110.305622][ T5113] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1110.329418][ T5113] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1110.334737][T10946] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1110.348934][ T5113] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1110.350405][T10946] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1110.365404][ T5113] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1110.374768][ T5113] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1110.386361][ T5113] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1110.394932][ T5113] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1110.405151][ T5113] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1110.532063][T12327] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1110.547460][T12327] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1110.560202][T12327] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1110.570592][T12327] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1110.579246][T12327] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1110.591126][T12327] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1111.521717][ T5113] Bluetooth: hci10: command tx timeout
[ 1112.481193][ T5113] Bluetooth: hci11: command tx timeout
[ 1112.561303][ T5113] Bluetooth: hci12: command tx timeout
[ 1112.641346][ T5113] Bluetooth: hci13: command tx timeout
[ 1113.555681][T12327] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1113.569634][T12327] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1113.580296][T12327] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1113.590057][T12327] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1113.611032][T12327] Bluetooth: hci10: command tx timeout
[ 1113.624530][T10946] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 1113.632448][T10946] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1114.560848][T10946] Bluetooth: hci11: command tx timeout
[ 1114.640993][T10946] Bluetooth: hci12: command tx timeout
[ 1114.730691][T10946] Bluetooth: hci13: command tx timeout
[ 1115.683018][ T5113] Bluetooth: hci10: command tx timeout
[ 1115.689989][T10946] Bluetooth: hci14: command tx timeout
[ 1116.640754][T10946] Bluetooth: hci11: command tx timeout
[ 1116.724374][T10946] Bluetooth: hci12: command tx timeout
[ 1116.801025][T10946] Bluetooth: hci13: command tx timeout
[ 1117.760967][ T5113] Bluetooth: hci10: command tx timeout
[ 1117.766935][T10946] Bluetooth: hci14: command tx timeout
[ 1118.720731][T10946] Bluetooth: hci11: command tx timeout
[ 1118.800891][T10946] Bluetooth: hci12: command tx timeout
[ 1118.886250][T10946] Bluetooth: hci13: command tx timeout
[ 1119.841238][T10946] Bluetooth: hci14: command tx timeout
[ 1121.536421][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.542917][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.921117][T10946] Bluetooth: hci14: command tx timeout
[ 1166.967401][   T30] INFO: task syz-executor.1:12306 blocked for more than 143 seconds.
[ 1166.986377][   T30]       Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[ 1166.994319][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
2024/06/19 01:16:14 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[ 1167.009857][   T30] task:syz-executor.1  state:D stack:25024 pid:12306 tgid:12297 ppid:11787  flags:0x00004006
[ 1167.057255][   T30] Call Trace:
[ 1167.066151][   T30]  <TASK>
[ 1167.069154][   T30]  __schedule+0xf15/0x5d00
[ 1167.085333][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.096103][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.106710][   T30]  ? __pfx___schedule+0x10/0x10
[ 1167.113188][   T30]  ? schedule+0x298/0x350
[ 1167.117590][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1167.128015][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1167.132972][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1167.138508][   T30]  schedule+0xe7/0x350
[ 1167.149369][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1167.155292][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1167.159877][   T30]  ? do_ip_setsockopt+0xf9/0x38b0
[ 1167.167357][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1167.182492][   T30]  ? avc_has_perm+0x11b/0x1c0
[ 1167.187278][   T30]  ? do_ip_setsockopt+0xf9/0x38b0
[ 1167.198527][   T30]  ? rtnl_lock+0x9/0x20
[ 1167.207247][   T30]  do_ip_setsockopt+0xf9/0x38b0
[ 1167.219062][   T30]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1167.224898][   T30]  ? sock_has_perm+0x25a/0x2f0
