last executing test programs:

1m38.298011206s ago: executing program 2 (id=4508):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0xfffffffffffffffb, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r1, 0x106, 0x1, &(0x7f0000000080)=0x1, 0x4)
r2 = socket$tipc(0x1e, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000f80)={0x0, 0x0, 0x0}, 0x0)
bind$tipc(r3, &(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{0x0, 0x2}, 0x2}}, 0x10)
syz_usb_connect$uac1(0x0, 0xbd, &(0x7f00000007c0)=ANY=[], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x15}, 0xfffffffffffffdd1)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0xe)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
r6 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x13548ca, &(0x7f00000006c0)=ANY=[@ANYRES32=r0, @ANYRES64=r2, @ANYRESHEX=r0, @ANYRESDEC=r3], 0xa, 0x2c9, &(0x7f0000000300)="$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")
openat(0xffffffffffffffff, &(0x7f0000000280)='.\x00', 0x20000, 0x0)
r7 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil)
mlock2(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1)
shmat(r7, &(0x7f0000ffa000/0x3000)=nil, 0x4000)
connect$inet(0xffffffffffffffff, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x10, 0x7800, 0x3ff, 0x8, {{0x5, 0x4, 0x2, 0x9, 0x7, 0x65, 0x0, 0xff, 0x29, 0x0, @remote, @broadcast}}}})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x4})
write$sndseq(r8, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
dup2(r5, r6)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r10, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000fddbdf25460000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008e00010000800c00900000000000000000000c00900000000000000000007d9a88dd1ef5cce7492c255c83b246822cbe8d979522af0a2ada4bd4c2bd3836860adff4f8977341d46ad76b284c34"], 0x54}}, 0x40090)

1m37.703637595s ago: executing program 2 (id=4523):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@ipv6_newrule={0x24, 0x20, 0x1, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xb}, [@FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x29}]}, 0x24}, 0x1, 0x0, 0x0, 0x8084}, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0xc7)
close(r1)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}})
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000001c0)={0x0, @dev, @multicast2}, &(0x7f0000000240)=0xc)
r2 = getpid()
syz_pidfd_open(r2, 0x0)
setns(r1, 0x0)

1m37.621573746s ago: executing program 2 (id=4524):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r3}, &(0x7f0000000080), &(0x7f0000000180)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
mkdir(0x0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="0200000000000000000000000000000000000019", @ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB="00000000000000000300"/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
chown(&(0x7f0000000040)='./file1\x00', 0xffffffffffffffff, 0x0)

1m37.593452856s ago: executing program 2 (id=4525):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000180)={@mcast2, @local, 0x12, 0x6}})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000014c0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0xa0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@dioread_lock}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r4, r4, 0x0, 0xe0000000)
mount$bind(&(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

1m37.417293639s ago: executing program 2 (id=4527):
ioprio_set$pid(0x7, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x78, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x64, 0x1, [@m_mirred={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0900000004000000563c000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf79d}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)
mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={0x0, 0x270}}, 0x2c0c4)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r6, 0xc0096616, &(0x7f0000000180)={0x2, [0x0, 0x0]})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000001c0))
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002", 0x29}], 0x1}, 0x0)

1m36.273396978s ago: executing program 2 (id=4547):
perf_event_open$cgroup(&(0x7f0000000100)={0x3, 0x80, 0x10, 0x0, 0x1, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x23, 0x2, @perf_config_ext={0x2, 0xf}, 0x114000, 0x6, 0x80000000, 0x8, 0x1, 0xb2, 0x8a, 0x0, 0x4, 0x0, 0x100000}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)
unshare(0x10100)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$selinux_attr(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d080006007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040))
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000008000000df7f00000100000000000000", @ANYRES32, @ANYBLOB="0000908183aa822fcc0000000000004cdb000000e7643c01feb249f4cd0e9b4ef721d69b5d4fe322dde8deda8d1db675b043f4a14711c47c5c55", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20)
r8 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000380)='ceph\x00', &(0x7f00000005c0)=@keyring={'key_or_keyring:', r8})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
io_uring_setup(0x3c2c, &(0x7f0000000040)={0x0, 0xb203, 0x40, 0x2, 0x56})

1m35.277286004s ago: executing program 32 (id=4547):
perf_event_open$cgroup(&(0x7f0000000100)={0x3, 0x80, 0x10, 0x0, 0x1, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x23, 0x2, @perf_config_ext={0x2, 0xf}, 0x114000, 0x6, 0x80000000, 0x8, 0x1, 0xb2, 0x8a, 0x0, 0x4, 0x0, 0x100000}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)
unshare(0x10100)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$selinux_attr(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d080006007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040))
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000008000000df7f00000100000000000000", @ANYRES32, @ANYBLOB="0000908183aa822fcc0000000000004cdb000000e7643c01feb249f4cd0e9b4ef721d69b5d4fe322dde8deda8d1db675b043f4a14711c47c5c55", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20)
r8 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000380)='ceph\x00', &(0x7f00000005c0)=@keyring={'key_or_keyring:', r8})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
io_uring_setup(0x3c2c, &(0x7f0000000040)={0x0, 0xb203, 0x40, 0x2, 0x56})

54.011071874s ago: executing program 5 (id=5067):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getpriority(0x2, 0x0)

53.66189486s ago: executing program 5 (id=5069):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
lgetxattr(0x0, 0x0, 0x0, 0x0)

52.745818725s ago: executing program 5 (id=5077):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="1802000000000000000000000000000018130000", @ANYRES32=r2, @ANYBLOB="0000000000000000850000002e00000095"], &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r3, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
r4 = dup2(r0, r2)
sendmsg$TIPC_CMD_DISABLE_BEARER(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x8085}, 0x40000)

52.745107925s ago: executing program 5 (id=5079):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000180)={@mcast2, @local, 0x12, 0x6}})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000014c0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0xa0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@dioread_lock}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r4, r4, 0x0, 0xe0000000)
mount$bind(&(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

50.5708752s ago: executing program 5 (id=5083):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7abff, 0x0, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x0, 0x8000c62)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

48.861129657s ago: executing program 5 (id=5106):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x40)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
socket$unix(0x1, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x1}, 0x6e)
close(0xffffffffffffffff)
recvmsg(r3, 0x0, 0x0)
connect$packet(r3, 0x0, 0x0)
shutdown(r3, 0x1)

48.860690227s ago: executing program 33 (id=5106):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x40)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
socket$unix(0x1, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x1}, 0x6e)
close(0xffffffffffffffff)
recvmsg(r3, 0x0, 0x0)
connect$packet(r3, 0x0, 0x0)
shutdown(r3, 0x1)

4.753659463s ago: executing program 6 (id=5669):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x7}, 0x48)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000580)={@fallback=<r2=>r0, 0x16, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, <r3=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r3}, &(0x7f00000001c0), &(0x7f0000000540)=r2}, 0x20)

4.707147134s ago: executing program 6 (id=5670):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r0, &(0x7f0000000ec0)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x14)

4.537865656s ago: executing program 6 (id=5672):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
r5 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
pread64(r5, &(0x7f00000000c0)=""/36, 0xfffffe49, 0x800000000004)

3.70838754s ago: executing program 6 (id=5681):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
personality(0x8)
ioperm(0x7, 0x449, 0x7ff)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0], 0x1}, 0x58)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffc000/0x4000)=nil)
brk(0x55555ede5ffe)

3.364775076s ago: executing program 0 (id=5690):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000001200)=0x6d7c, 0x4)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e21, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)

3.359931945s ago: executing program 3 (id=5691):
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
ioperm(0x0, 0x2, 0x7e)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000640)="80", 0x26892}], 0x1}, 0xfc)
sendmsg$inet(r2, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080)

2.501646179s ago: executing program 4 (id=5701):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0, 0x0, 0x0, 0x5c8}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001900599c6d0eab070004000523"], 0xfe33)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

2.47961985s ago: executing program 3 (id=5702):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$eJzs3c9vI1cdAPCvnV9OmjZp6QEQokspLGi1TuJto6oHKCeEUCVEjyBtQ+KNothxFDulCXvY/g9IVOIER/4Azj3xJyC4cYEDEj8iULMSSFPNeLzrzdob7yaxs/HnI41m3ryxv+/t7rzn+W7iF8DYuhYR9yJiOiI+iIiF/Hwh3+Ld9pZe99nR3fXjo7vrhUiS9/9VyOrTc9H1mtQL+XuWIuLH34/4WeHxuM2Dw+21Wq261y7OLrXqu0vNg8ObW/W1zepmdadSWV1ZXX771luVc+vra/Xp9sFE2sBv/yJt1nxe192Pc/T/JDP1IE5qMiJ+eAHBRmEi78/0qBvCMylGxCsR8Xp2/y/ERPa3CQBcZUmyEMlCdxkAuOqKWQ6sUCznuYD5KBbL5XYO79WYK9YazdaNO439nY12rmwxpop3tmrV5TxXuBhThbS8kh0/LFdOlG9FxMsR8cuZ2axcXm/UNkb5wQcAxtgLJ+b//860538A4IorjboBAMDQmf8BYPyY/wFg/Jj/AWD8mP8BYPyY/wFg/Jj/AWCs/Oi999ItOc6//3rjw4P97caHNzeqze1yfX+9vN7Y2y1vNhqb2Xf21E97v1qjsbvyZux/tPid3WZrqXlweLve2N9p3c6+1/t2dWoovQIAnuTl1z79cyEi7r0zm23RtZaDuRqutuJZXjx7fu0Ahm9i1A0ARsZqXzC+zvCMLz0AV0SPJXofUXrkcT+/OkmS5GKbBVyg61+S/4dx1ZX/91PAMGbk/2F8DZr/Py0/ADx/kqQw6Jr/MeiFAMDlJscP9Hm+fyXf/y7/z4Gfbpy84pOLbBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcbp31f8v5WuDzUSyWyxEvRsRiTBXubNWqyxHxUkT8aWZqJi2vjLjNAMBZFf9eyNf/ur7wxvzJ2unC/ZlsHxE///X7v/pordXa+2N6/t8Pzrc+yc9XRtF+AOA0nXk623c9yH92dHe9sw2zPf/4XkSU2vGPj6bj+EH8yZjM9qWYioi5/xTycluhK3dxFvc+jogv9up/IeazHEh75dOT8dPYLw41fvGR+MWsrr1P/yy+8NSRk4VzaD481z5Nx593e91/xbiW7Xvf/6VshDq7fPxL32r9OBsDH8bvjH8Tfca/a4PGePMPP2gfzT5e93HElycjOrGPu8afTvxCn/hvDBj/L1/56uv96pLfRFyP3vG7Yy216rtLzYPDm1v1tc3qZnWnUlldWV1++9ZblaUsR73Ufzb45zs3XupXl/Z/rk/80in9/8aA/f/t/z74ydeeEP9bX+8VvxivPiF+Oid+c8D4a3O/L/WrS+Nv9Ox/R//+3xgw/l//dvjYsuEAwOg0Dw6312q16t4wDzofJIYa1MEVOEj/1VyCZvQ8+O6wYk3HU70qSZ4pVr8R4zyybsBl0L7Xk+peRNwfdWMAAAAAAAAAAAAAAICehvEbS6PuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFfX5wEAAP//90HVog==")
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xa)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x109242, 0x0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0)

2.44801131s ago: executing program 0 (id=5703):
r0 = timerfd_create(0x7, 0x800)
timerfd_settime(r0, 0x3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x94)
r5 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r4, 0xffffffffffffffff, 0x3, 0x0, @void}, 0x10)
syz_socket_connect_nvme_tcp()
r6 = socket(0x1e, 0x4, 0x0)
recvmmsg$unix(r6, &(0x7f0000000300)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000005c0)=[{0x0}], 0x1}}], 0x2, 0x400122a0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@enum={0x2, 0x0, 0x0, 0xf}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x28}, 0x28)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNISCRNMAP(r7, 0x4b69, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.361835652s ago: executing program 3 (id=5704):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000002140)=""/4088, 0xff8}], 0x4, 0x4, 0x0)

2.361637412s ago: executing program 1 (id=5705):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c010000100013"], 0x13c}}, 0x20004080)

2.353215262s ago: executing program 1 (id=5706):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000280)=@updpolicy={0xc0, 0x19, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@local, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x4, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}, 0x10000000, 0x0, 0x0, 0x1, 0x1}, [@XFRMA_IF_ID={0x8, 0x1f, 0x3}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="021600000a0000000000000000000000080012000007a18208"], 0x50}}, 0x0)

2.337431122s ago: executing program 1 (id=5707):
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
openat2$dir(0xffffffffffffff9c, &(0x7f0000000640)='./file0/file0/..\x00', &(0x7f0000000080)={0x200000, 0x0, 0x10}, 0x18)
openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYRESOCT, @ANYRES32], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x78}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg0\x00', 0x4)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0xa000a00, 0x0, 0x0)

2.237962534s ago: executing program 3 (id=5708):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010)

1.787166881s ago: executing program 6 (id=5709):
r0 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_pwait(r0, &(0x7f0000000200)=[{}], 0x1, 0x101, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000400)={0xa})

1.781388061s ago: executing program 3 (id=5710):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000400620180100000000000109022400010000000009040000010300000009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB=' 1\b'], 0x0, 0x0, 0x0, 0x0}, 0x0)

