last executing test programs:

5.378116861s ago: executing program 2 (id=545):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000440)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @local, {[@rr={0x7, 0x13, 0x0, [@private, @empty, @empty, @private]}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x0, [{@loopback}]}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x4c, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@private}, {}, {@local}, {@loopback}, {@private}, {@multicast2}, {@broadcast}, {@broadcast}]}, @timestamp={0x44, 0x4}]}}}}}}}, 0x0)

5.323099496s ago: executing program 2 (id=546):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0), 0x4)
sendto$inet6(r0, &(0x7f00000001c0)="a6", 0x1, 0x840, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
pread64(r1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
dup3(r0, 0xffffffffffffffff, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000280)=0x40)

4.465043856s ago: executing program 2 (id=555):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x7, 0x7fe2, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x6c, &(0x7f0000000880)=ANY=[@ANYBLOB="0180c2000000ba01f256000018004503005e00000000002f907800000000e00000012480655886dd080088be00000000100000000104000000000000080022eb0000000030000000020000000000000000000000080065580000000010a63fca06112c0a4f20df9478221b0cb2e7369cb66df827c71c1107f09e0592a3abb43a6f7d424418202899dddc7f70f4ab062eebee877069a762bacd1a0ba9217da432f5b16b4b4816e1eececa8294405d0d212aa647783d7fd198b3c390"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080))
bind$unix(0xffffffffffffffff, 0x0, 0x0)
getpid()
fsopen(0x0, 0x0)
creat(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xa2}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000240), 0x208e24b)

3.820094968s ago: executing program 3 (id=558):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000020000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x39}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x1a5, &(0x7f0000000280)="$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")
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x42, 0x40}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, r6}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x3, &(0x7f0000001d40)={r6, &(0x7f0000001b80), 0x0}, 0x20)
getsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000001c0)={@ipv4={""/10, ""/2, @loopback}}, &(0x7f0000000400)=0x14)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={0x0, 0x1, 0x8}, 0xc)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x4}, 0x48)
dup2(0xffffffffffffffff, r4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

3.525702482s ago: executing program 2 (id=559):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000011000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
write$FUSE_INIT(r0, &(0x7f0000000240)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x202}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x28, 0x0, 0x0, {{0x0, 0x0, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fcntl$lock(r4, 0x24, &(0x7f0000000200))

2.979982247s ago: executing program 3 (id=569):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'veth1_macvtap\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="400000001000010800"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000040014001c0016801800018014000a"], 0x40}}, 0x0)

2.929603021s ago: executing program 3 (id=570):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
unshare(0x60600)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
openat(r0, &(0x7f0000000140)='./file0/file0\x00', 0xa4b40, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0)

2.916479122s ago: executing program 3 (id=571):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000540)={0x2c, &(0x7f0000000240)={0x0, 0x0, 0x5, {0x5, 0x0, "a8dad2"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="000312"], 0x0, 0x0}, 0x0)

2.650752764s ago: executing program 0 (id=576):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_usb_control_io(r1, &(0x7f0000000440)={0x2c, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x81, 0x0, 0x20}}}, 0x0)

1.297719794s ago: executing program 4 (id=585):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000240b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f00000001c0)=@v1={0x0, @aes128, 0x0, @desc4})
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f00000006c0)='./bus\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r4, 0x208200)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0)
fchmodat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000000)=@v2={0x2, @aes256, 0x0, '\x00', @a})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000003c0), &(0x7f0000000400)=0xc)
statx(0xffffffffffffffff, &(0x7f0000000440)='./file1\x00', 0x1000, 0x200, 0x0)
mount$fuseblk(&(0x7f0000000180), &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x8800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='signal_deliver\x00', r1}, 0x10)
openat2$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000700)={0x28000, 0x4}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

1.271599316s ago: executing program 4 (id=586):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='tlb_flush\x00', r1}, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)

1.180777613s ago: executing program 4 (id=587):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffeca50000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
syz_open_dev$rtc(&(0x7f0000000000), 0x0, 0x0)
sendmsg$AUDIT_USER_AVC(r1, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000005304"], 0x14}}, 0x0)

1.131741817s ago: executing program 4 (id=588):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000280)={0x4000})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x114000})
signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x100000)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.090581411s ago: executing program 1 (id=589):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@getchain={0x24, 0x2a, 0x7714e0102f648d2d, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0)

1.065512853s ago: executing program 1 (id=590):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000e8000000000040d900008500000023000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r1, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r1, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

1.037914335s ago: executing program 1 (id=591):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000f4)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x90e976db910956fe, 0x4002011, r2, 0x0)
write$evdev(r1, &(0x7f00000001c0)=[{}], 0x18)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r3, &(0x7f0000000080), 0x208e24b)
fallocate(r0, 0x3, 0x0, 0x1a00)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000900))

1.027363585s ago: executing program 4 (id=592):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000020000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x39}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x1a5, &(0x7f0000000280)="$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")
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x42, 0x40}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, r6}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x3, &(0x7f0000001d40)={r6, &(0x7f0000001b80), 0x0}, 0x20)
getsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000001c0)={@ipv4={""/10, ""/2, @loopback}}, &(0x7f0000000400)=0x14)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={0x0, 0x1, 0x8}, 0xc)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x20, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x4}, 0x48)
dup2(0xffffffffffffffff, r4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

648.827647ms ago: executing program 1 (id=593):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)

606.84399ms ago: executing program 1 (id=594):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x100, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = dup2(r0, r0)
write$tun(r3, 0x0, 0x46)

579.498552ms ago: executing program 0 (id=596):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000077c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a10000000000000000000000000000000000000000000000000000000000000000000000000000000093160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f40000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff0000000000000000000000000000002000", 0x2000, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsync(r2)
syz_fuse_handle_req(r0, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000b00)={&(0x7f0000000280)={0x50, 0xffffffffffffffda}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fsync(r2)

469.323141ms ago: executing program 0 (id=597):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000240b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f00000001c0)=@v1={0x0, @aes128, 0x0, @desc4})
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
creat(&(0x7f00000006c0)='./bus\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r4, 0x208200)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0)
fchmodat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000000)=@v2={0x2, @aes256, 0x0, '\x00', @a})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000003c0), &(0x7f0000000400)=0xc)
statx(0xffffffffffffffff, &(0x7f0000000440)='./file1\x00', 0x1000, 0x200, 0x0)
mount$fuseblk(&(0x7f0000000180), &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x8800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='signal_deliver\x00', r1}, 0x10)
openat2$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000700)={0x28000, 0x4}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

447.031463ms ago: executing program 3 (id=598):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000005d40)=[{{&(0x7f0000000180)=@can={0x1d, r3}, 0x80, 0x0}}], 0x1, 0x0)

438.271883ms ago: executing program 0 (id=599):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000a926007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x6c, r3, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x6c}}, 0x0)

400.291567ms ago: executing program 3 (id=600):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002ac0), 0x0, 0x0)
read$rfkill(r1, 0x0, 0x10000000)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x2006}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)

331.872023ms ago: executing program 0 (id=601):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x140c504, &(0x7f0000000600)={[{@errors_remount}, {@nobarrier}, {@max_batch_time={'max_batch_time', 0x3d, 0xc23}}, {@noquota}, {@max_batch_time={'max_batch_time', 0x3d, 0x9c52}}, {@resgid={'resgid', 0x3d, 0xee01}}, {@barrier}, {@stripe={'stripe', 0x3d, 0x7768e9ec}}, {@stripe={'stripe', 0x3d, 0x9}}, {@nogrpid}, {@grpjquota}, {@noauto_da_alloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200}}]}, 0x12, 0x4c2, &(0x7f0000000ec0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r2, &(0x7f0000000380)=ANY=[], 0x3000)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

323.263083ms ago: executing program 2 (id=602):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000e8000000000040d900008500000023000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r1, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r1, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

272.555768ms ago: executing program 2 (id=603):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000f4)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x90e976db910956fe, 0x4002011, r2, 0x0)
write$evdev(r1, &(0x7f00000001c0)=[{}], 0x18)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r3, &(0x7f0000000080), 0x208e24b)
fallocate(r0, 0x3, 0x0, 0x1a00)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000900))

133.142349ms ago: executing program 0 (id=604):
syz_btf_id_by_name$bpf_lsm(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100ff030000000000030000850000007b00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x5, &(0x7f00000003c0)=[{0x35}, {}, {0x16}, {0x4, 0x0, 0xa8, 0x65}, {0x6, 0x0, 0x9, 0x8}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x0, &(0x7f00000002c0)})
syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)

131.629129ms ago: executing program 4 (id=605):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)