[ 1167.229818][   T30]  ? __pfx_sock_has_perm+0x10/0x10
[ 1167.241794][   T30]  ? selinux_netlbl_socket_setsockopt+0x142/0x440
[ 1167.248291][   T30]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[ 1167.255543][   T30]  ip_setsockopt+0x59/0xf0
[ 1167.260033][   T30]  udp_setsockopt+0x7d/0xd0
[ 1167.275275][   T30]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1167.283234][   T30]  do_sock_setsockopt+0x222/0x480
[ 1167.288380][   T30]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1167.300713][   T30]  ? __fget_light+0x173/0x210
[ 1167.305581][   T30]  __sys_setsockopt+0x1a4/0x270
[ 1167.310485][   T30]  ? __pfx___sys_setsockopt+0x10/0x10
[ 1167.326127][   T30]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 1167.336836][   T30]  ? xfd_validate_state+0x5d/0x180
[ 1167.342321][   T30]  __x64_sys_setsockopt+0xbd/0x160
[ 1167.347490][   T30]  ? do_syscall_64+0x91/0x250
[ 1167.358675][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1167.364115][   T30]  do_syscall_64+0xcd/0x250
[ 1167.379620][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.385811][   T30] RIP: 0033:0x7f805ac7cf29
[ 1167.390280][   T30] RSP: 002b:00007f805b9a80c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1167.407731][   T30] RAX: ffffffffffffffda RBX: 00007f805adb4120 RCX: 00007f805ac7cf29
[ 1167.416011][   T30] RDX: 0000000000000029 RSI: 0000000000000000 RDI: 000000000000000b
[ 1167.434207][   T30] RBP: 00007f805acec074 R08: 000000000000001c R09: 0000000000000000
[ 1167.448978][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1167.457103][   T30] R13: 000000000000006e R14: 00007f805adb4120 R15: 00007ffd99eb79a8
[ 1167.465485][   T30]  </TASK>
[ 1167.473493][   T30] INFO: task syz-executor.2:12300 blocked for more than 143 seconds.
[ 1167.490720][   T30]       Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[ 1167.498506][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1167.530758][   T30] task:syz-executor.2  state:D stack:27280 pid:12300 tgid:12299 ppid:9207   flags:0x00000006
[ 1167.550738][   T30] Call Trace:
[ 1167.554106][   T30]  <TASK>
[ 1167.557081][   T30]  __schedule+0xf15/0x5d00
[ 1167.580657][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.585981][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.602021][   T30]  ? __pfx___schedule+0x10/0x10
[ 1167.606991][   T30]  ? schedule+0x298/0x350
[ 1167.620725][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1167.625872][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1167.670760][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1167.682197][   T30]  schedule+0xe7/0x350
[ 1167.686625][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1167.692408][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1167.696981][   T30]  ? dev_ioctl+0x213/0x10a0
[ 1167.701792][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1167.706880][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1167.712025][   T30]  ? full_name_hash+0xbc/0x110
[ 1167.716845][   T30]  ? dev_ioctl+0x213/0x10a0
[ 1167.721493][   T30]  ? rtnl_lock+0x9/0x20
[ 1167.725726][   T30]  dev_ioctl+0x213/0x10a0
[ 1167.730236][   T30]  sock_do_ioctl+0x19e/0x280
[ 1167.734984][   T30]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1167.740174][   T30]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[ 1167.746814][   T30]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 1167.753793][   T30]  sock_ioctl+0x22e/0x6c0
[ 1167.758292][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1167.763619][   T30]  ? selinux_file_ioctl+0x180/0x270
[ 1167.769003][   T30]  ? selinux_file_ioctl+0xb4/0x270
[ 1167.774836][   T30]  ? __pfx_sock_ioctl+0x10/0x10
[ 1167.783583][   T30]  __x64_sys_ioctl+0x193/0x220
[ 1167.788435][   T30]  do_syscall_64+0xcd/0x250
[ 1167.794898][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.800923][   T30] RIP: 0033:0x7ff94dc7cf29
[ 1167.805383][   T30] RSP: 002b:00007ff94eacc0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1167.813887][   T30] RAX: ffffffffffffffda RBX: 00007ff94ddb3f80 RCX: 00007ff94dc7cf29
[ 1167.828470][   T30] RDX: 0000000020000000 RSI: 0000000000008914 RDI: 0000000000000008
[ 1167.837228][   T30] RBP: 00007ff94dcec074 R08: 0000000000000000 R09: 0000000000000000
[ 1167.845832][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1167.854023][   T30] R13: 000000000000000b R14: 00007ff94ddb3f80 R15: 00007fffbed24d88
[ 1167.868231][   T30]  </TASK>
[ 1167.871373][   T30] INFO: task syz-executor.0:12303 blocked for more than 144 seconds.