1.513639015s ago: executing program 4 (id=5711):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x2, &(0x7f00000010c0)={0x0})

1.513305025s ago: executing program 0 (id=5712):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18060000000000000000000000000040180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000020000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0x3c00, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)
ppoll(&(0x7f00000000c0)=[{r0, 0x8000}], 0x1, &(0x7f0000000200), 0x0, 0x0)

1.513112705s ago: executing program 4 (id=5713):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a5fd03"}, 0x38)
recvmmsg(r0, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0}, 0xb00}], 0x1, 0x10020, 0x0)

1.513006045s ago: executing program 4 (id=5714):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x3)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000240)='\x00!', 0x2}], 0x1, 0x7, 0x0)

1.425801806s ago: executing program 4 (id=5715):
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f00000001c0)='./file0\x00', 0x2000040, &(0x7f0000000280), 0x10, 0x4dc, &(0x7f0000000d80)="$eJzs3d9rHFsdAPDvTLK3v3JNrvpwveBtsZW0aHeTxrbBh1pB7FPBWt9rTDYhZJMN2U3bhCIpviuIqOCTT74I/gGC9E8QoaDvUkURbfXBB3VlZ2drG3eTlG52LsnnA9M5M2d3v9/TsGfmzBx2Aji2zkXEzYgYiYhLETGe70/z5Va7/k7ndS+eP5pvL0m0Wnf/mkSS7+t+VpKvz0TETkScjIiv34r4VvL/cRtb2ytztVp1I9+uNFfXK42t7cvLq3NL1aXq2szM9LXZ67NXZ6cG0s6JiLjxlT/+8Hs/++qNX33+we/v/fnit9tpjeX1r7ZjkDpNL2X/F12jEbFxGMEKMJKvS33qvzsyxGQAANhX+xz/4xHxmez8fzxGsrNTAAAA4ChpfWks/pVEtAAAAIAjK83mwCZpOZ8LMBZpWi535vB+Mk6ntXqj+bnF+ubaQmeu7ESU0sXlWnUqnys8EaWkvT2dz7Htbl/ZtT0TEe9FxA/GT2Xb5fl6baHoix8AAABwTJzZNf7/x3g2/j9RdF4AAADAgE0UnQAAAABw6Iz/AQAA4Ogz/gcAAIAj7Wu3b7eXVvf51wv3tzZX6vcvL1QbK+XVzfnyfH1jvbxUry9lv9m3ut/n1er19S/E2ubDSrPaaFYaW9v3Vuuba817y689AhsAAAAYovfOPvldEhE7XzyVLW3vFJ0UMBTJPvXZQ0Ke5Rt/GEJCwNCMFJ0AUJjRohMAClMqOgGgcPtdB+g7eefXg88FAAA4HJOf6n//37UBONrSohMAAIbO/X84vkqvzwC8WlwmQFE+tk/929//b7XeKCEAAGDgxrIlScv5vcCxSNNyOeLd7LEApWRxuVadyscHvx0vnWhvT2fvTPadMwwAAAAAAAAAAAAAAAAAAAAAAAAAdLRaSbQAAACAIy0i/VOS/Zp/xOT4hbHd1wfeSf45nq0j4sFP7v7o4VyzuTHd3v+3l/ubP873XyniCgYAAACwW3ec3h3HAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAgvXj+aL67DDPuX74cERM94589ma1ORikiTv89idFX3pdExMgA4u88joj3e8VP2mnFRHSy6BX/VIHx04g4M4D4cJw9afc/N3t9/9I4l617f/9G8+Vt9e//0uj2fyN9+p93Dxjjg6e/qPSN/zjig9He/U83ftIn/vkDxv/mN7a3+9W1fhox2fP4k7wWq9JcXa80trYvL6/OLVWXqmszM9PXZq/PXp2dqiwu16r5vz1jfP/Tv/zPXu0/3Sf+xD7tv3DA9v/76cPnn+gUS73iXzzf+/j7fp/4aX7s+2xebtdPdss7nfKrPvz5bz7cq/0Lfdr/8u/f40DbjnnxgO2/dOc7zw74UgBgCBpb2ytztVp1460Kg/qcNyykUUBQhUMqnPhopKHQKezVayTD66AAAICB+d9Jf9GZAAAAAAAAAAAAAAAAAAAAwPE1jJ8T2x1zp5imAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs6b8BAAD///JI2KQ=")
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r3=>0x0})
connect$can_bcm(r2, &(0x7f00000000c0)={0x1d, r3}, 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r1, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.425582676s ago: executing program 1 (id=5716):
r0 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
mq_notify(r0, 0x0)

1.425404506s ago: executing program 0 (id=5717):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x2, 0x2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000440)=ANY=[@ANYBLOB="180000001400010300000000000000001e0000"], 0x18}}, 0x0)

1.394662567s ago: executing program 1 (id=5718):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_clone3(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
gettid()
signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)

1.253415849s ago: executing program 6 (id=5719):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=""/257, 0x0, 0x101, 0x6}, 0x28)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2250)

625.911819ms ago: executing program 3 (id=5720):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000001200)={[{@block_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)

625.555729ms ago: executing program 4 (id=5721):
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open_by_handle_at(0xffffffffffffffff, 0x0, 0x1)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r3, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0x0, 0x2, {0x4, 0x1}, 0x3, 0x800})
mkdirat(0xffffffffffffff9c, 0x0, 0x195)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r4, 0x4b49, &(0x7f0000001400)={0x60, "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"})

529.261661ms ago: executing program 0 (id=5722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0x4}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x6, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='ext4_remove_blocks\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='ext4_remove_blocks\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0xa08000, &(0x7f0000000240), 0xfe, 0x56b, &(0x7f00000003c0)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000280)=ANY=[], 0xe01, 0x0)
rename(&(0x7f0000000300)='./file0\x00', &(0x7f00000000c0)='./file1\x00')

9.443999ms ago: executing program 0 (id=5723):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000002140)=[{{0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000000d40)="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", 0x6a0}], 0x1}}], 0x1, 0x448c0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

0s ago: executing program 1 (id=5733):
io_uring_enter(0xffffffffffffffff, 0x47fa, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a0103000000000000000001000000050a03000000000000000000010020000900030073797a320000000014000000110001"], 0x68}}, 0x200000d4)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000980)=ANY=[@ANYBLOB="12010000b1bd2f087d0403508c2f010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f00000000c0)={0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="0000f50000000341e9"], 0x0}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000002c0)={0x1c, &(0x7f00000001c0)={0x20, 0x5}, 0x0, 0x0})

kernel console output (not intermixed with test programs):