0s ago: executing program 1 (id=595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x7, 0x7fe2, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x6c, &(0x7f0000000880)=ANY=[@ANYBLOB="0180c2000000ba01f256000018004503005e00000000002f907800000000e00000012480655886dd080088be00000000100000000104000000000000080022eb0000000030000000020000000000000000000000080065580000000010a63fca06112c0a4f20df9478221b0cb2e7369cb66df827c71c1107f09e0592a3abb43a6f7d424418202899dddc7f70f4ab062eebee877069a762bacd1a0ba9217da432f5b16b4b4816e1eececa8294405d0d212aa647783d7fd198b3c390"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080))
bind$unix(0xffffffffffffffff, 0x0, 0x0)
getpid()
fsopen(0x0, 0x0)
creat(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xa2}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000240), 0x208e24b)

kernel console output (not intermixed with test programs):

 IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   31.128086][  T456] syz.2.51[456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   31.128154][  T456] syz.2.51[456] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   31.141007][   T30] audit: type=1400 audit(1721352936.033:156): avc:  denied  { setopt } for  pid=457 comm="syz.1.52" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   31.152449][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   31.187998][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   31.199579][  T393] device veth0_vlan entered promiscuous mode
[   31.206465][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   31.214578][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   31.232940][   T30] audit: type=1400 audit(1721352936.073:157): avc:  denied  { create } for  pid=459 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   31.249277][  T393] device veth1_macvtap entered promiscuous mode
[   31.265692][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   31.273026][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   31.289614][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   31.297650][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   31.305540][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   31.471335][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   31.479379][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   31.487904][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   31.495860][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   31.513880][   T30] audit: type=1400 audit(1721352936.403:158): avc:  denied  { write } for  pid=464 comm="syz.3.53" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   31.564734][   T30] audit: type=1400 audit(1721352936.413:159): avc:  denied  { add_name } for  pid=464 comm="syz.3.53" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   31.586345][   T30] audit: type=1400 audit(1721352936.413:160): avc:  denied  { associate } for  pid=464 comm="syz.3.53" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   31.608040][   T30] audit: type=1400 audit(1721352936.423:161): avc:  denied  { write } for  pid=459 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   31.608673][  T473] loop0: detected capacity change from 0 to 128
[   31.627888][   T30] audit: type=1400 audit(1721352936.423:162): avc:  denied  { nlmsg_write } for  pid=459 comm="syz.4.50" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   31.667753][   T30] audit: type=1400 audit(1721352936.433:163): avc:  denied  { mount } for  pid=393 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   31.673931][  T480] loop3: detected capacity change from 0 to 512
[   31.695747][   T30] audit: type=1400 audit(1721352936.433:164): avc:  denied  { mounton } for  pid=393 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   31.756015][  T487] loop0: detected capacity change from 0 to 1024
[   31.797456][  T487] EXT4-fs error (device loop0): ext4_fill_super:4831: inode #2: comm syz.0.61: casefold flag without casefold feature
[   31.799523][  T493] netlink: 20 bytes leftover after parsing attributes in process `syz.1.65'.
[   31.815473][  T487] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   31.828697][  T487] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   32.142974][  T480] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   32.160061][  T487] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz.0.61: Invalid inode table block 0 in block_group 0
[   32.165592][  T480] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038 (0x7fffffff)
[   32.195063][  T487] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5820: Corrupt filesystem
[   32.205152][  T487] EXT4-fs error (device loop0): __ext4_unlink:3281: inode #2: comm syz.0.61: mark_inode_dirty error
[   32.250073][  T393] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz-executor: Invalid inode table block 0 in block_group 0
[   32.263427][  T393] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5820: Corrupt filesystem
[   32.273228][  T393] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #2: comm syz-executor: mark_inode_dirty error
[   32.285095][  T393] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz-executor: Invalid inode table block 0 in block_group 0
[   32.299019][  T393] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm syz-executor: Invalid inode table block 0 in block_group 0
[   32.360193][  T415] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm kworker/u4:4: Invalid inode table block 0 in block_group 0
[   32.374458][  T415] EXT4-fs error (device loop0): __ext4_get_inode_loc:4340: comm kworker/u4:4: Invalid inode table block 0 in block_group 0
[   32.412838][  T523] loop4: detected capacity change from 0 to 128
[   32.489717][  T523] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   32.500455][  T523] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[   33.838916][  T541] loop2: detected capacity change from 0 to 512
[   33.852810][  T545] netlink: 64 bytes leftover after parsing attributes in process `syz.4.81'.
[   33.863852][  T526] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.871270][  T526] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.884562][  T526] device bridge_slave_0 entered promiscuous mode
[   33.897352][  T526] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.900790][  T541] EXT4-fs (loop2): Ignoring removed orlov option
[   33.911153][  T526] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.920745][  T541] EXT4-fs (loop2): Test dummy encryption mode enabled
[   33.922350][  T526] device bridge_slave_1 entered promiscuous mode
[   33.941494][  T541] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   33.987741][  T541] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a040e01c, mo2=0002]
[   33.995565][  T541] System zones: 1-12
[   34.000662][  T541] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.82: casefold flag without casefold feature
[   34.013233][  T541] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.82: missing EA_INODE flag
[   34.033482][  T541] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.82: error while reading EA inode 12 err=-117
[   34.045990][  T541] EXT4-fs (loop2): 1 orphan inode deleted
[   34.051598][  T541] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,abort,max_dir_size_kb=0x0000000000009c7c,debug,orlov,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue. Quota mode: none.
[   34.114586][  T526] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.121476][  T526] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.146945][    T6] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.147434][  T564] loop3: detected capacity change from 0 to 256
[   34.160549][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   34.168379][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.176279][   T45] device bridge_slave_1 left promiscuous mode
[   34.182657][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.190754][   T45] device bridge_slave_0 left promiscuous mode
[   34.197492][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.207775][   T45] device veth1_macvtap left promiscuous mode
[   34.213750][   T45] device veth0_vlan left promiscuous mode
[   34.235351][  T564] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a97a7bd, utbl_chksum : 0xe619d30d)
[   34.240182][  T565] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[   34.263703][  T565] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[   34.271392][   T26] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   35.438378][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   35.519253][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   35.527445][  T318] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.534438][  T318] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.541679][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   35.549613][  T318] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.556433][  T318] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.567611][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   35.649247][  T588] SELinux: security_context_str_to_sid(staff_u) failed for (dev ?, type ?) errno=-22
[   35.664460][  T588] SELinux: security_context_str_to_sid(staff_u) failed for (dev overlay, type overlay) errno=-22
[   35.818806][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   35.829829][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   35.837419][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   35.903223][   T26] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   35.913891][  T526] device veth0_vlan entered promiscuous mode
[   35.926559][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   35.935145][  T526] device veth1_macvtap entered promiscuous mode
[   35.941668][   T26] usb 2-1: config 0 descriptor??
[   35.947558][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   35.956133][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   35.964253][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   35.972950][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.989796][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   36.008514][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   36.016711][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   36.025194][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   36.043444][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   36.076593][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   36.083988][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   36.091596][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   36.100084][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   36.108316][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   36.116581][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   36.150141][   T30] kauditd_printk_skb: 31 callbacks suppressed
[   36.150154][   T30] audit: type=1400 audit(1721352941.043:196): avc:  denied  { wake_alarm } for  pid=598 comm="syz.0.101" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   36.540214][  T611] loop2: detected capacity change from 0 to 512