[ 1167.879479][   T30]       Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[ 1167.898538][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1167.910978][   T30] task:syz-executor.0  state:D stack:27280 pid:12303 tgid:12301 ppid:8357   flags:0x00000006
[ 1167.930637][   T30] Call Trace:
[ 1167.934022][   T30]  <TASK>
[ 1167.936990][   T30]  __schedule+0xf15/0x5d00
[ 1167.947199][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.953073][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1167.958448][   T30]  ? __pfx___schedule+0x10/0x10
[ 1167.971191][   T30]  ? schedule+0x298/0x350
[ 1167.975695][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1167.981069][   T30]  ? __mutex_lock+0x5b3/0x9c0
[ 1167.987808][   T30]  ? __mutex_trylock_common+0x78/0x250
[ 1168.003655][   T30]  schedule+0xe7/0x350
[ 1168.007825][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1168.019233][   T30]  __mutex_lock+0x5b8/0x9c0
[ 1168.024034][   T30]  ? nl80211_pre_doit+0xb4/0xb10
[ 1168.029026][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1168.042497][   T30]  ? __nla_parse+0x40/0x60
[ 1168.047013][   T30]  ? nl80211_pre_doit+0xb4/0xb10
[ 1168.056107][   T30]  nl80211_pre_doit+0xb4/0xb10
[ 1168.061094][   T30]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1168.066524][   T30]  genl_family_rcv_msg_doit+0x1be/0x2f0
[ 1168.078723][   T30]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1168.089423][   T30]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1168.101927][   T30]  genl_rcv_msg+0x565/0x800
[ 1168.106871][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1168.117451][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1168.126010][   T30]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1168.136917][   T30]  ? __pfx_nl80211_get_reg_do+0x10/0x10
[ 1168.142730][   T30]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1168.148278][   T30]  netlink_rcv_skb+0x16b/0x440
[ 1168.162236][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1168.167372][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1168.173018][   T30]  ? down_read+0xc9/0x330
[ 1168.177415][   T30]  ? __pfx_down_read+0x10/0x10
[ 1168.193104][   T30]  ? netlink_deliver_tap+0x1ae/0xd90
[ 1168.198492][   T30]  genl_rcv+0x28/0x40
[ 1168.206485][   T30]  netlink_unicast+0x542/0x820
[ 1168.211550][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[ 1168.216900][   T30]  netlink_sendmsg+0x8b8/0xd70
[ 1168.240754][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1168.246222][   T30]  ? __import_iovec+0x1fd/0x6e0
[ 1168.262526][   T30]  ____sys_sendmsg+0xab5/0xc90
[ 1168.267387][   T30]  ? copy_msghdr_from_user+0x10b/0x160
[ 1168.280633][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1168.286095][   T30]  ? __pfx___lock_acquire+0x10/0x10
[ 1168.310684][   T30]  ? __lock_acquire+0x14f4/0x3b30
[ 1168.315824][   T30]  ___sys_sendmsg+0x135/0x1e0
[ 1168.320570][   T30]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1168.336005][   T30]  ? find_held_lock+0x2d/0x110
[ 1168.350683][   T30]  ? __fget_light+0x173/0x210
[ 1168.355464][   T30]  __sys_sendmsg+0x117/0x1f0
[ 1168.360116][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1168.382541][   T30]  do_syscall_64+0xcd/0x250
[ 1168.387138][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1168.400800][   T30] RIP: 0033:0x7efefba7cf29
[ 1168.405295][   T30] RSP: 002b:00007efefb5ff0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1168.430701][   T30] RAX: ffffffffffffffda RBX: 00007efefbbb4050 RCX: 00007efefba7cf29
[ 1168.438764][   T30] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[ 1168.472499][   T30] RBP: 00007efefbaec074 R08: 0000000000000000 R09: 0000000000000000
[ 1168.480559][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1168.512051][   T30] R13: 000000000000006e R14: 00007efefbbb4050 R15: 00007ffe47e2b858
[ 1168.537215][   T30]  </TASK>
[ 1168.542758][   T30] INFO: task syz-executor.4:12310 blocked for more than 144 seconds.
[ 1168.567177][   T30]       Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[ 1168.582711][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[