81 - 0
[  322.835925][T15583] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.914969][T15737] FAULT_INJECTION: forcing a failure.
[  322.914969][T15737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.928141][T15737] CPU: 1 UID: 0 PID: 15737 Comm: syz.5.4548 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[  322.928166][T15737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  322.928218][T15737] Call Trace:
[  322.928224][T15737]  <TASK>
[  322.928232][T15737]  __dump_stack+0x1d/0x30
[  322.928255][T15737]  dump_stack_lvl+0xe8/0x140
[  322.928275][T15737]  dump_stack+0x15/0x1b
[  322.928290][T15737]  should_fail_ex+0x265/0x280
[  322.928332][T15737]  should_fail+0xb/0x20
[  322.928358][T15737]  should_fail_usercopy+0x1a/0x20
[  322.928390][T15737]  _copy_from_user+0x1c/0xb0
[  322.928411][T15737]  ___sys_sendmsg+0xc1/0x1d0
[  322.928516][T15737]  __x64_sys_sendmsg+0xd4/0x160
[  322.928548][T15737]  x64_sys_call+0x2999/0x2fb0
[  322.928566][T15737]  do_syscall_64+0xd2/0x200
[  322.928647][T15737]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  322.928673][T15737]  ? clear_bhb_loop+0x40/0x90
[  322.928761][T15737]  ? clear_bhb_loop+0x40/0x90
[  322.928779][T15737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.928798][T15737] RIP: 0033:0x7fa9e5c6e929
[  322.928814][T15737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.928860][T15737] RSP: 002b:00007fa9e42d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  322.928880][T15737] RAX: ffffffffffffffda RBX: 00007fa9e5e95fa0 RCX: 00007fa9e5c6e929
[  322.928959][T15737] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000007
[  322.928970][T15737] RBP: 00007fa9e42d7090 R08: 0000000000000000 R09: 0000000000000000
[  322.928981][T15737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.929049][T15737] R13: 0000000000000000 R14: 00007fa9e5e95fa0 R15: 00007ffeca8c2658
[  322.929075][T15737]  </TASK>
[  323.223517][T15745] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4606'.
[  323.273761][T15758] netlink: 'syz.3.4611': attribute type 10 has an invalid length.
[  323.283698][T15758] bond0: (slave dummy0): Releasing backup interface
[  323.292150][T15758] team0: Failed to send options change via netlink (err -105)
[  323.299678][T15758] team0: Port device dummy0 added
[  323.307659][T15758] netlink: 'syz.3.4611': attribute type 10 has an invalid length.
[  323.316635][T15758] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  323.327077][T15758] team0: Failed to send options change via netlink (err -105)
[  323.334834][T15758] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  323.343794][T15758] team0: Port device dummy0 removed
[  323.350736][T15758] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  323.396745][T15763] netlink: 'syz.3.4612': attribute type 3 has an invalid length.
[  323.409184][T15763] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.460740][T15764] SET target dimension over the limit!
[  323.471644][T15763] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.533701][T15763] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.691655][T15763] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.785197][T15768] lo speed is unknown, defaulting to 1000
[  324.011979][T15763] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.042585][T15763] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.076504][T15763] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.098153][T15763] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.144209][T15771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  324.193407][T15771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  324.208852][T15774] loop4: detected capacity change from 0 to 512
[  324.232255][T15774] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.244873][T15774] ext4 filesystem being mounted at /295/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  324.252605][T15771] loop1: detected capacity change from 0 to 256
[  324.498118][T15759] IPVS: set_ctl: invalid protocol: 16 5.0.0.0:0
[  324.638734][T15809] netlink: 'syz.0.4630': attribute type 10 has an invalid length.
[  324.666961][T15809] bond0: (slave dummy0): Releasing backup interface
[  324.680842][T15809] team0: Failed to send options change via netlink (err -105)
[  324.688435][T15809] team0: Port device dummy0 added
[  324.701095][T15809] netlink: 'syz.0.4630': attribute type 10 has an invalid length.
[  324.711196][T15809] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  324.724828][T15809] team0: Failed to send options change via netlink (err -105)
[  324.732545][T15809] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  324.741739][T15809] team0: Port device dummy0 removed
[  324.749205][T15809] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  324.960402][T15844] loop3: detected capacity change from 0 to 512
[  324.977337][T15844] EXT4-fs: Ignoring removed nomblk_io_submit option
[  324.994727][T15844] EXT4-fs (loop3): filesystem is read-only
[  325.000749][T15844] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  325.017900][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.037846][T15844] EXT4-fs (loop3): filesystem is read-only
[  325.043876][T15844] EXT4-fs (loop3): orphan cleanup on readonly fs
[  325.064112][T15844] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #16: comm syz.3.4646: iget: bad i_size value: 648518346341360424
[  325.077586][T15844] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4646: couldn't read orphan inode 16 (err -117)
[  325.098564][T15844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  325.149045][T15844] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4646'.
[  325.191189][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.235036][T15850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4648'.
[  325.281589][T15857] loop4: detected capacity change from 0 to 512
[  325.288590][T15857] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  325.309035][T15857] EXT4-fs (loop4): 1 truncate cleaned up
[  325.315055][T15857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.380026][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.440396][T15862] loop3: detected capacity change from 0 to 8192
[  325.458651][T15862] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  325.560136][T15868] loop1: detected capacity change from 0 to 128
[  325.716210][T15892] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4663'.
[  325.833925][ T3906] bio_check_eod: 1997 callbacks suppressed
[  325.833949][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.833949][ T3906] loop1: rw=1, sector=153, nr_sectors = 8 limit=128
[  325.856046][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.856046][ T3906] loop1: rw=1, sector=169, nr_sectors = 8 limit=128
[  325.869758][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.869758][ T3906] loop1: rw=1, sector=185, nr_sectors = 8 limit=128
[  325.883823][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.883823][ T3906] loop1: rw=1, sector=201, nr_sectors = 8 limit=128
[  325.900467][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.900467][ T3906] loop1: rw=1, sector=217, nr_sectors = 8 limit=128
[  325.916534][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.916534][ T3906] loop1: rw=1, sector=233, nr_sectors = 8 limit=128
[  325.939535][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.939535][ T3906] loop1: rw=1, sector=249, nr_sectors = 8 limit=128
[  325.954749][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.954749][ T3906] loop1: rw=1, sector=265, nr_sectors = 8 limit=128
[  325.969305][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.969305][ T3906] loop1: rw=1, sector=281, nr_sectors = 8 limit=128
[  325.983255][ T3906] kworker/u8:21: attempt to access beyond end of device
[  325.983255][ T3906] loop1: rw=1, sector=297, nr_sectors = 8 limit=128
[  326.009529][T15913] netlink: 'syz.5.4673': attribute type 10 has an invalid length.
[  326.020626][T15913] team0: Port device dummy0 added
[  326.031459][T15913] netlink: 'syz.5.4673': attribute type 10 has an invalid length.
[  326.039840][T15913] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  326.050447][T15913] team0: Failed to send options change via netlink (err -105)
[  326.059935][T15906] loop4: detected capacity change from 0 to 1024
[  326.072182][T15913] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  326.082905][T15913] team0: Port device dummy0 removed
[  326.094881][T15913] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  326.110407][T15906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.164370][T15922] loop5: detected capacity change from 0 to 1024
[  326.206247][T15922] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.352242][T15932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4679'.
[  326.446401][T15944] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4683'.
[  326.450698][T15583] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.465934][T15944] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4683'.
[  326.474905][T15944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4683'.
[  326.499894][T15944] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=15944 comm=syz.0.4683
[  326.512906][T15944] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=15944 comm=syz.0.4683
[  326.561971][T15950] lo speed is unknown, defaulting to 1000
[  326.585683][T15951] lo speed is unknown, defaulting to 1000
[  326.738943][T15954] pimreg: entered allmulticast mode
[  326.780068][T15954] pimreg: left allmulticast mode
[  326.853237][   T29] kauditd_printk_skb: 495 callbacks suppressed
[  326.853250][   T29] audit: type=1326 audit(1750826934.698:26350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  326.889111][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.900235][   T29] audit: type=1326 audit(1750826934.738:26351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  326.923889][   T29] audit: type=1326 audit(1750826934.738:26352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  326.947529][   T29] audit: type=1326 audit(1750826934.738:26353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  326.971254][   T29] audit: type=1326 audit(1750826934.738:26354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  326.995334][   T29] audit: type=1326 audit(1750826934.738:26355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  327.018968][   T29] audit: type=1326 audit(1750826934.738:26356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  327.042625][   T29] audit: type=1326 audit(1750826934.738:26357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  327.066198][   T29] audit: type=1326 audit(1750826934.738:26358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  327.089776][   T29] audit: type=1326 audit(1750826934.738:26359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15957 comm="syz.0.4686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  327.222566][T15972] loop4: detected capacity change from 0 to 128
[  327.488749][T15985] __nla_validate_parse: 1 callbacks suppressed
[  327.488857][T15985] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4697'.
[  327.513126][T15985] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4697'.
[  327.594625][T15990] netlink: 'syz.0.4708': attribute type 3 has an invalid length.
[  327.599272][T15995] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=15995 comm=syz.4.4697
[  327.619383][T15990] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.631910][T15995] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=15995 comm=syz.4.4697
[  327.655724][T16000] SET target dimension over the limit!
[  327.670332][T15990] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.689608][T16002] lo speed is unknown, defaulting to 1000
[  327.743273][T16004] pimreg: entered allmulticast mode
[  327.752911][T16004] pimreg: left allmulticast mode
[  327.765425][T15990] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.811039][T15990] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.907428][T15990] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  327.919811][T15990] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.928743][T16008] FAULT_INJECTION: forcing a failure.
[  327.928743][T16008] name failslab, interval 1, probability 0, space 0, times 0
[  327.941437][T16008] CPU: 0 UID: 0 PID: 16008 Comm: syz.1.4705 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[  327.941466][T16008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.941478][T16008] Call Trace:
[  327.941484][T16008]  <TASK>
[  327.941492][T16008]  __dump_stack+0x1d/0x30
[  327.941578][T16008]  dump_stack_lvl+0xe8/0x140
[  327.941595][T16008]  dump_stack+0x15/0x1b
[  327.941611][T16008]  should_fail_ex+0x265/0x280
[  327.941713][T16008]  should_failslab+0x8c/0xb0
[  327.941736][T16008]  __kmalloc_node_noprof+0xa9/0x410
[  327.941840][T16008]  ? __rcu_read_unlock+0x4f/0x70
[  327.941861][T16008]  ? qdisc_alloc+0x65/0x440
[  327.941892][T16008]  qdisc_alloc+0x65/0x440
[  327.941961][T16008]  ? __rcu_read_unlock+0x4f/0x70
[  327.941980][T16008]  qdisc_create_dflt+0x7f/0x2d0
[  327.942027][T16008]  dev_activate+0x209/0x9e0
[  327.942133][T16008]  __dev_open+0x472/0x530
[  327.942157][T16008]  __dev_change_flags+0x163/0x400
[  327.942187][T16008]  netif_change_flags+0x5a/0xd0
[  327.942247][T16008]  dev_change_flags+0xce/0x180
[  327.942270][T16008]  ? netdev_name_node_lookup+0xa4/0xd0
[  327.942304][T16008]  dev_ifsioc+0x44b/0xaa0
[  327.942322][T16008]  dev_ioctl+0x70a/0x960
[  327.942378][T16008]  sock_do_ioctl+0x197/0x220
[  327.942403][T16008]  sock_ioctl+0x41b/0x610
[  327.942426][T16008]  ? __pfx_sock_ioctl+0x10/0x10
[  327.942461][T16008]  __se_sys_ioctl+0xcb/0x140
[  327.942489][T16008]  __x64_sys_ioctl+0x43/0x50
[  327.942550][T16008]  x64_sys_call+0x19a8/0x2fb0
[  327.942645][T16008]  do_syscall_64+0xd2/0x200
[  327.942663][T16008]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  327.942689][T16008]  ? clear_bhb_loop+0x40/0x90
[  327.942709][T16008]  ? clear_bhb_loop+0x40/0x90
[  327.942849][T16008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.942867][T16008] RIP: 0033:0x7faee0a7e929
[  327.942882][T16008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.942899][T16008] RSP: 002b:00007faedf0e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  327.942918][T16008] RAX: ffffffffffffffda RBX: 00007faee0ca5fa0 RCX: 00007faee0a7e929
[  327.942930][T16008] RDX: 0000200000000140 RSI: 0000000000008914 RDI: 000000000000000c
[  327.942943][T16008] RBP: 00007faedf0e7090 R08: 0000000000000000 R09: 0000000000000000
[  327.943004][T16008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.943016][T16008] R13: 0000000000000000 R14: 00007faee0ca5fa0 R15: 00007fffc8765b08
[  327.943035][T16008]  </TASK>
[  327.943042][T16008] pim6reg1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  328.197433][T16008] pim6reg1: entered promiscuous mode
[  328.202940][T16008] pim6reg1: entered allmulticast mode
[  328.212146][T15990] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  328.229103][T15990] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  328.455400][T16027] netlink: 'syz.4.4715': attribute type 10 has an invalid length.
[  328.488069][T16027] bond0: (slave dummy0): Releasing backup interface
[  328.506366][T16027] team0: Port device dummy0 added
[  328.537330][T16027] netlink: 'syz.4.4715': attribute type 10 has an invalid length.
[  328.551577][T16027] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  328.568489][T16037] FAULT_INJECTION: forcing a failure.
[  328.568489][T16037] name failslab, interval 1, probability 0, space 0, times 0
[  328.581233][T16037] CPU: 0 UID: 0 PID: 16037 Comm: syz.3.4719 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[  328.581260][T16037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  328.581280][T16037] Call Trace:
[  328.581286][T16037]  <TASK>
[  328.581295][T16037]  __dump_stack+0x1d/0x30
[  328.581315][T16037]  dump_stack_lvl+0xe8/0x140
[  328.581333][T16037]  dump_stack+0x15/0x1b
[  328.581370][T16037]  should_fail_ex+0x265/0x280
[  328.581397][T16037]  should_failslab+0x8c/0xb0
[  328.581422][T16037]  kmem_cache_alloc_node_noprof+0x57/0x320
[  328.581451][T16037]  ? __alloc_skb+0x101/0x320
[  328.581476][T16037]  __alloc_skb+0x101/0x320
[  328.581587][T16037]  netlink_alloc_large_skb+0xba/0xf0
[  328.581613][T16037]  netlink_sendmsg+0x3cf/0x6b0
[  328.581696][T16037]  ? __pfx_netlink_sendmsg+0x10/0x10
[  328.581714][T16037]  __sock_sendmsg+0x142/0x180
[  328.581736][T16037]  ____sys_sendmsg+0x31e/0x4e0
[  328.581812][T16037]  ___sys_sendmsg+0x17b/0x1d0
[  328.581855][T16037]  __x64_sys_sendmsg+0xd4/0x160
[  328.581895][T16037]  x64_sys_call+0x2999/0x2fb0
[  328.581915][T16037]  do_syscall_64+0xd2/0x200
[  328.581987][T16037]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  328.582019][T16037]  ? clear_bhb_loop+0x40/0x90
[  328.582039][T16037]  ? clear_bhb_loop+0x40/0x90
[  328.582109][T16037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.582146][T16037] RIP: 0033:0x7fe80558e929
[  328.582159][T16037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.582271][T16037] RSP: 002b:00007fe803bf7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  328.582287][T16037] RAX: ffffffffffffffda RBX: 00007fe8057b5fa0 RCX: 00007fe80558e929
[  328.582301][T16037] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  328.582311][T16037] RBP: 00007fe803bf7090 R08: 0000000000000000 R09: 0000000000000000
[  328.582366][T16037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  328.582379][T16037] R13: 0000000000000000 R14: 00007fe8057b5fa0 R15: 00007ffd664f8dc8
[  328.582396][T16037]  </TASK>
[  328.583362][T16027] team0: Failed to send options change via netlink (err -105)
[  328.798872][T16027] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  328.807974][T16027] team0: Port device dummy0 removed