[   36.556958][   T26] hid (null): bogus close delimiter
[   36.587802][  T611] EXT4-fs (loop2): Ignoring removed orlov option
[   36.596216][  T611] EXT4-fs (loop2): Test dummy encryption mode enabled
[   36.609877][  T611] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   36.611584][  T605] kvm: emulating exchange as write
[   36.643276][  T614] loop4: detected capacity change from 0 to 128
[   36.650540][  T611] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a040e01c, mo2=0002]
[   36.662958][  T611] System zones: 1-12
[   36.665336][  T615] loop3: detected capacity change from 0 to 256
[   36.668928][  T614] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   36.683434][  T611] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.104: casefold flag without casefold feature
[   36.695970][  T614] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[   36.727734][  T611] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.104: missing EA_INODE flag
[   36.739500][  T611] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.104: error while reading EA inode 12 err=-117
[   36.748711][  T615] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d)
[   36.752341][  T611] EXT4-fs (loop2): 1 orphan inode deleted
[   36.764166][  T615] exFAT-fs (loop3): error, invalid access to FAT bad cluster (entry 0x00000005)
[   36.769147][  T611] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,abort,max_dir_size_kb=0x0000000000009c7c,debug,orlov,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue. Quota mode: none.
[   36.778318][   T26] usb 2-1: language id specifier not provided by device, defaulting to English
[   36.799887][  T615] exFAT-fs (loop3): Filesystem has been set read-only
[   36.814928][  T615] exFAT-fs (loop3): failed to initialize root inode
[   37.909118][   T30] audit: type=1400 audit(1721352942.803:197): avc:  denied  { read } for  pid=624 comm="syz.0.107" name="usbmon0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   38.018864][   T26] uclogic 0003:256C:006D.0001: failed retrieving Huion firmware version: -71
[   38.074236][   T26] uclogic 0003:256C:006D.0001: failed probing parameters: -71
[   38.100829][   T30] audit: type=1400 audit(1721352942.823:198): avc:  denied  { open } for  pid=624 comm="syz.0.107" path="/dev/usbmon0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   38.124276][   T30] audit: type=1400 audit(1721352942.833:199): avc:  denied  { ioctl } for  pid=624 comm="syz.0.107" path="/dev/usbmon0" dev="devtmpfs" ino=135 ioctlcmd=0x9203 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   38.138414][   T26] uclogic: probe of 0003:256C:006D.0001 failed with error -71
[   38.159367][   T30] audit: type=1400 audit(1721352942.973:200): avc:  denied  { create } for  pid=625 comm="syz.1.108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   38.169196][  T637] loop4: detected capacity change from 0 to 512
[   38.185147][   T30] audit: type=1400 audit(1721352942.973:201): avc:  denied  { write } for  pid=625 comm="syz.1.108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   38.200090][   T26] usb 2-1: USB disconnect, device number 2
[   38.235575][  T643] loop2: detected capacity change from 0 to 512
[   38.243374][  T645] loop1: detected capacity change from 0 to 128
[   38.245523][  T637] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   38.268508][  T637] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.110: iget: bad extended attribute block 19
[   38.281251][  T637] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.110: couldn't read orphan inode 15 (err -117)
[   38.283465][  T643] EXT4-fs (loop2): Ignoring removed oldalloc option
[   38.293364][  T637] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   38.317373][  T643] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.112: casefold flag without casefold feature
[   38.331590][  T645] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   38.344843][  T645] ext4 filesystem being mounted at /29/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[   38.346444][  T643] EXT4-fs error (device loop2): __ext4_iget:4892: inode #12: block 2: comm syz.2.112: invalid block
[   38.387991][  T643] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.112: error while reading EA inode 12 err=-117
[   38.401319][  T643] EXT4-fs (loop2): 1 orphan inode deleted
[   38.407125][  T643] EXT4-fs (loop2): mounted filesystem without journal. Opts: oldalloc,usrquota,,errors=continue. Quota mode: writeback.
[   38.435051][   T30] audit: type=1400 audit(1721352943.323:202): avc:  denied  { create } for  pid=642 comm="syz.2.112" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   38.462790][   T30] audit: type=1400 audit(1721352943.353:203): avc:  denied  { read } for  pid=642 comm="syz.2.112" name="file0" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   38.486987][   T30] audit: type=1400 audit(1721352943.353:204): avc:  denied  { rename } for  pid=642 comm="syz.2.112" name="file0" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   38.510904][   T30] audit: type=1400 audit(1721352943.353:205): avc:  denied  { unlink } for  pid=642 comm="syz.2.112" name="file0" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   39.005028][  T663] raw_sendmsg: syz.2.118 forgot to set AF_INET. Fix it!
[   39.040401][  T663] loop2: detected capacity change from 0 to 256
[   39.046956][   T63] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   39.052141][   T20] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   39.435724][  T684] SELinux: security_context_str_to_sid(staff_u) failed for (dev ?, type ?) errno=-22
[   39.449071][  T684] SELinux: security_context_str_to_sid(staff_u) failed for (dev overlay, type overlay) errno=-22
[   39.486832][   T20] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   39.548036][   T20] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[   39.579428][   T20] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   39.597242][   T20] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   39.606175][   T20] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   39.617598][   T20] usb 1-1: config 0 descriptor??
[   39.636622][  T641] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   39.695500][   T63] usb 4-1: config 0 has no interfaces?
[   39.701077][   T63] usb 4-1: New USB device found, idVendor=046d, idProduct=20ee, bcdDevice= 0.00
[   39.710017][   T63] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   39.726768][   T63] usb 4-1: config 0 descriptor??
[   39.740650][  T686] loop4: detected capacity change from 0 to 256
[   39.818137][  T688] SELinux:  Context system_u:object_r:gpg_agent_exec_t:s0 is not valid (left unmapped).
[   39.847639][  T688] loop1: detected capacity change from 0 to 256
[   39.939630][  T686] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d)
[   39.955789][  T686] exFAT-fs (loop4): error, invalid access to FAT bad cluster (entry 0x00000005)
[   39.964979][  T686] exFAT-fs (loop4): Filesystem has been set read-only
[   39.977959][  T327] usb 4-1: USB disconnect, device number 2
[   39.985948][  T686] exFAT-fs (loop4): failed to initialize root inode
[   40.186301][  T696] loop2: detected capacity change from 0 to 256
[   40.307542][   T20] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x4
[   40.319369][   T20] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   40.331724][   T20] plantronics 0003:047F:FFFF.0002: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   40.433289][  T718] process 'syz.4.141' launched '/dev/fd/9' with NULL argv: empty string added
[   40.771555][  T735] loop1: detected capacity change from 0 to 512
[   40.838289][  T739] device syzkaller0 entered promiscuous mode
[   40.849818][  T735] EXT4-fs (loop1): Ignoring removed orlov option
[   40.850011][  T735] EXT4-fs (loop1): Test dummy encryption mode enabled
[   40.850050][  T735] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   40.864062][  T735] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a040e01c, mo2=0002]
[   40.864129][  T735] System zones: 1-12
[   40.865101][  T735] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.147: casefold flag without casefold feature
[   40.865325][  T735] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.147: missing EA_INODE flag
[   40.865483][  T735] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.147: error while reading EA inode 12 err=-117
[   40.865642][  T735] EXT4-fs (loop1): 1 orphan inode deleted
[   40.865664][  T735] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,abort,max_dir_size_kb=0x0000000000009c7c,debug,orlov,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue. Quota mode: none.
[   42.585653][   T39] usb 1-1: USB disconnect, device number 2
[   42.655864][  T755] : renamed from ipvlan1
[   42.687862][   T30] kauditd_printk_skb: 54 callbacks suppressed
[   42.687875][   T30] audit: type=1400 audit(1721352947.583:260): avc:  denied  { create } for  pid=758 comm="syz.2.155" dev="anon_inodefs" ino=16595 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   42.721133][   T30] audit: type=1400 audit(1721352947.593:261): avc:  denied  { ioctl } for  pid=758 comm="syz.2.155" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=16595 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   42.847860][  T773] loop1: detected capacity change from 0 to 512
[   42.930085][  T768] loop3: detected capacity change from 0 to 40427
[   42.947193][  T768] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   42.954751][  T768] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   42.967199][  T773] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   42.981614][  T773] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038 (0x7fffffff)
[   43.001878][  T768] F2FS-fs (loop3): Found nat_bits in checkpoint
[   43.033641][  T768] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   43.046163][  T768] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   43.053287][  T768] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   43.069076][  T777] loop4: detected capacity change from 0 to 256
[   43.086263][   T30] audit: type=1400 audit(1721352947.973:262): avc:  denied  { mounton } for  pid=767 comm="syz.3.159" path="/31/file1/bus" dev="loop3" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   43.098376][  T768] overlayfs: failed to resolve './file0': -2
[   43.108733][   T30] audit: type=1400 audit(1721352947.983:263): avc:  denied  { setattr } for  pid=767 comm="syz.3.159" name="work" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   43.136197][   T30] audit: type=1400 audit(1721352947.993:264): avc:  denied  { unlink } for  pid=767 comm="syz.3.159" name="#5" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[   43.148339][  T777] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d)
[   43.170475][  T777] exFAT-fs (loop4): error, invalid access to FAT bad cluster (entry 0x00000005)
[   43.179617][  T777] exFAT-fs (loop4): Filesystem has been set read-only