[  328.810578][T16049] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  328.815908][T16027] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  328.831230][T16049] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  328.964101][T16073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  328.982937][T16073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.005918][T16073] loop3: detected capacity change from 0 to 256
[  329.026257][T16069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4735'.
[  329.127924][T16092] lo speed is unknown, defaulting to 1000
[  329.449467][T16105] syz!: rxe_newlink: already configured on team_slave_0
[  329.849957][T16122] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4755'.
[  330.103900][T16140] FAULT_INJECTION: forcing a failure.
[  330.103900][T16140] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  330.117224][T16140] CPU: 0 UID: 0 PID: 16140 Comm: syz.1.4760 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[  330.117251][T16140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  330.117262][T16140] Call Trace:
[  330.117268][T16140]  <TASK>
[  330.117273][T16140]  __dump_stack+0x1d/0x30
[  330.117303][T16140]  dump_stack_lvl+0xe8/0x140
[  330.117345][T16140]  dump_stack+0x15/0x1b
[  330.117359][T16140]  should_fail_ex+0x265/0x280
[  330.117399][T16140]  should_fail_alloc_page+0xf2/0x100
[  330.117444][T16140]  __alloc_frozen_pages_noprof+0xff/0x360
[  330.117491][T16140]  alloc_pages_mpol+0xb3/0x250
[  330.117518][T16140]  vma_alloc_folio_noprof+0x1aa/0x300
[  330.117546][T16140]  do_wp_page+0x673/0x2400
[  330.117644][T16140]  ? __rcu_read_lock+0x37/0x50
[  330.117666][T16140]  handle_mm_fault+0x77d/0x2be0
[  330.117683][T16140]  ? __rcu_read_unlock+0x4f/0x70
[  330.117707][T16140]  do_user_addr_fault+0x3fe/0x1090
[  330.117797][T16140]  exc_page_fault+0x62/0xa0
[  330.117823][T16140]  asm_exc_page_fault+0x26/0x30
[  330.117849][T16140] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  330.117873][T16140] Code: f1 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  330.117889][T16140] RSP: 0018:ffffc90003abfda8 EFLAGS: 00050202
[  330.117905][T16140] RAX: ffff8881037adbd8 RBX: 0000000000000050 RCX: 0000000000000050
[  330.117973][T16140] RDX: 0000000000000000 RSI: ffffc90003abfe20 RDI: 0000200000002780
[  330.117984][T16140] RBP: ffffc9000653bdc8 R08: 00000000000000ba R09: 0000000000000000
[  330.117996][T16140] R10: 0001c90003abfe20 R11: 0001c90003abfe6f R12: 00002000000027d0
[  330.118008][T16140] R13: 00007ffffffff000 R14: 0000200000002780 R15: ffffc90003abfe20
[  330.118027][T16140]  _copy_to_user+0x7c/0xa0
[  330.118083][T16140]  seccomp_notify_ioctl+0x635/0xe90
[  330.118126][T16140]  ? __pfx_recv_wake_function+0x10/0x10
[  330.118232][T16140]  ? __pfx_seccomp_notify_ioctl+0x10/0x10
[  330.118254][T16140]  __se_sys_ioctl+0xcb/0x140
[  330.118282][T16140]  __x64_sys_ioctl+0x43/0x50
[  330.118309][T16140]  x64_sys_call+0x19a8/0x2fb0
[  330.118439][T16140]  do_syscall_64+0xd2/0x200
[  330.118515][T16140]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  330.118540][T16140]  ? clear_bhb_loop+0x40/0x90
[  330.118558][T16140]  ? clear_bhb_loop+0x40/0x90
[  330.118577][T16140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.118599][T16140] RIP: 0033:0x7faee0a7e929
[  330.118639][T16140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.118655][T16140] RSP: 002b:00007faedf0c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  330.118670][T16140] RAX: ffffffffffffffda RBX: 00007faee0ca6080 RCX: 00007faee0a7e929
[  330.118681][T16140] RDX: 0000200000002780 RSI: 00000000c0502100 RDI: 0000000000000003
[  330.118691][T16140] RBP: 00007faedf0c6090 R08: 0000000000000000 R09: 0000000000000000
[  330.118709][T16140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.118721][T16140] R13: 0000000000000001 R14: 00007faee0ca6080 R15: 00007fffc8765b08
[  330.118737][T16140]  </TASK>
[  330.772542][T16145] lo speed is unknown, defaulting to 1000
[  331.227149][T16158] loop1: detected capacity change from 0 to 256
[  331.291039][T16166] netlink: 'syz.1.4774': attribute type 10 has an invalid length.
[  331.301004][T16166] bond0: (slave dummy0): Releasing backup interface
[  331.310144][T16166] team0: Failed to send options change via netlink (err -105)
[  331.317912][T16166] team0: Port device dummy0 added
[  331.329979][T16166] netlink: 'syz.1.4774': attribute type 10 has an invalid length.
[  331.338482][T16166] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  331.349833][T16166] team0: Failed to send options change via netlink (err -105)
[  331.357340][T16166] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  331.376499][T16166] team0: Port device dummy0 removed
[  331.384127][T16166] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  331.478554][T16171] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4776'.
[  331.497279][T16171] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4776'.
[  331.565352][T16177] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=16177 comm=syz.1.4776
[  331.589691][T16177] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=16177 comm=syz.1.4776
[  331.716476][T16179] lo speed is unknown, defaulting to 1000
[  332.054229][   T29] kauditd_printk_skb: 157 callbacks suppressed
[  332.054242][   T29] audit: type=1326 audit(1750826939.898:26517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16181 comm="syz.3.4779" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe80558e929 code=0x0
[  332.164349][   T29] audit: type=1326 audit(1750826940.008:26518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.190287][   T29] audit: type=1326 audit(1750826940.038:26519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.214072][   T29] audit: type=1326 audit(1750826940.038:26520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.237720][   T29] audit: type=1326 audit(1750826940.038:26521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.261386][   T29] audit: type=1326 audit(1750826940.038:26522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.284963][   T29] audit: type=1326 audit(1750826940.038:26523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.492671][T16194] loop1: detected capacity change from 0 to 256
[  332.526926][T16199] netlink: 'syz.5.4786': attribute type 10 has an invalid length.
[  332.552250][T16199] bond0: (slave dummy0): Releasing backup interface
[  332.569503][   T29] audit: type=1326 audit(1750826940.408:26524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16188 comm="syz.0.4782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be817e929 code=0x7ffc0000
[  332.614829][T16202] netlink: 'syz.5.4786': attribute type 10 has an invalid length.
[  332.636107][T16199] team0: Failed to send options change via netlink (err -105)
[  332.643738][T16199] team0: Port device dummy0 added
[  332.666995][   T29] audit: type=1326 audit(1750826940.498:26525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16205 comm="syz.1.4789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  332.690710][   T29] audit: type=1326 audit(1750826940.498:26526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16205 comm="syz.1.4789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  332.742259][T16202] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  332.779123][T16202] team0: Failed to send options change via netlink (err -105)
[  332.800709][T16202] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  332.827961][T16202] team0: Port device dummy0 removed
[  332.851197][T16202] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  332.983846][T16221] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4795'.
[  333.060060][T16226] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=16226 comm=syz.5.4795
[  333.083287][T16226] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=16226 comm=syz.5.4795
[  333.764261][T16246] netlink: 'syz.3.4804': attribute type 10 has an invalid length.
[  333.774734][T16246] bond0: (slave dummy0): Releasing backup interface
[  333.784024][T16246] team0: Failed to send options change via netlink (err -105)
[  333.791633][T16246] team0: Port device dummy0 added
[  333.807670][T16246] netlink: 'syz.3.4804': attribute type 10 has an invalid length.
[  333.822116][T16246] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  333.833648][T16246] team0: Failed to send options change via netlink (err -105)
[  333.841397][T16246] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  333.850397][T16246] team0: Port device dummy0 removed
[  333.857733][T16246] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  333.952561][T16253] lo speed is unknown, defaulting to 1000
[  334.932785][T16282] netlink: 'syz.0.4817': attribute type 10 has an invalid length.
[  334.953738][T16282] bond0: (slave dummy0): Releasing backup interface
[  334.967371][T16282] team0: Failed to send options change via netlink (err -105)
[  334.974908][T16282] team0: Port device dummy0 added
[  334.999516][T16282] netlink: 'syz.0.4817': attribute type 10 has an invalid length.
[  335.022548][T16282] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  335.050586][T16282] team0: Failed to send options change via netlink (err -105)
[  335.069321][T16282] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  335.089593][T16282] team0: Port device dummy0 removed
[  335.108728][T16282] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  335.147060][T16286] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4818'.
[  335.200897][T16286] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=16286 comm=syz.0.4818
[  335.225901][T16286] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=16286 comm=syz.0.4818
[  335.562136][T16312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  335.570733][T16312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  335.592988][T16312] loop3: detected capacity change from 0 to 256
[  335.609572][T16315] netlink: 'syz.4.4829': attribute type 10 has an invalid length.
[  335.619932][T16315] bond0: (slave dummy0): Releasing backup interface
[  335.630692][T16315] team0: Port device dummy0 added
[  335.641760][T16315] netlink: 'syz.4.4829': attribute type 10 has an invalid length.
[  335.650122][T16315] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  335.661488][T16315] team0: Failed to send options change via netlink (err -105)
[  335.672502][T16315] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  335.681437][T16315] team0: Port device dummy0 removed
[  335.689712][T16315] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  335.819010][T16328] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4830'.
[  335.901915][T16331] lo speed is unknown, defaulting to 1000
[  336.044162][T16332] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=16332 comm=syz.1.4830
[  336.057851][T16332] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=44 sclass=netlink_tcpdiag_socket pid=16332 comm=syz.1.4830
[  336.783661][T16352] netlink: 'syz.5.4843': attribute type 10 has an invalid length.
[  336.830565][T16352] bond0: (slave dummy0): Releasing backup interface
[  336.864146][T16359] netlink: 'syz.5.4843': attribute type 10 has an invalid length.
[  336.872221][T16352] team0: Failed to send options change via netlink (err -105)
[  336.879832][T16352] team0: Port device dummy0 added
[  336.890112][T16359] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  336.934897][T16359] team0: Failed to send options change via netlink (err -105)
[  336.953016][T16369] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  336.967843][T16359] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  336.979014][T16359] team0: Port device dummy0 removed
[  336.984349][T16369] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  336.994769][T16359] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  337.032694][T16371] tap0: tun_chr_ioctl cmd 1074025681
[  337.038515][T16371] tap0: tun_chr_ioctl cmd 1074025698
[  337.106314][T16374] loop5: detected capacity change from 0 to 1024
[  337.113745][T16374] EXT4-fs: Ignoring removed bh option
[  337.128849][T16374] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.152457][T15583] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.259102][T16383] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  337.267614][T16383] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  337.518775][   T29] kauditd_printk_skb: 155 callbacks suppressed
[  337.518790][   T29] audit: type=1400 audit(1750826945.368:26682): avc:  denied  { read } for  pid=16395 comm="syz.3.4860" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  337.547936][   T29] audit: type=1400 audit(1750826945.368:26683): avc:  denied  { open } for  pid=16395 comm="syz.3.4860" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  337.572883][   T29] audit: type=1400 audit(1750826945.418:26684): avc:  denied  { getopt } for  pid=16393 comm="syz.0.4859" lport=40802 faddr=100.1.1.0 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  337.834918][T16403] loop1: detected capacity change from 0 to 512
[  337.849032][T16403] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  337.863210][T16403] EXT4-fs (loop1): Couldn't remount RDWR because of unprocessed orphan inode list.  Please umount/remount instead
[  337.914619][T11907] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.014901][T16409] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4864'.
[  338.981865][T16434] loop3: detected capacity change from 0 to 128
[  338.992128][T16434] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  339.000005][T16434] FAT-fs (loop3): Filesystem has been set read-only
[  339.006885][T16434] bio_check_eod: 22 callbacks suppressed
[  339.006899][T16434] syz.3.4872: attempt to access beyond end of device
[  339.006899][T16434] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  339.117276][T16434] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  339.125247][T16434] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  339.134351][T16434] syz.3.4872: attempt to access beyond end of device
[  339.134351][T16434] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  339.150218][T16436] syz.3.4872: attempt to access beyond end of device
[  339.150218][T16436] loop3: rw=0, sector=2065, nr_sectors = 1 limit=128
[  339.163535][T16436] buffer_io_error: 2 callbacks suppressed
[  339.163546][T16436] Buffer I/O error on dev loop3, logical block 2065, async page read
[  339.207567][T16436] syz.3.4872: attempt to access beyond end of device
[  339.207567][T16436] loop3: rw=0, sector=2066, nr_sectors = 1 limit=128
[  339.218083][T16437] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4871'.
[  339.220845][T16436] Buffer I/O error on dev loop3, logical block 2066, async page read
[  339.239321][T16436] syz.3.4872: attempt to access beyond end of device
[  339.239321][T16436] loop3: rw=0, sector=2067, nr_sectors = 1 limit=128
[  339.252636][T16436] Buffer I/O error on dev loop3, logical block 2067, async page read
[  339.260942][T16436] syz.3.4872: attempt to access beyond end of device
[  339.260942][T16436] loop3: rw=0, sector=2068, nr_sectors = 1 limit=128
[  339.274245][T16436] Buffer I/O error on dev loop3, logical block 2068, async page read
[  339.282443][T16436] syz.3.4872: attempt to access beyond end of device
[  339.282443][T16436] loop3: rw=0, sector=2069, nr_sectors = 1 limit=128
[  339.295740][T16436] Buffer I/O error on dev loop3, logical block 2069, async page read
[  339.304007][T16436] syz.3.4872: attempt to access beyond end of device
[  339.304007][T16436] loop3: rw=0, sector=2070, nr_sectors = 1 limit=128
[  339.317244][T16436] Buffer I/O error on dev loop3, logical block 2070, async page read
[  339.318018][ T3407] usb usb8-port1: attempt power cycle
[  339.325607][T16436] syz.3.4872: attempt to access beyond end of device
[  339.325607][T16436] loop3: rw=0, sector=2071, nr_sectors = 1 limit=128
[  339.344068][T16436] Buffer I/O error on dev loop3, logical block 2071, async page read
[  339.352841][T16436] syz.3.4872: attempt to access beyond end of device
[  339.352841][T16436] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128
[  339.366081][T16436] Buffer I/O error on dev loop3, logical block 2072, async page read
[  339.374261][T16434] Buffer I/O error on dev loop3, logical block 2065, async page read
[  339.382615][T16434] Buffer I/O error on dev loop3, logical block 2066, async page read
[  341.256506][   T23] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  341.264780][   T23] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  342.234361][T16515] loop5: detected capacity change from 0 to 1024
[  342.287693][ T3407] usb usb8-port1: unable to enumerate USB device
[  342.700833][T16515] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.198309][T15583] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.335885][T16544] loop4: detected capacity change from 0 to 512
[  343.388156][T16544] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  343.454761][T16544] EXT4-fs (loop4): 1 truncate cleaned up
[  343.467907][T16544] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.543368][   T29] audit: type=1400 audit(1750826951.388:26685): avc:  denied  { create } for  pid=16543 comm="syz.4.4911" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  343.612460][   T29] audit: type=1400 audit(1750826951.438:26686): avc:  denied  { read } for  pid=16543 comm="syz.4.4911" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  343.657266][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.728104][T16555] usb usb8: usbfs: process 16555 (syz.4.4914) did not claim interface 0 before use
[  343.798402][T16564] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4917'.