[   43.186354][  T777] exFAT-fs (loop4): failed to initialize root inode
[   43.367778][  T791] device syzkaller0 entered promiscuous mode
[   43.445565][  T796] : renamed from ipvlan1
[   43.537919][  T803] loop2: detected capacity change from 0 to 512
[   43.608053][  T803] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   43.619109][  T803] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038 (0x7fffffff)
[   43.636541][  T664] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[   43.647445][  T803] EXT4-fs error (device loop2): ext4_search_dir:1548: inode #2: block 3: comm syz.2.171: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[   43.698434][  T806] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.705284][  T806] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.729799][  T814] loop1: detected capacity change from 0 to 256
[   43.738920][  T806] device bridge_slave_0 entered promiscuous mode
[   43.751808][  T806] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.759161][  T806] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.766484][  T806] device bridge_slave_1 entered promiscuous mode
[   43.792570][   T30] audit: type=1326 audit(1721352948.683:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=815 comm="syz.2.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   43.829501][  T814] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.842846][   T30] audit: type=1326 audit(1721352948.683:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=815 comm="syz.2.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   43.842870][   T30] audit: type=1326 audit(1721352948.683:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=815 comm="syz.2.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   43.842889][   T30] audit: type=1326 audit(1721352948.683:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=815 comm="syz.2.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   43.842909][   T30] audit: type=1326 audit(1721352948.683:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=815 comm="syz.2.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   43.940537][  T822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.176'.
[   44.049892][  T832] loop1: detected capacity change from 0 to 256
[   44.075210][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.083583][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.086638][  T664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   44.101732][  T664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[   44.113828][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.132446][  T664] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   44.132845][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.145249][  T664] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   44.161948][  T664] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.171042][  T318] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.173848][  T664] usb 4-1: config 0 descriptor??
[   44.177959][  T318] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.188311][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.202368][  T835] loop1: detected capacity change from 0 to 512
[   44.210403][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.216618][  T792] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   44.218732][  T318] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.231896][  T318] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.239746][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.248429][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.270157][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.284673][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   44.297028][  T835] EXT4-fs (loop1): Ignoring removed oldalloc option
[   44.302480][  T415] device bridge_slave_1 left promiscuous mode
[   44.304453][  T835] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled
[   44.311054][  T415] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.326596][  T835] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[   44.336244][  T835] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[   44.338918][  T415] device bridge_slave_0 left promiscuous mode
[   44.345780][  T835] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[   44.352161][  T415] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.369594][  T835] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   44.377480][  T835] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000]
[   44.385264][  T415] device veth1_macvtap left promiscuous mode
[   44.385736][  T835] EXT4-fs (loop1): orphan cleanup on readonly fs
[   44.391582][  T415] device veth0_vlan left promiscuous mode
[   44.398296][  T835] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.182: bg 0: block 34: padding at end of block bitmap is not set
[   44.421407][  T835] EXT4-fs (loop1): 1 truncate cleaned up
[   44.436324][  T835] EXT4-fs (loop1): mounted filesystem without journal. Opts: oldalloc,discard,usrjquota=./file0,noblock_validity,,errors=continue. Quota mode: writeback.
[   44.540435][  T841] loop0: detected capacity change from 0 to 8192
[   44.651981][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   44.660296][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   44.669869][  T841] FAT-fs (loop0): Unrecognized mount option "€: " or missing value
[   44.678383][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   44.964813][  T806] device veth0_vlan entered promiscuous mode
[   44.988565][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   45.003880][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.021494][  T806] device veth1_macvtap entered promiscuous mode
[   45.051564][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   45.067966][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.144344][  T664] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x4
[   45.151787][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.159941][  T664] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[   45.183300][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   45.192064][  T664] plantronics 0003:047F:FFFF.0003: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   45.207072][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   45.451622][  T869] ------------[ cut here ]------------
[   45.457045][  T869] WARNING: CPU: 0 PID: 869 at mm/vmalloc.c:3018 __vmalloc_node_range+0x7ca/0x8d0
[   45.466029][  T869] Modules linked in:
[   45.470283][  T869] CPU: 0 PID: 869 Comm: syz.0.191 Not tainted 5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   45.480834][  T869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   45.491274][  T869] RIP: 0010:__vmalloc_node_range+0x7ca/0x8d0
[   45.499485][  T869] Code: 89 d8 48 81 c4 88 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 27 2c c4 ff eb e2 e8 20 2c c4 ff e9 18 fd ff ff e8 16 2c c4 ff <0f> 0b eb cf e8 0d 2c c4 ff 4c 89 f7 e8 25 eb ff ff eb c0 89 d9 80
[   45.521993][  T869] RSP: 0018:ffffc90000bf7a88 EFLAGS: 00010287
[   45.530173][  T869] RAX: ffffffff81ac0baa RBX: 0000000000000000 RCX: 0000000000040000
[   45.538288][  T869] RDX: ffffc90003c2b000 RSI: 00000000000011ef RDI: 00000000000011f0
[   45.546139][  T869] RBP: ffffc90000bf7b38 R08: ffffffff81ac041a R09: 8000000000000163
[   45.564368][  T869] R10: fffff5200017ee64 R11: dffffc0000000001 R12: 0000000000000001
[   45.578798][  T869] R13: 0000000000000000 R14: ffffe8ffffffffff R15: ffffc90000000000
[   45.595360][  T869] FS:  00007f0ab09b16c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   45.610005][  T869] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   45.616758][  T869] CR2: 0000001b2e505ff8 CR3: 000000012793f000 CR4: 00000000003506b0
[   45.624634][  T869] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   45.632851][  T869] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   45.640942][  T869] Call Trace:
[   45.644156][  T869]  <TASK>
[   45.647215][  T869]  ? show_regs+0x58/0x60
[   45.651359][  T869]  ? __warn+0x160/0x2f0
[   45.655386][  T869]  ? __vmalloc_node_range+0x7ca/0x8d0
[   45.660873][  T869]  ? report_bug+0x3d9/0x5b0
[   45.665273][  T869]  ? __vmalloc_node_range+0x7ca/0x8d0
[   45.677033][  T869]  ? handle_bug+0x41/0x70
[   45.685585][  T869]  ? exc_invalid_op+0x1b/0x50
[   45.695718][  T869]  ? asm_exc_invalid_op+0x1b/0x20
[   45.706199][  T869]  ? __vmalloc_node_range+0x3a/0x8d0
[   45.716893][  T869]  ? __vmalloc_node_range+0x7ca/0x8d0
[   45.729053][  T869]  ? __vmalloc_node_range+0x7ca/0x8d0
[   45.739691][  T869]  ? __vmalloc_node_range+0x7ca/0x8d0
[   45.750322][  T869]  ? avc_has_perm_noaudit+0x430/0x430
[   45.760958][  T869]  ? sel_write_load+0x282/0x580
[   45.769987][  T869]  vmalloc+0x78/0x90
[   45.778054][  T869]  ? sel_write_load+0x282/0x580
[   45.787076][  T869]  sel_write_load+0x282/0x580
[   45.797013][  T869]  ? avc_policy_seqno+0x1b/0x70
[   45.806064][  T869]  ? sel_make_dir+0x270/0x270
[   45.816027][  T869]  ? fsnotify_perm+0x6a/0x5d0
[   45.826086][  T869]  ? security_file_permission+0x86/0xb0
[   45.836944][  T869]  ? sel_make_dir+0x270/0x270
[   45.846880][  T869]  vfs_write+0x406/0x1110
[   45.855385][  T869]  ? kmem_cache_free+0x116/0x2e0
[   45.865638][  T869]  ? file_end_write+0x1c0/0x1c0
[   45.875775][  T869]  ? __kasan_check_write+0x14/0x20
[   45.884807][  T869]  ? mutex_lock+0xb6/0x1e0
[   45.895373][  T869]  ? wait_for_completion_killable_timeout+0x10/0x10
[   45.909447][  T869]  ? __fdget_pos+0x2e7/0x3a0
[   45.918260][  T869]  ? ksys_write+0x77/0x2c0
[   45.928022][  T869]  ksys_write+0x199/0x2c0
[   45.936564][  T869]  ? bpf_trace_run1+0x1c0/0x1c0
[   45.941399][  T869]  ? __ia32_sys_read+0x90/0x90
[   45.948207][  T869]  ? __bpf_trace_sys_enter+0x62/0x70
[   45.953354][  T869]  __x64_sys_write+0x7b/0x90
[   45.958087][  T869]  do_syscall_64+0x3d/0xb0
[   45.962331][  T869]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.969256][  T869] RIP: 0033:0x7f0ab172fb59
[   45.973503][  T869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.993073][  T869] RSP: 002b:00007f0ab09b1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   46.008686][  T869] RAX: ffffffffffffffda RBX: 00007f0ab18bff60 RCX: 00007f0ab172fb59
[   46.017411][  T869] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   46.025691][  T869] RBP: 00007f0ab179ee5d R08: 0000000000000000 R09: 0000000000000000
[   46.034421][  T869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   46.044238][  T869] R13: 000000000000004d R14: 00007f0ab18bff60 R15: 00007ffdd5d0a368
[   46.052602][  T869]  </TASK>
[   46.055573][  T869] ---[ end trace 4b56b9c99e516b7e ]---
[   46.109221][  T889] netlink: 8 bytes leftover after parsing attributes in process `syz.2.195'.
[   46.410394][  T900] loop1: detected capacity change from 0 to 256
[   46.633328][  T906] loop2: detected capacity change from 0 to 256
[   46.706977][  T906] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   46.848366][  T920] netlink: 24 bytes leftover after parsing attributes in process `syz.4.207'.