[  343.807607][T16564] netlink: 'syz.1.4917': attribute type 7 has an invalid length.
[  343.815378][T16564] netlink: 'syz.1.4917': attribute type 8 has an invalid length.
[  343.823265][T16564] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4917'.
[  343.904723][T16574] loop1: detected capacity change from 0 to 128
[  343.912902][T16574] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  343.925402][T16574] ext4 filesystem being mounted at /331/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  343.948502][T11907] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  344.110005][T16584] loop3: detected capacity change from 0 to 512
[  344.410405][T16584] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  344.442190][T16584] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.454835][T16584] ext4 filesystem being mounted at /411/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.510208][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.653843][T16595] loop3: detected capacity change from 0 to 1024
[  345.361568][T16601] loop5: detected capacity change from 0 to 8192
[  345.387945][T16601] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  345.585923][T16605] loop3: detected capacity change from 0 to 1024
[  345.599922][T16607] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4930'.
[  345.608972][T16607] netlink: 'syz.5.4930': attribute type 7 has an invalid length.
[  345.616697][T16607] netlink: 'syz.5.4930': attribute type 8 has an invalid length.
[  345.624503][T16607] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4930'.
[  345.688467][T16605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.717855][   T29] audit: type=1400 audit(1750826953.568:26687): avc:  denied  { setattr } for  pid=16604 comm="syz.3.4931" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  345.758345][T16605] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #14: comm syz.3.4931: attempt to clear invalid blocks 1886221359 len 1
[  345.907784][   T29] audit: type=1400 audit(1750826953.608:26688): avc:  denied  { rename } for  pid=16604 comm="syz.3.4931" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  345.930265][   T29] audit: type=1400 audit(1750826953.608:26689): avc:  denied  { unlink } for  pid=16604 comm="syz.3.4931" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  346.091417][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.134079][T16641] loop3: detected capacity change from 0 to 512
[  347.156429][T16641] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.169311][T16641] ext4 filesystem being mounted at /417/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  347.385391][    T9] usb usb8-port1: attempt power cycle
[  347.392730][T16646] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4943'.
[  347.425728][T16650] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  347.434440][T16650] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  347.996017][T16662] netlink: 'syz.1.4949': attribute type 10 has an invalid length.
[  348.004333][T16662] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.011531][T16662] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.021722][T16662] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.028822][T16662] bridge0: port 2(bridge_slave_1) entered forwarding state
[  348.036161][T16662] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.043213][T16662] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.052598][T16662] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  348.062503][T16663] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4949'.
[  348.072538][T16663] bridge_slave_1: left allmulticast mode
[  348.078351][T16663] bridge_slave_1: left promiscuous mode
[  348.083987][T16663] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.092785][T16663] bridge_slave_0: left allmulticast mode
[  348.098454][T16663] bridge_slave_0: left promiscuous mode
[  348.104167][T16663] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.112778][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.124243][T16665] netlink: 'syz.5.4951': attribute type 1 has an invalid length.
[  348.132762][T16663] bond0: (slave bridge0): Releasing backup interface
[  348.232924][T16665] 8021q: adding VLAN 0 to HW filter on device bond2
[  348.245700][T16668] bond2: (slave ip6erspan0): making interface the new active one
[  348.254454][T16668] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  348.351318][T16677] bridge0: entered promiscuous mode
[  348.744233][T16688] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4958'.
[  349.030296][   T29] audit: type=1326 audit(1750826956.878:26690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16695 comm="syz.5.4962" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa9e5c6e929 code=0x0
[  349.205772][T16707] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  349.214859][T16707] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  349.247806][    T9] usb usb8-port1: unable to enumerate USB device
[  349.267204][T16709] loop4: detected capacity change from 0 to 256
[  349.279956][T16709] FAT-fs (loop4): codepage cp857 not found
[  349.298478][T16712] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  349.518593][T16728] syz_tun: entered allmulticast mode
[  349.532095][T16727] syz_tun: left allmulticast mode
[  350.585749][T16754] loop4: detected capacity change from 0 to 512
[  350.619412][T16754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.634110][T16754] ext4 filesystem being mounted at /344/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.741578][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.862222][   T29] audit: type=1326 audit(1750826958.708:26691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  350.885881][   T29] audit: type=1326 audit(1750826958.708:26692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  350.912613][   T29] audit: type=1326 audit(1750826958.758:26693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  350.919062][T16763] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4986'.
[  350.936273][   T29] audit: type=1326 audit(1750826958.758:26694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  350.945130][T16763] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4986'.
[  350.968765][   T29] audit: type=1326 audit(1750826958.758:26695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  350.977587][T16763] netlink: 'syz.1.4986': attribute type 18 has an invalid length.
[  351.001178][   T29] audit: type=1326 audit(1750826958.758:26696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  351.009010][T16763] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4986'.
[  351.041572][   T29] audit: type=1326 audit(1750826958.758:26697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  351.065223][   T29] audit: type=1326 audit(1750826958.758:26698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  351.088874][   T29] audit: type=1326 audit(1750826958.758:26699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16758 comm="syz.5.4985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fa9e5c6e929 code=0x7ffc0000
[  351.187049][T16779] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  351.195571][T16779] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  351.432367][T16794] loop3: detected capacity change from 0 to 128
[  352.218808][T16805] lo speed is unknown, defaulting to 1000
[  352.414882][T16811] loop5: detected capacity change from 0 to 128
[  352.578356][T16811] bio_check_eod: 26960 callbacks suppressed
[  352.578394][T16811] syz.5.5002: attempt to access beyond end of device
[  352.578394][T16811] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  352.620054][T16811] syz.5.5002: attempt to access beyond end of device
[  352.620054][T16811] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  353.607964][T16811] syz.5.5002: attempt to access beyond end of device
[  353.607964][T16811] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  354.561351][T16811] syz.5.5002: attempt to access beyond end of device
[  354.561351][T16811] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  354.587303][T16813] loop3: detected capacity change from 0 to 1024
[  354.961925][T16811] syz.5.5002: attempt to access beyond end of device
[  354.961925][T16811] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  354.975502][T16811] syz.5.5002: attempt to access beyond end of device
[  354.975502][T16811] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  355.268831][T16811] syz.5.5002: attempt to access beyond end of device
[  355.268831][T16811] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  355.282363][T16819] loop1: detected capacity change from 0 to 512
[  355.282360][T16811] syz.5.5002: attempt to access beyond end of device
[  355.282360][T16811] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  355.289206][T16819] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  355.317765][T16811] syz.5.5002: attempt to access beyond end of device
[  355.317765][T16811] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  355.332234][T16819] EXT4-fs (loop1): 1 truncate cleaned up
[  355.338303][T16819] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.345900][T16811] syz.5.5002: attempt to access beyond end of device
[  355.345900][T16811] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  355.365726][T16813] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.394369][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.412733][T16836] loop3: detected capacity change from 0 to 256
[  355.448418][T16836] FAT-fs (loop3): codepage cp949 not found
[  355.534805][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  355.534826][   T29] audit: type=1400 audit(1750826963.378:26725): avc:  denied  { map } for  pid=16844 comm="syz.3.5015" path="socket:[51029]" dev="sockfs" ino=51029 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  355.567746][T11907] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.036517][   T29] audit: type=1326 audit(1750826963.848:26726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.0.5021" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3be817e929 code=0x0
[  356.084917][T16864] loop5: detected capacity change from 0 to 128
[  356.124695][T16871] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5026'.
[  356.221579][T16874] hub 2-0:1.0: USB hub found
[  356.226346][T16874] hub 2-0:1.0: 8 ports detected
[  356.303301][T16883] lo speed is unknown, defaulting to 1000
[  356.357356][T16884] pimreg: entered allmulticast mode
[  356.372515][T16883] pimreg: left allmulticast mode
[  357.426057][   T29] audit: type=1400 audit(1750826965.268:26727): avc:  denied  { mounton } for  pid=16892 comm="syz.5.5034" path=2F39352FE91F7189591E9233614B dev="tmpfs" ino=512 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  358.543262][T16919] loop4: detected capacity change from 0 to 512
[  358.573296][T16919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.597678][T16919] ext4 filesystem being mounted at /351/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  358.625313][T16927] loop5: detected capacity change from 0 to 512
[  358.649861][   T29] audit: type=1400 audit(1750826966.498:26728): avc:  denied  { setattr } for  pid=16917 comm="syz.4.5042" path="/351/bus" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  358.650349][T16927] EXT4-fs (loop5): 1 orphan inode deleted
[  358.678465][T16919] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #2: comm syz.4.5042: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  358.687827][ T3967] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  358.706175][ T3967] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:58: Failed to release dquot type 1
[  358.738008][T16927] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.751337][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.768615][T16927] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.898410][T15583] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.216276][T16943] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5050'.
[  359.948085][T16964] tmpfs: Unknown parameter 'usrquota'
[  359.954932][    C1] sd 0:0:1:0: [sda] tag#6443 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  359.965317][    C1] sd 0:0:1:0: [sda] tag#6443 CDB: Write(6) 0a 00 00 00 05 00 00 00 02 00 00 00
[  360.035759][T16970] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.5058'.
[  360.564487][T16983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.572980][T16983] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.604260][T16946] syz.0.5051 (16946) used greatest stack depth: 6040 bytes left
[  361.031077][T16993] loop4: detected capacity change from 0 to 128
[  361.178611][T16996] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.204951][T16999] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  361.230816][T16999] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  361.644033][T17013] loop3: detected capacity change from 0 to 512
[  361.652513][T17013] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5072: bg 0: block 393: padding at end of block bitmap is not set
[  361.667096][T17013] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  361.676464][T17013] EXT4-fs (loop3): 2 truncates cleaned up
[  361.683230][T17013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.960514][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.193402][T17022] loop3: detected capacity change from 0 to 512
[  362.206340][T17022] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  362.216250][T17022] EXT4-fs (loop3): orphan cleanup on readonly fs
[  362.224263][T17022] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5
[  362.233694][T17022] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  362.243074][T17022] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5074: Failed to acquire dquot type 1
[  362.255527][T17022] EXT4-fs (loop3): 1 truncate cleaned up
[  362.350817][T17022] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-00000040ed00 ro without journal. Quota mode: writeback.
[  362.364133][T17022] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  362.434869][T17022] EXT4-fs warning (device loop3): ext4_multi_mount_protect:332: MMP startup interrupted, failing mount
[  362.434869][T17022] 
[  362.469357][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-00000040ed00.
[  362.506616][T17033] loop5: detected capacity change from 0 to 512
[  362.514759][T17033] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  363.453520][T17033] EXT4-fs (loop5): 1 truncate cleaned up
[  363.464344][   T29] audit: type=1400 audit(1750826971.278:26729): avc:  denied  { ioctl } for  pid=17040 comm="syz.4.5081" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  363.504098][T17039] lo speed is unknown, defaulting to 1000
[  363.517983][T17033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  364.669449][T15583] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /108/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  364.881098][T15583] EXT4-fs error (device loop5): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  364.960431][T17056] netlink: 'syz.1.5086': attribute type 10 has an invalid length.
[  364.995227][T15583] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /108/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  365.029516][T17058] loop4: detected capacity change from 0 to 2048
[  365.048741][T17056] syz_tun: entered promiscuous mode
[  365.057515][T17056] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  365.081524][T17058] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  365.104028][T15583] EXT4-fs error (device loop5): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  365.208071][T15583] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /108/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  365.255067][T17063] loop1: detected capacity change from 0 to 4096
[  365.261490][   T29] audit: type=1326 audit(1750826973.028:26730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.285092][   T29] audit: type=1326 audit(1750826973.028:26731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.308745][   T29] audit: type=1326 audit(1750826973.028:26732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.332276][   T29] audit: type=1326 audit(1750826973.028:26733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.355856][   T29] audit: type=1326 audit(1750826973.028:26734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.379348][   T29] audit: type=1326 audit(1750826973.028:26735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.402994][   T29] audit: type=1326 audit(1750826973.038:26736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17062 comm="syz.1.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faee0a7e929 code=0x7ffc0000
[  365.538112][ T3920] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  365.553130][T15583] EXT4-fs error (device loop5): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  365.593303][T17063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.606149][ T3920] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 620 with error 28
[  365.618513][ T3920] EXT4-fs (loop4): This should not happen!! Data will be lost
[  365.618513][ T3920] 
[  365.628190][ T3920] EXT4-fs (loop4): Total free blocks count 0
[  365.634176][ T3920] EXT4-fs (loop4): Free/Dirty block details
[  365.640084][ T3920] EXT4-fs (loop4): free_blocks=2415919104
[  365.645797][ T3920] EXT4-fs (loop4): dirty_blocks=624
[  365.651035][ T3920] EXT4-fs (loop4): Block reservation details
[  365.657083][ T3920] EXT4-fs (loop4): i_reserved_data_blocks=39
[  365.727638][T15583] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /108/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  365.750405][T11907] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.760847][T15583] EXT4-fs error (device loop5): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  365.792825][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.832338][T15583] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /108/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  365.912176][T17085] loop3: detected capacity change from 0 to 512
[  365.919963][T15583] EXT4-fs error (device loop5): ext4_empty_dir:3116: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  365.939064][T17085] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.5095: bg 0: block 5: invalid block bitmap
[  366.068141][T17085] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  366.083290][T17085] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5095: invalid indirect mapped block 3 (level 2)
[  366.106864][T17085] EXT4-fs (loop3): 1 orphan inode deleted
[  366.112683][T17085] EXT4-fs (loop3): 1 truncate cleaned up
[  366.143419][T17085] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.228066][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.331189][T15583] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.372043][T17107] loop3: detected capacity change from 0 to 1024
[  366.393009][T17107] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.597954][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.882178][T17132] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  366.919551][T17113] lo speed is unknown, defaulting to 1000
[  366.956310][T17132] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  367.007702][T17136] loop4: detected capacity change from 0 to 128
[  367.262368][T17113] chnl_net:caif_netlink_parms(): no params data found
[  367.349556][T17113] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.356629][T17113] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.363884][T17113] bridge_slave_0: entered allmulticast mode
[  367.370334][T17113] bridge_slave_0: entered promiscuous mode
[  367.377340][T17113] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.384512][T17113] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.392201][T17113] bridge_slave_1: entered allmulticast mode
[  367.399884][T17113] bridge_slave_1: entered promiscuous mode
[  367.539026][T17113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  367.679217][T17113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  367.707046][   T29] kauditd_printk_skb: 25 callbacks suppressed
[  367.707062][   T29] audit: type=1326 audit(1750826975.548:26762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.751785][   T29] audit: type=1326 audit(1750826975.578:26763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.775663][   T29] audit: type=1326 audit(1750826975.588:26764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.799360][   T29] audit: type=1326 audit(1750826975.588:26765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.822954][   T29] audit: type=1326 audit(1750826975.588:26766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.846755][   T29] audit: type=1400 audit(1750826975.588:26767): avc:  denied  { mount } for  pid=17146 comm="syz.1.5116" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  367.869137][   T29] audit: type=1326 audit(1750826975.588:26768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.892750][   T29] audit: type=1326 audit(1750826975.588:26769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.916321][   T29] audit: type=1326 audit(1750826975.588:26770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  367.939927][   T29] audit: type=1326 audit(1750826975.588:26771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17147 comm="syz.3.5117" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe80558e929 code=0x7ffc0000
[  368.016270][T17113] team0: Port device team_slave_0 added
[  368.017360][ T3967] bio_check_eod: 1976 callbacks suppressed
[  368.017372][ T3967] kworker/u8:58: attempt to access beyond end of device
[  368.017372][ T3967] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[  368.022739][T17113] team0: Port device team_slave_1 added
[  368.069270][T17113] batman_adv: batadv0: Adding interface: batadv_slave_0
[  368.076286][T17113] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.102325][T17113] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  368.113659][T17113] batman_adv: batadv0: Adding interface: batadv_slave_1
[  368.120731][T17113] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.146746][T17113] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  368.196438][T17113] hsr_slave_0: entered promiscuous mode
[  368.202775][T17113] hsr_slave_1: entered promiscuous mode
[  368.208599][T17113] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  368.216139][T17113] Cannot create hsr debugfs directory
[  368.274495][T17113] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  368.283736][T17113] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  368.292654][T17113] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  368.300858][T17113] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  368.315993][T17166] netlink: 'syz.1.5123': attribute type 10 has an invalid length.
[  368.341579][T17113] 8021q: adding VLAN 0 to HW filter on device bond0
[  368.352852][T17113] 8021q: adding VLAN 0 to HW filter on device team0
[  368.362938][ T3920] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.370090][ T3920] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.381792][ T3920] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.388925][ T3920] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.446088][T17113] 8021q: adding VLAN 0 to HW filter on device batadv0
[  368.534904][T17113] veth0_vlan: entered promiscuous mode
[  368.542968][T17113] veth1_vlan: entered promiscuous mode
[  368.565105][T17113] veth0_macvtap: entered promiscuous mode
[  368.577802][T17201] loop1: detected capacity change from 0 to 1024
[  368.578865][T17113] veth1_macvtap: entered promiscuous mode
[  368.589100][T17201] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  368.599711][T17201] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[  368.602965][T17113] batman_adv: batadv0: Interface activated: batadv_slave_0
[  368.616870][T17201] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  368.622132][T17113] batman_adv: batadv0: Interface activated: batadv_slave_1
[  368.637074][T17113] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  368.644591][T17201] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.5127: unexpected bad inode w/o EXT4_IGET_BAD
[  368.645898][T17113] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  368.667667][T17113] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  368.667951][T17201] EXT4-fs (loop1): no journal found
[  368.676361][T17113] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  368.681565][T17201] EXT4-fs (loop1): can't get journal size
[  368.700142][T17201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  368.750214][T11907] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.268513][T17219] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  369.279648][T17219] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  369.619521][T17244] IPv6: syztnl0: Disabled Multicast RS
[  369.983999][T17248] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  370.040933][T17253] io-wq is not configured for unbound workers
[  370.061155][T17248] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  370.236675][T17262] netlink: 'syz.0.5147': attribute type 3 has an invalid length.
[  370.415010][T17277] loop4: detected capacity change from 0 to 1024
[  370.429097][T17277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  370.485989][T17277] ext4 filesystem being mounted at /376/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  370.501646][T17277] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: comm syz.4.5153: lblock 0 mapped to illegal pblock 0 (length 5)
[  370.570198][T17277] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 5 with error 117
[  370.582601][T17277] EXT4-fs (loop4): This should not happen!! Data will be lost
[  370.582601][T17277] 
[  370.729920][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  370.971695][T17305] netlink: 'syz.3.5164': attribute type 10 has an invalid length.
[  371.016454][T17314] loop3: detected capacity change from 0 to 512
[  371.020156][T17316] netlink: 112 bytes leftover after parsing attributes in process `syz.4.5169'.
[  371.031965][T17314] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  371.048906][T17314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  371.061613][T17314] ext4 filesystem being mounted at /460/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  371.092649][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.150072][T17323] loop1: detected capacity change from 0 to 256
[  371.160592][T17324] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65296 sclass=netlink_route_socket pid=17324 comm=syz.4.5170
[  371.193644][T17323] FAT-fs (loop1): codepage cp852 not found
[  371.686680][T17361] loop1: detected capacity change from 0 to 1024
[  371.693620][T17361] EXT4-fs: dax option not supported
[  371.716462][T17363] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  371.725347][T17363] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  371.858495][T17364] loop4: detected capacity change from 0 to 8192
[  372.105652][T17369] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  372.113197][T17369] batman_adv: batadv0: Removing interface: batadv_slave_0
[  372.178337][T17369] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  372.185782][T17369] batman_adv: batadv0: Removing interface: batadv_slave_1
[  372.375980][T17379] cgroup: fork rejected by pids controller in /syz1
[  372.490340][T16570] bond0: (slave syz_tun): Releasing backup interface
[  372.549129][ T3967] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.642145][ T3967] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.731720][ T3967] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.930265][ T3967] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.953674][T17383] lo speed is unknown, defaulting to 1000
[  373.370798][T17383] chnl_net:caif_netlink_parms(): no params data found
[  373.423222][T17383] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.430437][T17383] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.437799][T17383] bridge_slave_0: entered allmulticast mode
[  373.444379][T17383] bridge_slave_0: entered promiscuous mode
[  373.451336][T17383] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.458442][T17383] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.466021][T17383] bridge_slave_1: entered allmulticast mode
[  373.472704][T17383] bridge_slave_1: entered promiscuous mode
[  373.520208][ T3967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  373.540099][ T3967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  373.550743][ T3967] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  373.561019][ T3967] bond0 (unregistering): Released all slaves
[  373.588759][T17383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  373.624487][T17383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  373.725822][T17383] team0: Port device team_slave_0 added
[  373.768983][ T3967] veth1_macvtap: left promiscuous mode
[  373.793109][ T3967] veth0_macvtap: left promiscuous mode
[  373.843186][ T3967] veth1_vlan: left promiscuous mode
[  373.848623][ T3967] veth0_vlan: left promiscuous mode
[  373.906796][ T3967] team0 (unregistering): Port device team_slave_1 removed
[  373.916241][ T3967] team0 (unregistering): Port device team_slave_0 removed
[  374.018674][T17383] team0: Port device team_slave_1 added
[  374.042500][T17383] batman_adv: batadv0: Adding interface: batadv_slave_0
[  374.049524][T17383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  374.075534][T17383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  374.089478][T17383] batman_adv: batadv0: Adding interface: batadv_slave_1
[  374.096446][T17383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  374.122537][T17383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  374.157795][T17383] hsr_slave_0: entered promiscuous mode
[  374.163927][T17383] hsr_slave_1: entered promiscuous mode
[  374.170770][T17383] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  374.178570][T17383] Cannot create hsr debugfs directory
[  374.485947][T17383] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  374.494915][T17383] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  374.503674][T17383] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  374.512468][T17383] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  374.550021][T17383] 8021q: adding VLAN 0 to HW filter on device bond0
[  374.563213][T17383] 8021q: adding VLAN 0 to HW filter on device team0
[  374.573314][ T3906] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.580425][ T3906] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.592407][ T3906] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.599508][ T3906] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.668183][T17383] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  374.678676][T17383] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  374.747154][T17383] 8021q: adding VLAN 0 to HW filter on device batadv0
[  374.828213][T17383] veth0_vlan: entered promiscuous mode
[  374.836413][T17383] veth1_vlan: entered promiscuous mode
[  374.921122][T17383] veth0_macvtap: entered promiscuous mode
[  374.929543][T17383] veth1_macvtap: entered promiscuous mode
[  374.943272][T17383] batman_adv: batadv0: Interface activated: batadv_slave_0
[  375.159354][T17383] batman_adv: batadv0: Interface activated: batadv_slave_1
[  375.170281][T17383] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  375.179108][T17383] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  375.187851][T17383] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  375.196555][T17383] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  375.308575][T17459] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  375.317677][T17459] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  375.496959][T17467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  375.505633][T17467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  375.551520][T17469] netlink: 'syz.6.5212': attribute type 37 has an invalid length.
[  375.702824][T17478] loop4: detected capacity change from 0 to 1024
[  375.709938][T17478] EXT4-fs: test_dummy_encryption option not supported
[  375.858126][T17488] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  375.866718][T17488] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  376.031163][T17490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  376.039726][T17490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  376.685773][T17512] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  377.606372][T17547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.627161][T17547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.636430][T17547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.644928][T17547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.688194][T17553] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5245'.
[  377.740873][T17560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.752149][T17560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.888490][T17547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.195051][T17560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.198639][T17547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.213519][T17560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.226065][T17568] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.239666][T17568] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.550740][T17577] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.559965][T17577] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.753187][T17579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5255'.
[  378.762462][T17581] loop6: detected capacity change from 0 to 2048
[  378.769443][T17581] EXT4-fs: Ignoring removed mblk_io_submit option
[  378.793446][T17581] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.795954][ T1027] Process accounting resumed
[  378.805800][   T29] kauditd_printk_skb: 210 callbacks suppressed
[  378.805814][   T29] audit: type=1400 audit(1750826986.638:26982): avc:  denied  { append } for  pid=17580 comm="syz.6.5256" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  378.839669][ T3971] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:62: bg 0: block 234: padding at end of block bitmap is not set
[  378.839823][ T3971] EXT4-fs (loop6): Remounting filesystem read-only
[  378.878250][T17113] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.014301][T17597] loop1: detected capacity change from 0 to 1024
[  379.021931][T17597] EXT4-fs: Ignoring removed oldalloc option
[  379.024228][T17599] loop6: detected capacity change from 0 to 256
[  379.043767][T17597] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.058371][T17599] FAT-fs (loop6): codepage cp857 not found
[  379.080003][T17383] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.220425][T17612] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5267'.
[  379.221948][T17614] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  379.238048][T17614] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  379.644540][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5268'.
[  380.140929][   T23] IPVS: starting estimator thread 0...
[  380.192703][T17633] loop4: detected capacity change from 0 to 512
[  380.199623][T17633] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  380.210828][T17633] EXT4-fs (loop4): 1 truncate cleaned up