[   47.209330][  T929] netlink: 8 bytes leftover after parsing attributes in process `syz.4.211'.
[   47.237811][  T933] loop1: detected capacity change from 0 to 256
[   47.247882][  T929] netlink: 172 bytes leftover after parsing attributes in process `syz.4.211'.
[   47.518467][  T941] netlink: 12 bytes leftover after parsing attributes in process `syz.1.212'.
[   47.527238][  T941] netlink: 40 bytes leftover after parsing attributes in process `syz.1.212'.
[   47.535873][  T941] netlink: 40 bytes leftover after parsing attributes in process `syz.1.212'.
[   47.713272][   T20] usb 4-1: USB disconnect, device number 3
[   47.827683][  T953] loop0: detected capacity change from 0 to 512
[   47.887728][  T953] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   47.942163][  T953] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   47.970256][  T953] EXT4-fs (loop0): 1 truncate cleaned up
[   47.977315][  T947] loop3: detected capacity change from 0 to 40427
[   47.983631][  T953] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   48.004624][   T30] kauditd_printk_skb: 21 callbacks suppressed
[   48.004638][   T30] audit: type=1400 audit(1721352952.893:289): avc:  denied  { append } for  pid=952 comm="syz.0.218" path="/21/file1/cgroup.controllers" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.041791][   T30] audit: type=1400 audit(1721352952.933:290): avc:  denied  { ioctl } for  pid=952 comm="syz.0.218" path="/21/file1/cgroup.controllers" dev="loop0" ino=18 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.045679][  T947] F2FS-fs (loop3): invalid crc value
[   48.126592][  T947] F2FS-fs (loop3): Found nat_bits in checkpoint
[   50.475210][  T969] loop0: detected capacity change from 0 to 256
[   50.477334][  T971] loop4: detected capacity change from 0 to 256
[   51.960883][  T969] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   52.008495][  T947] F2FS-fs (loop3): Cannot turn on quotas: -2 on 1
[   52.512522][   T30] audit: type=1400 audit(1721352957.403:291): avc:  denied  { create } for  pid=983 comm="syz.0.224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   52.536762][  T973] kernel write not supported for file /67/uid_map (pid: 973 comm: kworker/0:7)
[   52.552066][  T976] loop2: detected capacity change from 0 to 256
[   52.629412][  T976] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d)
[   52.641791][  T976] exFAT-fs (loop2): error, invalid access to FAT bad cluster (entry 0x00000005)
[   52.650679][  T976] exFAT-fs (loop2): Filesystem has been set read-only
[   52.657322][  T976] exFAT-fs (loop2): failed to initialize root inode
[   52.786571][   T30] audit: type=1400 audit(1721352957.613:292): avc:  denied  { create } for  pid=990 comm="syz.4.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   52.865348][   T30] audit: type=1400 audit(1721352957.623:293): avc:  denied  { setopt } for  pid=990 comm="syz.4.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   52.884404][   T30] audit: type=1400 audit(1721352957.653:294): avc:  denied  { bind } for  pid=990 comm="syz.4.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   52.903386][   T30] audit: type=1400 audit(1721352957.653:295): avc:  denied  { getopt } for  pid=990 comm="syz.4.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   52.910367][  T989] loop3: detected capacity change from 0 to 40427
[   52.949753][  T989] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   52.957407][  T989] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   52.974044][  T997] loop1: detected capacity change from 0 to 512
[   52.981910][  T989] F2FS-fs (loop3): Found nat_bits in checkpoint
[   53.006602][  T298] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   53.026947][  T997] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   53.038142][  T997] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038 (0x7fffffff)
[   53.045525][  T989] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   53.060638][  T989] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   53.067977][  T989] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   53.113189][  T997] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz.1.229: Invalid inode table block 2136265764 in block_group 0
[   53.134782][  T997] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5820: Corrupt filesystem
[   53.136810][  T989] overlayfs: failed to resolve './file0': -2
[   53.150298][  T997] EXT4-fs error (device loop1): ext4_dirty_inode:6024: inode #18: comm syz.1.229: mark_inode_dirty error
[   53.172167][  T997] EXT4-fs error (device loop1): ext4_map_blocks:716: inode #18: block 44: comm syz.1.229: lblock 0 mapped to illegal pblock 44 (length 4)
[   53.189680][  T997] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz.1.229: Invalid inode table block 2136265764 in block_group 0
[   53.203445][  T997] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5820: Corrupt filesystem
[   53.213003][  T997] EXT4-fs error (device loop1): ext4_alloc_file_blocks:4509: inode #18: comm syz.1.229: mark_inode_dirty error
[   53.229100][  T295] EXT4-fs error (device loop1): ext4_map_blocks:602: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   53.245605][  T295] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1082: inode #2: lblock 0: comm syz-executor: error -117 reading directory block
[   53.259640][  T298] usb 1-1: Using ep0 maxpacket: 16
[   53.269004][  T325] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm kworker/u4:3: Invalid inode table block 2136265764 in block_group 0
[   53.283889][  T295] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor: Invalid inode table block 2136265764 in block_group 0
[   53.379612][  T298] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   53.466345][  T325] tipc: Disabling bearer <udp:s>
[   53.471732][  T325] tipc: Left network mode
[   53.641496][  T298] usb 1-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25
[   53.659497][  T298] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   53.674831][  T298] usb 1-1: Product: syz
[   53.681955][  T298] usb 1-1: Manufacturer: syz
[   53.687539][  T298] usb 1-1: SerialNumber: syz
[   53.749299][ T1018] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.756261][ T1018] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.763959][ T1018] device bridge_slave_0 entered promiscuous mode
[   53.764210][  T298] usb 1-1: config 0 descriptor??
[   53.783599][ T1018] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.861239][ T1013] loop4: detected capacity change from 0 to 40427
[   53.865591][ T1018] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.918196][ T1013] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[   53.930821][ T1013] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   53.933076][ T1018] device bridge_slave_1 entered promiscuous mode
[   54.075427][ T1013] F2FS-fs (loop4): Found nat_bits in checkpoint
[   54.212450][ T1013] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   54.220923][  T993] loop0: detected capacity change from 0 to 16
[   54.236559][ T1013] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   54.299447][  T993] erofs: (device loop0): mounted with root inode @ nid 36.
[   54.315546][ T1018] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.322432][ T1018] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.329553][ T1018] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.336308][ T1018] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.376398][  T325] device bridge_slave_1 left promiscuous mode
[   54.385118][  T325] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.394839][ T1028] loop3: detected capacity change from 0 to 40427
[   54.405320][  T325] device bridge_slave_0 left promiscuous mode
[   54.412205][  T325] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.415003][  T993] erofs: (device loop0): erofs_readdir: invalid de[0].nameoff 0 @ nid 46
[   54.428128][  T325] device veth1_macvtap left promiscuous mode
[   54.434086][  T325] device veth0_vlan left promiscuous mode
[   54.437045][ T1028] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   54.447439][ T1028] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   54.482826][ T1028] F2FS-fs (loop3): Found nat_bits in checkpoint
[   54.514008][   T30] audit: type=1400 audit(1721352959.403:296): avc:  denied  { read } for  pid=1012 comm="syz.4.234" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   54.539719][ T1028] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   54.559892][ T1028] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   54.595511][   T30] audit: type=1400 audit(1721352959.403:297): avc:  denied  { open } for  pid=1012 comm="syz.4.234" path="/dev/vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   54.891078][   T30] audit: type=1400 audit(1721352959.453:298): avc:  denied  { ioctl } for  pid=992 comm="syz.0.228" path="socket:[17983]" dev="sockfs" ino=17983 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.925446][   T30] audit: type=1326 audit(1721352959.593:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.010451][   T30] audit: type=1326 audit(1721352959.593:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.037098][  T664] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.044094][   T30] audit: type=1326 audit(1721352959.593:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.067907][  T664] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.077023][ T1054] netlink: 'syz.2.243': attribute type 5 has an invalid length.
[   55.101131][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.109333][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.116546][   T30] audit: type=1326 audit(1721352959.593:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.164909][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   55.208776][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.240052][  T664] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.246939][  T664] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.288865][   T30] audit: type=1326 audit(1721352959.603:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.319309][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   55.335909][  T664] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.337393][   T30] audit: type=1326 audit(1721352959.603:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.345363][  T664] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.371974][   T30] audit: type=1326 audit(1721352959.603:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1051 comm="syz.2.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46d030db59 code=0x7ffc0000
[   55.373584][  T664] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.478581][ T1064] loop2: detected capacity change from 0 to 2048