[  380.216825][T17633] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.237702][T17629] IPVS: using max 2592 ests per chain, 129600 per kthread
[  380.664515][   T29] audit: type=1400 audit(1750826988.418:26983): avc:  denied  { read } for  pid=2981 comm="acpid" name="mouse0" dev="devtmpfs" ino=656 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  380.686548][   T29] audit: type=1400 audit(1750826988.418:26984): avc:  denied  { open } for  pid=2981 comm="acpid" path="/dev/input/mouse0" dev="devtmpfs" ino=656 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  380.709509][   T29] audit: type=1400 audit(1750826988.418:26985): avc:  denied  { ioctl } for  pid=2981 comm="acpid" path="/dev/input/mouse0" dev="devtmpfs" ino=656 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  380.746187][T17644] IPv6: NLM_F_CREATE should be specified when creating new route
[  380.756023][T17645] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  380.766546][T17645] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  381.032242][T17660] loop6: detected capacity change from 0 to 1024
[  381.039099][T17660] EXT4-fs: Ignoring removed orlov option
[  381.044835][T17660] EXT4-fs: Ignoring removed nomblk_io_submit option
[  381.058753][T17660] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.073130][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.083332][T17113] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.101425][T17666] syz_tun: entered allmulticast mode
[  381.108247][T17665] syz_tun: left allmulticast mode
[  381.138150][T17670] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  381.155356][T17674] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5289'.
[  381.157564][   T29] audit: type=1400 audit(1750826988.988:26986): avc:  denied  { module_load } for  pid=17671 comm="syz.6.5288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  381.189713][T17670] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  381.870548][T17700] tipc: Failed to remove unknown binding: 66,1,1/0:371809024/371809026
[  381.992440][   T29] audit: type=1400 audit(1750826989.838:26987): avc:  denied  { audit_write } for  pid=17707 comm="syz.0.5302" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  382.013839][   T29] audit: type=1107 audit(1750826989.838:26988): pid=17707 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='I'
[  382.079927][T17712] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  382.091095][T17712] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  382.111871][T17712] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  382.129844][T17712] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  382.358323][T17717] lo speed is unknown, defaulting to 1000
[  383.206933][T17767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.239878][T17767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.317070][T17773] lo speed is unknown, defaulting to 1000
[  383.344703][T17775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5325'.
[  383.397201][T17784] netlink: 'syz.3.5327': attribute type 1 has an invalid length.
[  383.412155][T17784] 8021q: adding VLAN 0 to HW filter on device bond1
[  383.430876][T17784] bond1: (slave gretap2): making interface the new active one
[  383.439199][T17784] bond1: (slave gretap2): Enslaving as an active interface with an up link
[  383.491030][   T29] audit: type=1400 audit(1750826991.338:26989): avc:  denied  { listen } for  pid=17790 comm="syz.4.5330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  383.512413][   T29] audit: type=1400 audit(1750826991.368:26990): avc:  denied  { accept } for  pid=17790 comm="syz.4.5330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  383.802067][T17798] IPv6: NLM_F_CREATE should be specified when creating new route
[  383.992915][T17812] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  384.882729][T17838] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.892414][T17838] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.952289][T17843] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5348'.
[  384.961573][T17843] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5348'.
[  385.049139][T17856] loop4: detected capacity change from 0 to 256
[  385.062953][T17856] FAT-fs (loop4): codepage cp869 not found
[  385.085579][T17860] xt_hashlimit: size too large, truncated to 1048576
[  385.095956][T17862] loop1: detected capacity change from 0 to 128
[  385.226102][T17862] FAT-fs (loop1): Directory bread(block 414) failed
[  385.234825][T17862] FAT-fs (loop1): Directory bread(block 415) failed
[  385.255173][T17862] FAT-fs (loop1): Directory bread(block 416) failed
[  385.261938][T17862] FAT-fs (loop1): Directory bread(block 417) failed
[  385.268671][T17862] FAT-fs (loop1): Directory bread(block 418) failed
[  385.275281][T17862] FAT-fs (loop1): Directory bread(block 419) failed
[  385.282127][T17862] FAT-fs (loop1): Directory bread(block 420) failed
[  385.288916][T17862] FAT-fs (loop1): Directory bread(block 421) failed
[  385.311759][T17862] FAT-fs (loop1): Directory bread(block 414) failed
[  385.318442][T17862] FAT-fs (loop1): Directory bread(block 415) failed
[  385.401277][T17873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  385.447581][T17873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  385.623864][T17884] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  385.632825][T17884] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  385.789450][T17890] loop6: detected capacity change from 0 to 164
[  385.797125][T17890] Unable to read rock-ridge attributes
[  385.810678][T17890] netlink: 'syz.6.5367': attribute type 33 has an invalid length.
[  385.818662][T17890] netlink: 152 bytes leftover after parsing attributes in process `syz.6.5367'.
[  385.829706][T17890] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5367'.
[  386.032599][T17908] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.041148][T17908] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  386.155654][T17912] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.164552][T17912] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  386.235643][T17919] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.244621][T17919] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  386.371487][T17921] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.380050][T17921] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  386.454024][T17919] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.462608][T17919] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  386.563737][T17927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.572264][T17927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.665208][T17970] tipc: Started in network mode
[  387.670137][T17970] tipc: Node identity 5e88259953c4, cluster identity 4711
[  387.677288][T17970] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  387.700212][T17970] syzkaller0: entered promiscuous mode
[  387.705813][T17970] syzkaller0: entered allmulticast mode
[  387.712020][T17970] tipc: Resetting bearer <eth:syzkaller0>
[  387.720170][T17969] tipc: Resetting bearer <eth:syzkaller0>
[  387.734318][T17969] tipc: Disabling bearer <eth:syzkaller0>
[  387.808579][T17974] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  387.829582][T17977] loop4: detected capacity change from 0 to 1024
[  387.836316][T17977] EXT4-fs: Ignoring removed orlov option
[  387.844734][T17977] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.861805][T17974] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.873589][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.877603][   T29] audit: type=1400 audit(1750826995.708:26991): avc:  denied  { add_name } for  pid=17976 comm="syz.4.5406" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  387.924486][   T29] audit: type=1400 audit(1750826995.708:26992): avc:  denied  { remove_name } for  pid=17976 comm="syz.4.5406" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  387.968301][   T29] audit: type=1400 audit(1750826995.708:26993): avc:  denied  { rename } for  pid=17976 comm="syz.4.5406" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  388.067360][T17988] lo speed is unknown, defaulting to 1000
[  388.088176][T17992] lo speed is unknown, defaulting to 1000
[  388.139853][   T29] audit: type=1400 audit(1750826995.988:26994): avc:  denied  { getopt } for  pid=17989 comm="syz.1.5411" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  388.406713][T18012] ieee802154 phy1 wpan1: encryption failed: -22
[  388.580708][   T29] audit: type=1326 audit(1750826996.428:26995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18008 comm="syz.1.5417" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9d30f8e929 code=0x0
[  388.726474][T18018] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5418'.
[  388.772582][T18020] syzkaller1: entered promiscuous mode
[  388.778147][T18020] syzkaller1: entered allmulticast mode
[  388.834974][T18024] lo speed is unknown, defaulting to 1000
[  389.005206][   T29] audit: type=1400 audit(1750826996.848:26996): avc:  denied  { map } for  pid=18032 comm="syz.1.5424" path="/proc/105/net/vlan/vlan0" dev="proc" ino=4026532468 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  389.161049][T18044] loop3: detected capacity change from 0 to 1024
[  389.180660][T18039] syzkaller0: entered promiscuous mode
[  389.186219][T18039] syzkaller0: entered allmulticast mode
[  389.197679][T18044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.198724][T18054] loop4: detected capacity change from 0 to 128
[  389.216170][T18044] EXT4-fs error (device loop3): ext4_search_dir:1474: inode #12: block 7: comm syz.3.5429: bad entry in directory: inode out of bounds - offset=0, inode=150994957, rec_len=16, size=56 fake=0
[  389.219962][   T29] audit: type=1400 audit(1750826997.068:26997): avc:  denied  { relabelfrom } for  pid=18038 comm="syz.1.5427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  389.247500][T18044] EXT4-fs (loop3): Remounting filesystem read-only
[  389.254996][   T29] audit: type=1400 audit(1750826997.068:26998): avc:  denied  { relabelto } for  pid=18038 comm="syz.1.5427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  389.262961][T18054] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  389.295600][   T29] audit: type=1400 audit(1750826997.138:26999): avc:  denied  { unlink } for  pid=18043 comm="syz.3.5429" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  389.305275][T18054] ext4 filesystem being mounted at /426/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  389.329003][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.372055][T11690] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  389.479848][T18066] loop4: detected capacity change from 0 to 1024
[  389.487020][T18066] EXT4-fs: Ignoring removed orlov option
[  389.492818][T18066] EXT4-fs: Ignoring removed nomblk_io_submit option
[  389.512007][T18066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.587966][   T29] audit: type=1400 audit(1750826997.428:27000): avc:  denied  { read } for  pid=18059 comm="syz.3.5434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  389.623247][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.746002][T18071] Invalid ELF header magic: != ELF
[  389.762058][T18073] loop1: detected capacity change from 0 to 512
[  389.834153][T18080] loop4: detected capacity change from 0 to 256
[  389.852367][T18073] EXT4-fs (loop1): orphan cleanup on readonly fs
[  389.859658][T18073] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.5438: bad orphan inode 13
[  389.872249][T18080] FAT-fs (loop4): error, corrupted file size (i_pos 196, 2097152)
[  389.880229][T18080] FAT-fs (loop4): Filesystem has been set read-only
[  389.887743][T18073] ext4_test_bit(bit=12, block=18) = 1
[  389.893137][T18073] is_bad_inode(inode)=0
[  389.897347][T18073] NEXT_ORPHAN(inode)=2130706432
[  389.902212][T18073] max_ino=32
[  389.905395][T18073] i_nlink=1
[  389.932822][T18073] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  390.183962][T18090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.222961][T18090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.249035][T17383] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.307395][T18090] syz.6.5444 (18090): attempted to duplicate a private mapping with mremap.  This is not supported.
[  391.511169][T18133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  391.582414][T18133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  391.672056][T18142] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  391.678599][T18142] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  391.686140][T18142] vhci_hcd vhci_hcd.0: Device attached
[  391.723161][T18143] vhci_hcd: cannot find the pending unlink 3994
[  391.729962][T18143] usbip_core: unknown command
[  391.734761][T18143] vhci_hcd: unknown pdu 0
[  391.739121][T18143] usbip_core: unknown command
[  391.744374][ T4195] vhci_hcd: stop threads
[  391.748646][ T4195] vhci_hcd: release socket
[  391.753060][ T4195] vhci_hcd: disconnect device
[  392.181451][T18154] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  392.323858][T18166] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  392.333750][T18166] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  392.409046][T18170] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5471'.
[  392.845822][T18183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  392.854908][T18183] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  393.356818][T18194] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  393.365402][T18194] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.101786][T18212] loop3: detected capacity change from 0 to 512
[  394.109088][T18212] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  394.523192][T18212] EXT4-fs (loop3): 1 truncate cleaned up
[  394.529819][T18212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.121764][T18227] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5488'.
[  395.131550][ T3392] lo speed is unknown, defaulting to 1000
[  395.462342][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.614416][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  395.614429][   T29] audit: type=1400 audit(1750827003.458:27002): avc:  denied  { read open } for  pid=18253 comm="syz.6.5499" path="/" dev="configfs" ino=717 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  395.674567][T18265] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  395.683067][T18265] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  395.721572][T18274] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5504'.
[  395.770228][   T29] audit: type=1400 audit(1750827003.618:27003): avc:  denied  { ioctl } for  pid=18270 comm="syz.1.5505" path="socket:[56492]" dev="sockfs" ino=56492 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  395.796550][   T29] audit: type=1400 audit(1750827003.638:27004): avc:  denied  { mounton } for  pid=18270 comm="syz.1.5505" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  396.357813][   T29] audit: type=1400 audit(1750827004.188:27005): avc:  denied  { setattr } for  pid=18293 comm="syz.6.5514" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  396.459243][T18304] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5518'.
[  396.498867][T18306] loop6: detected capacity change from 0 to 1764
[  396.555969][T18314] netlink: 64 bytes leftover after parsing attributes in process `syz.6.5522'.
[  397.172476][T18333] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  397.210317][T18333] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  397.352303][T18337] lo speed is unknown, defaulting to 1000
[  397.855216][T18348] loop1: detected capacity change from 0 to 2048
[  397.871721][T18348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.029985][T18353] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap
[  398.265544][T18368] vhci_hcd: invalid port number 96
[  398.270744][T18368] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[  398.282254][T18370] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5542'.
[  398.742895][T18391] loop4: detected capacity change from 0 to 1764
[  398.784230][T18393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  398.826858][T18395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  398.835702][T18393] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  398.872070][T18395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.106917][T18395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.115534][T18395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.218250][T18418] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.226778][T18418] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  399.685512][T18434] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5567'.
[  399.715602][T18436] loop4: detected capacity change from 0 to 256
[  399.984935][T18441] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.991502][T18443] lo speed is unknown, defaulting to 1000
[  399.994055][T18441] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  400.041283][ T4195] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.083211][T18443] chnl_net:caif_netlink_parms(): no params data found
[  400.093826][ T4195] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.134552][T18443] bridge0: port 1(bridge_slave_0) entered blocking state
[  400.141809][T18443] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.149780][T18443] bridge_slave_0: entered allmulticast mode
[  400.156383][T18443] bridge_slave_0: entered promiscuous mode
[  400.164667][ T4195] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.176296][T18443] bridge0: port 2(bridge_slave_1) entered blocking state
[  400.183438][T18443] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.191772][T18443] bridge_slave_1: entered allmulticast mode