[   55.497441][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.505667][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.520484][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.528853][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.536748][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   55.545243][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.557437][  T622] usb 1-1: USB disconnect, device number 3
[   55.577819][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   55.585659][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.592840][ T1064] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   55.628237][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.635618][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.647870][ T1018] device veth0_vlan entered promiscuous mode
[   55.668565][ T1018] device veth1_macvtap entered promiscuous mode
[   55.688221][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   55.705909][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   55.717958][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   55.727896][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   55.736152][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   55.744646][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   55.752952][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   55.796773][ T1087] loop3: detected capacity change from 0 to 256
[   55.807851][ T1089] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[   56.634447][ T1098] loop4: detected capacity change from 0 to 256
[   57.216471][ T1100] netlink: 12 bytes leftover after parsing attributes in process `syz.3.256'.
[   57.225171][ T1100] netlink: 40 bytes leftover after parsing attributes in process `syz.3.256'.
[   57.233875][ T1100] netlink: 40 bytes leftover after parsing attributes in process `syz.3.256'.
[   57.606484][ T1116] netlink: 'syz.2.258': attribute type 5 has an invalid length.
[   57.841199][ T1112] loop0: detected capacity change from 0 to 2048
[   57.881271][ T1112] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   57.906286][ T1112] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   57.932458][ T1112] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1)!
[   57.946717][ T1112] EXT4-fs (loop0): group descriptors corrupted!
[   59.176716][  T327] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   59.310369][ T1154] capability: warning: `syz.2.275' uses deprecated v2 capabilities in a way that may be insecure
[   59.496950][  T327] usb 2-1: Using ep0 maxpacket: 16
[   59.543481][ T1163] loop0: detected capacity change from 0 to 256
[   59.581989][ T1164] loop2: detected capacity change from 0 to 256
[   59.627447][  T327] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   59.781506][ T1163] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x6842f4db, utbl_chksum : 0xe619d30d)
[   59.784305][ T1171] bpf_get_probe_write_proto: 2 callbacks suppressed
[   59.784320][ T1171] syz.3.282[1171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.800515][ T1171] syz.3.282[1171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.839482][   T30] kauditd_printk_skb: 36 callbacks suppressed
[   59.839500][   T30] audit: type=1400 audit(1721352964.733:342): avc:  denied  { ioctl } for  pid=1170 comm="syz.3.282" path="/dev/fuse" dev="devtmpfs" ino=91 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   59.881030][  T622] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   59.936643][  T327] usb 2-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25
[   59.955686][  T327] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.964691][  T327] usb 2-1: Product: syz
[   59.973875][  T327] usb 2-1: Manufacturer: syz
[   59.983958][  T327] usb 2-1: SerialNumber: syz
[   59.992650][  T327] usb 2-1: config 0 descriptor??
[   60.008826][   T30] audit: type=1400 audit(1721352964.903:343): avc:  denied  { mounton } for  pid=1186 comm="syz.2.289" path="/63/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   60.032860][ T1187] incfs: Can't find or create .index dir in ./file0
[   60.046628][ T1187] incfs: mount failed -14
[   60.052219][ T1187] incfs_lookup_dentry err:-14
[   60.056768][ T1187] incfs: Can't find or create .index dir in ./file0
[   60.071534][ T1181] loop3: detected capacity change from 0 to 40427
[   60.077922][ T1187] incfs: mount failed -14
[   60.102301][ T1181] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   60.110062][ T1181] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   60.123314][ T1181] F2FS-fs (loop3): Found nat_bits in checkpoint
[   60.156670][  T622] usb 5-1: Using ep0 maxpacket: 32
[   60.195426][ T1181] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   60.204708][ T1181] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   60.267484][ T1140] loop1: detected capacity change from 0 to 16
[   60.278631][  T622] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   60.520192][ T1140] erofs: (device loop1): mounted with root inode @ nid 36.
[   60.577996][ T1140] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 46
[   60.616654][  T622] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[   60.636544][  T622] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.644412][  T622] usb 5-1: Product: syz
[   60.648562][  T622] usb 5-1: Manufacturer: syz
[   60.652969][  T622] usb 5-1: SerialNumber: syz
[   60.658412][  T622] usb 5-1: config 0 descriptor??
[   60.697001][  T622] usb 5-1: bad CDC descriptors
[   60.701798][  T622] usb 5-1: unsupported MDLM descriptors
[   60.713982][  T622] usb 2-1: USB disconnect, device number 3
[   60.940378][   T63] usb 5-1: USB disconnect, device number 2
[   60.960648][ T1213] loop0: detected capacity change from 0 to 1024
[   61.036104][ T1213] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   61.045819][ T1213] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[   61.058874][ T1213] EXT4-fs (loop0): journal inode is deleted
[   61.083565][ T1217] syz.3.298[1217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.083638][ T1217] syz.3.298[1217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.416832][  T664] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   61.511781][ T1235] loop1: detected capacity change from 0 to 256
[   61.543732][ T1235] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[   61.561506][   T30] audit: type=1400 audit(1721352966.453:344): avc:  denied  { write } for  pid=1234 comm="syz.1.306" path="/6/file2/bus" dev="loop1" ino=1048617 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   61.599975][ T1237] netlink: 'syz.4.307': attribute type 4 has an invalid length.
[   61.736567][  T664] usb 4-1: Using ep0 maxpacket: 16
[   62.033434][ T1252] netlink: 40 bytes leftover after parsing attributes in process `syz.0.311'.
[   62.046857][  T664] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.058045][  T664] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[   62.067643][  T664] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   62.088260][   T30] audit: type=1400 audit(1721352966.983:345): avc:  denied  { bind } for  pid=1253 comm="syz.0.312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   62.110441][  T664] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[   62.120397][  T664] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[   62.182492][ T1256] incfs: Can't find or create .index dir in ./file0
[   62.189547][ T1256] incfs: mount failed -14
[   62.196309][ T1256] incfs_lookup_dentry err:-14
[   62.201018][ T1256] incfs: Can't find or create .index dir in ./file0
[   62.207539][ T1256] incfs: mount failed -14
[   62.216668][  T664] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   62.225605][  T664] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   62.233488][  T664] usb 4-1: SerialNumber: syz
[   62.257170][ T1223] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   62.277215][  T664] cdc_acm: probe of 4-1:1.0 failed with error -12
[   62.416666][   T63] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   62.466831][ T1264] loop1: detected capacity change from 0 to 256
[   62.657026][   T63] usb 1-1: Using ep0 maxpacket: 8
[   62.682189][  T622] usb 4-1: USB disconnect, device number 4
[   62.760730][   T30] audit: type=1400 audit(1721352967.653:346): avc:  denied  { unmount } for  pid=294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   62.876772][   T63] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.996971][   T63] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   63.007366][   T63] usb 1-1: New USB device found, idVendor=1b3d, idProduct=0146, bcdDevice= 1.b8
[   63.016359][   T63] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.030744][ T1277] loop2: detected capacity change from 0 to 1024
[   63.040685][   T63] usb 1-1: config 0 descriptor??
[   63.078444][   T63] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[   63.088162][ T1277] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   63.097804][ T1277] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[   63.121361][ T1277] EXT4-fs (loop2): journal inode is deleted
[   63.135160][   T63] usb 1-1: Detected SIO
[   63.139649][   T63] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 1
[   63.163562][   T63] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   63.570757][   T63] usb 1-1: USB disconnect, device number 4
[   63.586740][   T63] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   63.596093][   T63] ftdi_sio 1-1:0.0: device disconnected
[   63.637655][ T1284] loop4: detected capacity change from 0 to 2048
[   63.700635][ T1284] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   63.713034][ T1284] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   63.713736][ T1290] loop2: detected capacity change from 0 to 8192
[   63.726371][ T1284] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1)!
[   63.740502][ T1284] EXT4-fs (loop4): group descriptors corrupted!
[   63.917391][    T6] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   64.396679][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   64.409051][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   64.420976][    T6] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   64.435210][    T6] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   64.445748][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.523487][ T1316] loop4: detected capacity change from 0 to 256
[   64.711490][    T6] usb 2-1: config 0 descriptor??
[   64.736677][ T1282] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   64.835485][   T30] audit: type=1400 audit(1721352969.723:347): avc:  denied  { ioctl } for  pid=1324 comm="syz.2.339" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   64.843710][ T1325] binder: transaction release 7 bad object at offset 536871616, size 72
[   64.860983][   T30] audit: type=1400 audit(1721352969.723:348): avc:  denied  { set_context_mgr } for  pid=1324 comm="syz.2.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   64.868932][ T1325] binder: transaction release 7 bad object at offset 536871168, size 72