[  400.198474][T18443] bridge_slave_1: entered promiscuous mode
[  400.219072][T18443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  400.230364][ T4195] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.242598][T18443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  400.275736][T18443] team0: Port device team_slave_0 added
[  400.299281][T18443] team0: Port device team_slave_1 added
[  400.346986][T18443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  400.353993][T18443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.380142][T18443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  400.510819][ T4195] bridge_slave_1: left allmulticast mode
[  400.516536][ T4195] bridge_slave_1: left promiscuous mode
[  400.522258][ T4195] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.532024][ T4195] bridge_slave_0: left allmulticast mode
[  400.537863][ T4195] bridge_slave_0: left promiscuous mode
[  400.543566][ T4195] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.920178][T18477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  400.929324][T18477] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.139218][ T4195] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  401.149685][ T4195] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  401.159545][ T4195] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  401.168505][ T4195] bond0 (unregistering): Released all slaves
[  401.180198][T18443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  401.187176][T18443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.213263][T18443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  401.254287][ T4195] veth1_macvtap: left promiscuous mode
[  401.260828][ T4195] veth0_macvtap: left promiscuous mode
[  401.266832][ T4195] veth1_vlan: left promiscuous mode
[  401.272143][ T4195] veth0_vlan: left promiscuous mode
[  401.327817][T18484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  401.336251][T18484] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.432658][ T4195] team0 (unregistering): Port device team_slave_1 removed
[  401.444797][ T4195] team0 (unregistering): Port device team_slave_0 removed
[  401.452591][ T3901] smc: removing ib device syz!
[  401.941286][T18443] hsr_slave_0: entered promiscuous mode
[  402.034393][T18443] hsr_slave_1: entered promiscuous mode
[  402.040735][T18443] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  402.048400][T18443] Cannot create hsr debugfs directory
[  402.056452][ T1027] lo speed is unknown, defaulting to 1000
[  402.062311][ T1027] infiniband syz0: ib_query_port failed (-19)
[  402.097292][T18504] xt_CT: You must specify a L4 protocol and not use inversions on it
[  402.367975][T18509] loop3: detected capacity change from 0 to 128
[  402.782542][T18443] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  402.822367][T18523] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5593'.
[  402.833494][T18525] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.842356][T18443] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  402.849392][T18525] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  402.862808][T18523] erspan0: entered promiscuous mode
[  402.869833][T18523] macvtap1: entered promiscuous mode
[  402.875192][T18523] macvtap1: entered allmulticast mode
[  402.880596][T18523] erspan0: entered allmulticast mode
[  402.886248][T18526] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5593'.
[  402.896799][T18443] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  402.906594][T18526] erspan0: left allmulticast mode
[  402.911837][T18526] erspan0: left promiscuous mode
[  402.920532][T18443] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  402.998231][T18443] 8021q: adding VLAN 0 to HW filter on device bond0
[  403.018949][T18443] 8021q: adding VLAN 0 to HW filter on device team0
[  403.039873][ T3971] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.047034][ T3971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.084799][T18443] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  403.095266][T18443] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  403.125712][ T3971] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.132832][ T3971] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.231531][T18443] 8021q: adding VLAN 0 to HW filter on device batadv0
[  403.347287][T18443] veth0_vlan: entered promiscuous mode
[  403.357703][T18443] veth1_vlan: entered promiscuous mode
[  403.513776][T18443] veth0_macvtap: entered promiscuous mode
[  403.522810][T18443] veth1_macvtap: entered promiscuous mode
[  403.533574][T18443] batman_adv: batadv0: Interface activated: batadv_slave_0
[  403.544888][T18443] batman_adv: batadv0: Interface activated: batadv_slave_1
[  403.554889][T18443] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  403.563749][T18443] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  403.571574][T18557] netlink: 124 bytes leftover after parsing attributes in process `syz.6.5600'.
[  403.572457][T18443] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  403.590255][T18443] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.031543][T18566] loop6: detected capacity change from 0 to 1024
[  404.042898][T18566] EXT4-fs: Ignoring removed i_version option
[  404.061946][T18566] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (20329!=35945)
[  404.071677][T18566] EXT4-fs (loop6): group descriptors corrupted!
[  404.113381][T18574] vlan0: entered promiscuous mode
[  404.122828][T18574] team0: Port device vlan0 added
[  404.177178][T18577] loop4: detected capacity change from 0 to 512
[  404.185104][T18577] EXT4-fs: Ignoring removed nobh option
[  404.206605][T18577] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.5606: iget: bad i_size value: 38620345925642
[  404.219407][T18577] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.5606: couldn't read orphan inode 15 (err -117)
[  404.232176][T18577] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.289104][T18583] loop6: detected capacity change from 0 to 1024
[  404.300541][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.322143][T18583] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.338523][T18583] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  404.353733][T18583] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  404.365944][T18583] EXT4-fs (loop6): This should not happen!! Data will be lost
[  404.365944][T18583] 
[  404.375628][T18583] EXT4-fs (loop6): Total free blocks count 0
[  404.381648][T18583] EXT4-fs (loop6): Free/Dirty block details
[  404.387558][T18583] EXT4-fs (loop6): free_blocks=68451041280
[  404.393446][T18583] EXT4-fs (loop6): dirty_blocks=80
[  404.398781][T18583] EXT4-fs (loop6): Block reservation details
[  404.404760][T18583] EXT4-fs (loop6): i_reserved_data_blocks=5
[  404.413582][T18588] Direct I/O collision with buffered writes! File: /file1 Comm: syz.6.5608
[  404.438624][ T3901] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28
[  404.718338][T18601] IPv6: Can't replace route, no match found
[  404.814986][T18603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  404.824988][T18603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  405.032653][T18614] loop3: detected capacity change from 0 to 128
[  405.042626][T18614] loop3: detected capacity change from 0 to 256
[  405.057896][T18614] FAT-fs (loop3): codepage cp861 not found
[  405.349774][T18624] netlink: 'syz.3.5619': attribute type 10 has an invalid length.
[  405.362812][T18624] bond0: (slave dummy0): Releasing backup interface
[  405.372462][T18624] team0: Failed to send options change via netlink (err -105)
[  405.380103][T18624] team0: Port device dummy0 added
[  405.418101][T18624] netlink: 'syz.3.5619': attribute type 10 has an invalid length.
[  405.446314][T18624] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  405.457497][T18624] team0: Failed to send options change via netlink (err -105)
[  405.465017][T18624] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  405.474223][T18624] team0: Port device dummy0 removed
[  405.483299][T18624] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  405.554628][T18632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  405.563796][T18632] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  405.744720][T18634] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5623'.
[  405.799447][T18642] loop0: detected capacity change from 0 to 128
[  405.871739][T18644] loop6: detected capacity change from 0 to 128
[  405.879112][T18644] EXT4-fs: Ignoring removed nobh option
[  405.894190][T18644] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  405.907039][T18644] ext4 filesystem being mounted at /92/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  405.928508][T17113] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  406.015127][T18650] syz.0.5627: attempt to access beyond end of device
[  406.015127][T18650] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128
[  407.127595][T18663] loop0: detected capacity change from 0 to 512
[  407.140770][T18663] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  407.152357][T18667] loop4: detected capacity change from 0 to 256
[  407.154967][T18671] loop3: detected capacity change from 0 to 512
[  407.166375][T18663] EXT4-fs (loop0): 1 truncate cleaned up
[  407.172587][T18663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.190302][T18667] FAT-fs (loop4): codepage cp860 not found
[  407.200418][T18671] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  407.224244][T18671] ext4 filesystem being mounted at /555/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  407.241843][T18679] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.253506][   T29] audit: type=1400 audit(1750827015.098:27006): avc:  denied  { rename } for  pid=18669 comm="syz.3.5636" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  407.275999][   T29] audit: type=1400 audit(1750827015.098:27007): avc:  denied  { reparent } for  pid=18669 comm="syz.3.5636" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  407.300695][T18679] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  407.317531][T18671] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  407.337842][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.391358][T18443] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.426318][T18687] loop3: detected capacity change from 0 to 128
[  407.590898][T18697] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.602604][T18697] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.159294][T18708] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5651'.
[  408.168281][T18708] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5651'.
[  408.296352][T18714] loop6: detected capacity change from 0 to 128
[  409.092320][T18728] syz.6.5654: attempt to access beyond end of device
[  409.092320][T18728] loop6: rw=2049, sector=145, nr_sectors = 896 limit=128
[  409.255304][T18729] xfrm0: entered promiscuous mode
[  409.260558][T18729] xfrm0: entered allmulticast mode
[  410.430212][T18759] loop3: detected capacity change from 0 to 512
[  410.457598][T18759] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  410.482595][T18759] EXT4-fs (loop3): 1 truncate cleaned up
[  410.498066][T18759] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.321457][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.464727][   T29] audit: type=1400 audit(1750827019.308:27008): avc:  denied  { write } for  pid=18791 comm="syz.1.5679" path="socket:[57244]" dev="sockfs" ino=57244 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  411.624785][T18802] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5684'.
[  411.702968][   T29] audit: type=1400 audit(1750827019.548:27009): avc:  denied  { unmount } for  pid=17383 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  411.758395][   T29] audit: type=1400 audit(1750827019.588:27010): avc:  denied  { getopt } for  pid=18807 comm="syz.1.5686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  411.811411][   T29] audit: type=1400 audit(1750827019.658:27011): avc:  denied  { listen } for  pid=18811 comm="syz.3.5688" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  412.324404][T18831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  412.333554][T18831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  412.608836][T18833] loop4: detected capacity change from 0 to 1024
[  412.619112][T18833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.633565][T18833] EXT4-fs error (device loop4): ext4_free_inode:354: comm syz.4.5697: bit already cleared for inode 15
[  412.646007][T18833] EXT4-fs (loop4): Remounting filesystem read-only
[  412.664677][T11690] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.768289][T18845] loop3: detected capacity change from 0 to 512
[  412.790226][T18845] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.804896][T18845] ext4 filesystem being mounted at /567/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  412.808846][T18849] netlink: 'syz.4.5701': attribute type 1 has an invalid length.
[  412.823136][T18849] netlink: 16150 bytes leftover after parsing attributes in process `syz.4.5701'.
[  412.837608][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.864488][T18852] netlink: 76 bytes leftover after parsing attributes in process `syz.1.5705'.
[  413.523963][T18866] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  413.552316][T18866] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.775151][T18880] loop4: detected capacity change from 0 to 512
[  413.785790][T18880] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[  414.580849][T18897] loop3: detected capacity change from 0 to 1024
[  414.725451][T18902] loop0: detected capacity change from 0 to 1024
[  414.735552][T18897] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.752551][T18902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.182760][T18902] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #14: comm syz.0.5722: attempt to clear invalid blocks 1886221359 len 1
[  415.226764][T18443] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.245554][T18911] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.254289][T18911] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.264514][T18908] ==================================================================
[  415.272613][T18908] BUG: KCSAN: data-race in xas_find_marked / xas_set_mark
[  415.279741][T18908] 
[  415.282052][T18908] write to 0xffff888106f5b254 of 4 bytes by task 18897 on cpu 1:
[  415.289754][T18908]  xas_set_mark+0x12b/0x140
[  415.294262][T18908]  __folio_start_writeback+0x1dd/0x440
[  415.299716][T18908]  ext4_bio_write_folio+0x5ad/0x9f0
[  415.304902][T18908]  mpage_submit_folio+0xe4/0x170
[  415.309835][T18908]  mpage_process_page_bufs+0x39b/0x4a0
[  415.315287][T18908]  mpage_prepare_extent_to_map+0x741/0xaa0
[  415.321088][T18908]  ext4_do_writepages+0xa1a/0x21c0
[  415.326191][T18908]  ext4_writepages+0x176/0x300
[  415.330953][T18908]  do_writepages+0x1c3/0x310
[  415.335533][T18908]  file_write_and_wait_range+0x156/0x2c0
[  415.341160][T18908]  generic_buffers_fsync_noflush+0x45/0x120
[  415.347052][T18908]  ext4_sync_file+0x1ab/0x690
[  415.351719][T18908]  vfs_fsync_range+0x10a/0x130
[  415.356482][T18908]  ext4_buffered_write_iter+0x34f/0x3c0
[  415.362021][T18908]  ext4_file_write_iter+0x383/0xf00
[  415.367208][T18908]  iter_file_splice_write+0x5ef/0x970
[  415.372579][T18908]  direct_splice_actor+0x153/0x2a0
[  415.377688][T18908]  splice_direct_to_actor+0x30f/0x680
[  415.383156][T18908]  do_splice_direct+0xda/0x150
[  415.387920][T18908]  do_sendfile+0x380/0x650
[  415.392331][T18908]  __x64_sys_sendfile64+0x105/0x150
[  415.397522][T18908]  x64_sys_call+0xb39/0x2fb0
[  415.402103][T18908]  do_syscall_64+0xd2/0x200
[  415.406603][T18908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.412489][T18908] 
[  415.414807][T18908] read to 0xffff888106f5b254 of 4 bytes by task 18908 on cpu 0:
[  415.422423][T18908]  xas_find_marked+0x5dc/0x620
[  415.427174][T18908]  find_get_entry+0x5d/0x380
[  415.431771][T18908]  filemap_get_folios_tag+0x92/0x210
[  415.437069][T18908]  mpage_prepare_extent_to_map+0x320/0xaa0
[  415.442882][T18908]  ext4_do_writepages+0x6ea/0x21c0
[  415.447997][T18908]  ext4_writepages+0x176/0x300
[  415.452770][T18908]  do_writepages+0x1c3/0x310
[  415.457357][T18908]  file_write_and_wait_range+0x156/0x2c0
[  415.462999][T18908]  generic_buffers_fsync_noflush+0x45/0x120
[  415.468897][T18908]  ext4_sync_file+0x1ab/0x690
[  415.473583][T18908]  vfs_fsync_range+0x10a/0x130
[  415.478353][T18908]  ext4_buffered_write_iter+0x34f/0x3c0
[  415.483901][T18908]  ext4_file_write_iter+0x383/0xf00
[  415.489151][T18908]  iter_file_splice_write+0x5ef/0x970
[  415.494532][T18908]  direct_splice_actor+0x153/0x2a0
[  415.499656][T18908]  splice_direct_to_actor+0x30f/0x680
[  415.505054][T18908]  do_splice_direct+0xda/0x150
[  415.509842][T18908]  do_sendfile+0x380/0x650
[  415.514257][T18908]  __x64_sys_sendfile64+0x105/0x150
[  415.519450][T18908]  x64_sys_call+0xb39/0x2fb0
[  415.524035][T18908]  do_syscall_64+0xd2/0x200
[  415.528534][T18908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.534428][T18908] 
[  415.536745][T18908] value changed: 0x0a000021 -> 0x04000021
[  415.542451][T18908] 
[  415.544763][T18908] Reported by Kernel Concurrency Sanitizer on:
[  415.550899][T18908] CPU: 0 UID: 0 PID: 18908 Comm: syz.3.5720 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[  415.563389][T18908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  415.573459][T18908] ==================================================================
[  415.816904][T10928] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.