[   64.888736][   T30] audit: type=1400 audit(1721352969.723:349): avc:  denied  { map } for  pid=1324 comm="syz.2.339" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   64.925203][   T30] audit: type=1400 audit(1721352969.723:350): avc:  denied  { call } for  pid=1324 comm="syz.2.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   64.928500][ T1328] incfs: Can't find or create .index dir in ./file0
[   64.944890][   T30] audit: type=1400 audit(1721352969.723:351): avc:  denied  { transfer } for  pid=1324 comm="syz.2.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   64.950462][ T1328] incfs: mount failed -14
[   64.972580][ T1321] loop0: detected capacity change from 0 to 1024
[   64.982827][ T1328] incfs_lookup_dentry err:-14
[   64.987443][ T1328] incfs: Can't find or create .index dir in ./file0
[   64.993841][ T1328] incfs: mount failed -14
[   64.999083][ T1321] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   65.008708][ T1321] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[   65.018744][ T1321] EXT4-fs (loop0): journal inode is deleted
[   65.024539][  T622] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   65.092134][ T1333] loop2: detected capacity change from 0 to 512
[   65.147334][ T1333] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5
[   65.147334][ T1333] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   65.147334][ T1333] 
[   65.179231][ T1333] EXT4-fs (loop2): 1 orphan inode deleted
[   65.184845][ T1333] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,nodiscard,nodelalloc,init_itable,stripe=0x0000000000000003,resgid=0x0000000000000000,sysvgroups,nouser_xattr,usrquota,,errors=continue. Quota mode: writeback.
[   65.209437][ T1333] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038 (0x7fffffff)
[   65.239221][    T6] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[   65.247095][    T6] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[   65.255757][    T6] plantronics 0003:047F:FFFF.0004: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   65.298474][   T30] audit: type=1326 audit(1721352970.183:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1339 comm="syz.4.344" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4264b91b59 code=0x0
[   65.300498][  T622] usb 4-1: Using ep0 maxpacket: 16
[   66.661525][   T30] audit: type=1326 audit(1721352971.553:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1348 comm="syz.0.345" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ab172fb59 code=0x0
[   66.690501][   T39] usb 2-1: USB disconnect, device number 4
[   66.816712][  T622] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.904693][  T622] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[   67.128905][  T622] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   67.218769][  T622] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[   67.229329][  T622] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[   67.316614][  T622] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   67.325654][  T622] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   67.333619][  T622] usb 4-1: SerialNumber: syz
[   67.356609][ T1319] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   67.378389][  T622] cdc_acm: probe of 4-1:1.0 failed with error -12
[   67.396559][    T6] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   67.600483][   T30] audit: type=1326 audit(1721352972.493:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1373 comm="syz.1.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bf921b59 code=0x7ffc0000
[   67.636651][  T664] usb 4-1: USB disconnect, device number 5
[   67.653547][   T30] audit: type=1326 audit(1721352972.513:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1373 comm="syz.1.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2bf921b59 code=0x7ffc0000
[   67.680314][   T30] audit: type=1326 audit(1721352972.513:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1373 comm="syz.1.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bf921b59 code=0x7ffc0000
[   67.703727][   T30] audit: type=1326 audit(1721352972.513:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1373 comm="syz.1.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2bf921b59 code=0x7ffc0000
[   67.740423][ T1383] loop1: detected capacity change from 0 to 1024
[   67.826620][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   67.839239][ T1383] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[   67.967172][ T1383] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   67.978889][ T1383] EXT4-fs (loop1): orphan cleanup on readonly fs
[   67.986282][ T1383] EXT4-fs error (device loop1): ext4_free_blocks:6216: comm syz.1.356: Freeing blocks not in datazone - block = 0, count = 4096
[   68.001412][ T1383] EXT4-fs (loop1): Remounting filesystem read-only
[   68.008559][ T1383] EXT4-fs (loop1): 1 orphan inode deleted
[   68.014606][ T1383] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,barrier=0x0000000000000004,lazytime,init_itable=0x0000000000007ab4,jqfmt=vfsv0,. Quota mode: writeback.
[   68.194230][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   68.214368][    T6] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   68.223279][    T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.231574][    T6] usb 5-1: config 0 descriptor??
[   68.394274][ T1397] loop3: detected capacity change from 0 to 1024
[   68.439547][ T1397] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback.
[   68.548068][ T1402] loop3: detected capacity change from 0 to 512
[   68.565117][ T1402] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[   69.314173][    T6] hid (null): bogus close delimiter
[   69.474827][    T6] usb 5-1: language id specifier not provided by device, defaulting to English
[   69.772081][ T1427] loop3: detected capacity change from 0 to 40427
[   69.871413][ T1427] F2FS-fs (loop3): invalid crc value
[   69.877766][ T1427] F2FS-fs (loop3): Found nat_bits in checkpoint
[   69.908108][    T6] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0005/input/input4
[   69.908277][   T30] kauditd_printk_skb: 10 callbacks suppressed
[   69.908288][   T30] audit: type=1400 audit(1721352974.803:368): avc:  denied  { read write } for  pid=1443 comm="syz.1.376" name="uhid" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   69.949457][ T1444] loop1: detected capacity change from 0 to 1024
[   69.955749][   T30] audit: type=1400 audit(1721352974.823:369): avc:  denied  { open } for  pid=1443 comm="syz.1.376" path="/dev/uhid" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   69.957944][ T1427] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   69.986029][    T6] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0005/input/input5
[   69.998613][    T6] uclogic 0003:256C:006D.0005: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.4-1/input0
[   70.011532][  T297] attempt to access beyond end of device
[   70.011532][  T297] loop3: rw=2049, want=45104, limit=40427
[   70.067007][ T1444] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   70.075940][ T1444] EXT4-fs (loop1): The Hurd can't support 64-bit file systems
[   70.134653][ T1447] netlink: 5 bytes leftover after parsing attributes in process `syz.3.377'.
[   70.143994][ T1447] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[   70.152773][ T1444] loop1: detected capacity change from 0 to 256
[   70.172578][ T1444] exfat: Unknown parameter ''
[   70.617046][ T1458] loop0: detected capacity change from 0 to 8192
[   70.658374][ T1458] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[   70.758111][ T1462] loop0: detected capacity change from 0 to 512
[   70.820740][ T1462] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[   71.890729][    T6] usb 5-1: USB disconnect, device number 3
[   73.663886][   T30] audit: type=1400 audit(1721352978.423:370): avc:  denied  { write } for  pid=1476 comm="syz.0.386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   74.400001][   T30] audit: type=1400 audit(1721352979.293:371): avc:  denied  { map } for  pid=1495 comm="syz.0.394" path="/dev/ashmem" dev="devtmpfs" ino=173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   74.456841][ T1488] loop4: detected capacity change from 0 to 40427
[   74.466572][  T298] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   74.498950][ T1488] F2FS-fs (loop4): invalid crc value
[   74.540319][ T1488] F2FS-fs (loop4): Found nat_bits in checkpoint
[   74.609123][ T1488] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   74.820637][ T1512] syz.1.397[1512] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.820710][ T1512] syz.1.397[1512] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.917704][  T806] attempt to access beyond end of device
[   74.917704][  T806] loop4: rw=2049, want=45104, limit=40427
[   75.026128][ T1517] loop1: detected capacity change from 0 to 512
[   75.059164][ T1517] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   75.176569][   T26] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   75.187728][ T1517] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.397: casefold flag without casefold feature
[   75.200549][ T1517] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.397: missing EA_INODE flag
[   75.206669][  T298] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   75.222961][ T1517] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.397: error while reading EA inode 12 err=-117
[   75.231634][  T298] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   75.244157][ T1513] loop2: detected capacity change from 0 to 40427
[   75.246134][  T298] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   75.252216][ T1517] EXT4-fs (loop1): 1 orphan inode deleted
[   75.265071][  T298] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   75.270384][ T1517] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,user_xattr,quota,noinit_itable,stripe=0x0000000000000005,max_dir_size_kb=0x00000000000007ff,errors=remount-ro,delalloc,min_batch_time=0x000000007fffffff,noblock_validity,errors=continue,journal_ioprio=0x000000. Quota mode: writeback.
[   75.279581][  T298] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.333568][  T298] usb 4-1: config 0 descriptor??
[   75.356625][ T1487] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   75.357066][ T1513] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   75.371206][ T1513] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   75.387675][ T1513] F2FS-fs (loop2): Found nat_bits in checkpoint
[   75.423609][ T1513] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   75.435827][ T1513] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   75.443189][ T1513] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   75.446600][   T26] usb 1-1: Using ep0 maxpacket: 16
[   75.473994][ T1513] overlayfs: failed to resolve './file0': -2
[   75.606653][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   75.617658][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   75.627233][   T26] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   75.639805][   T26] usb 1-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c
[   75.648661][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.657156][   T26] usb 1-1: config 0 descriptor??
[   75.985908][  T298] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[   75.993465][  T298] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[   76.004864][  T298] plantronics 0003:047F:FFFF.0006: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   76.138829][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x2
[   76.146434][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.153954][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.161431][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.168933][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.176316][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.183821][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.191285][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.198827][   T26] hid-multitouch 0003:045E:9994.0007: unknown main item tag 0x0
[   76.206921][   T26] hid-multitouch 0003:045E:9994.0007: hidraw1: USB HID v0.00 Device [HID 045e:9994] on usb-dummy_hcd.0-1/input0
[   76.325005][ T1547] netlink: 4 bytes leftover after parsing attributes in process `syz.4.409'.
[   76.344056][ T1547] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.351126][ T1547] IPv6: NLM_F_CREATE should be set when creating new route
[   76.359062][ T1547] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   76.365908][   T26] usb 1-1: USB disconnect, device number 5
[   76.366084][ T1547] IPv6: NLM_F_CREATE should be set when creating new route
[   76.367349][   T30] audit: type=1400 audit(1721352981.263:372): avc:  denied  { create } for  pid=1546 comm="syz.4.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   76.404915][ T1547] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=1547 comm=syz.4.409
[   76.416383][   T30] audit: type=1400 audit(1721352981.293:373): avc:  denied  { write } for  pid=1546 comm="syz.4.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   76.418256][ T1547] netlink: 4 bytes leftover after parsing attributes in process `syz.4.409'.
[   76.446456][   T30] audit: type=1400 audit(1721352981.313:374): avc:  denied  { read } for  pid=1546 comm="syz.4.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   76.710020][ T1555] mmap: syz.1.413 (1555) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   77.176617][   T26] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   77.431049][ T1578] netlink: 12 bytes leftover after parsing attributes in process `syz.0.421'.
[   77.442078][ T1578] tipc: Started in network mode
[   77.453034][ T1578] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[   77.462331][ T1578] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[   77.471296][ T1578] tipc: Enabled bearer <udp:syz1>, priority 10
[   77.477433][ T1580] netlink: 4 bytes leftover after parsing attributes in process `syz.2.423'.
[   77.491222][ T1580] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.498588][ T1580] IPv6: NLM_F_CREATE should be set when creating new route
[   77.506980][ T1580] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.514034][ T1580] IPv6: NLM_F_CREATE should be set when creating new route
[   77.521958][ T1580] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=1580 comm=syz.2.423
[   77.535075][ T1580] netlink: 4 bytes leftover after parsing attributes in process `syz.2.423'.
[   77.667009][   T26] usb 2-1: config 0 interface 0 has no altsetting 0
[   77.681936][   T26] usb 2-1: New USB device found, idVendor=0582, idProduct=00c4, bcdDevice=ac.5f
[   77.767316][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.775984][   T26] usb 2-1: config 0 descriptor??
[   77.817245][   T26] usb 2-1: selecting invalid altsetting 0
[   78.085358][  T622] usb 2-1: USB disconnect, device number 5
[   78.106570][  T973] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   78.196561][   T63] usb 4-1: reset high-speed USB device number 6 using dummy_hcd
[   78.416546][  T973] usb 3-1: Using ep0 maxpacket: 8
[   80.470347][  T622] tipc: Node number set to 1
[   80.526606][   T63] usb 4-1: device firmware changed
[   80.531819][   T39] usb 4-1: USB disconnect, device number 6
[   80.558223][ T1616] netlink: 4 bytes leftover after parsing attributes in process `syz.1.434'.
[   80.573754][  T973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.592726][  T973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.603712][  T973] usb 3-1: New USB device found, idVendor=1b3d, idProduct=0146, bcdDevice= 1.b8
[   80.610300][ T1616] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   80.612806][  T973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.620322][ T1616] IPv6: NLM_F_CREATE should be set when creating new route
[   80.631405][ T1616] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   80.642214][ T1616] IPv6: NLM_F_CREATE should be set when creating new route
[   80.653554][  T973] usb 3-1: config 0 descriptor??
[   80.661665][   T30] audit: type=1400 audit(1721352985.553:375): avc:  denied  { read } for  pid=1622 comm="syz.0.438" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   80.664874][ T1616] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=1616 comm=syz.1.434
[   80.704882][ T1616] netlink: 4 bytes leftover after parsing attributes in process `syz.1.434'.
[   80.718759][  T973] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[   80.726540][   T39] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[   80.737259][  T973] usb 3-1: Detected SIO
[   80.741242][  T973] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 1
[   80.749794][  T973] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   80.832284][  T973] usb 3-1: USB disconnect, device number 2
[   80.840789][  T973] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   80.851419][  T973] ftdi_sio 3-1:0.0: device disconnected
[   83.305606][ T1661] netlink: 12 bytes leftover after parsing attributes in process `syz.1.452'.
[   83.318181][ T1659] loop0: detected capacity change from 0 to 2048
[   83.347578][ T1659] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   83.362459][ T1659] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   83.380656][ T1659] EXT4-fs (loop0): failed to initialize system zone (-117)
[   83.390056][ T1659] EXT4-fs (loop0): mount failed
[   83.744607][   T39] usb 4-1: device not accepting address 7, error -71
[   83.757805][  T622] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   84.126563][   T39] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[   84.266676][  T622] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   84.277923][  T622] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   84.287809][  T622] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   84.297021][  T622] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.305345][  T622] usb 2-1: config 0 descriptor??
[   84.516639][   T39] usb 4-1: config 0 interface 0 has no altsetting 0
[   84.523149][   T39] usb 4-1: New USB device found, idVendor=0582, idProduct=00c4, bcdDevice=ac.5f
[   84.532094][   T39] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.540640][   T39] usb 4-1: config 0 descriptor??
[   84.587484][   T39] usb 4-1: selecting invalid altsetting 0
[   84.890602][  T622] hid (null): bogus close delimiter
[   84.988994][   T39] usb 4-1: USB disconnect, device number 8
[   85.106605][  T622] usb 2-1: language id specifier not provided by device, defaulting to English
[   85.549135][  T622] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0008/input/input6
[   85.563488][  T622] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0008/input/input7
[   85.615247][  T622] uclogic 0003:256C:006D.0008: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.1-1/input0
[   86.423165][ T1712] loop3: detected capacity change from 0 to 16
[   86.507790][ T1712] erofs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿ„$)°ógÚæH	—…o뿲uwÿ¯Í(„[ãè_É7Nè`d–¢´rȬƒÙlG!Š‘§Ü•æ;ïºÜAŠ'
[   86.561690][  T622] usb 2-1: USB disconnect, device number 6
[   86.751609][ T1728] loop1: detected capacity change from 0 to 2048
[   87.379819][ T1728] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   87.394737][ T1728] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   87.407500][ T1728] EXT4-fs (loop1): failed to initialize system zone (-117)
[   87.414823][ T1728] EXT4-fs (loop1): mount failed
[   87.452381][ T1745] loop1: detected capacity change from 0 to 256
[   87.512064][ T1749] loop4: detected capacity change from 0 to 512
[   87.536562][  T973] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[   87.608548][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz.4.481: corrupted inode contents
[   87.620259][ T1749] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #3: comm syz.4.481: mark_inode_dirty error
[   87.631982][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz.4.481: corrupted inode contents
[   87.894050][ T1749] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.481: mark_inode_dirty error
[   87.924783][ T1749] Quota error (device loop4): write_blk: dquota write failed
[   87.932450][ T1749] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   87.946398][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.481: corrupted inode contents
[   87.958381][ T1749] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #16: comm syz.4.481: mark_inode_dirty error
[   87.969700][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.481: corrupted inode contents
[   87.981480][ T1749] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.481: mark_inode_dirty error
[   87.992633][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.481: corrupted inode contents
[   88.004523][ T1749] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   88.013088][ T1749] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.481: corrupted inode contents
[   88.024897][ T1749] EXT4-fs error (device loop4): ext4_truncate:4292: inode #16: comm syz.4.481: mark_inode_dirty error
[   88.036019][ T1749] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   88.045294][ T1749] EXT4-fs (loop4): 1 truncate cleaned up
[   88.051151][ T1749] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,journal_ioprio=0x0000000000000000,,errors=continue. Quota mode: writeback.
[   88.066049][ T1749] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038 (0x7fffffff)
[   88.162091][ T1763] loop4: detected capacity change from 0 to 512
[   88.186605][  T973] usb 4-1: config 0 interface 0 has no altsetting 0
[   88.193176][  T973] usb 4-1: New USB device found, idVendor=0582, idProduct=00c4, bcdDevice=ac.5f
[   88.202074][  T973] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.210710][  T973] usb 4-1: config 0 descriptor??
[   88.249272][  T973] usb 4-1: selecting invalid altsetting 0
[   88.258734][ T1763] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,,errors=continue. Quota mode: writeback.
[   88.270609][ T1763] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038 (0x7fffffff)
[   88.330296][   T30] audit: type=1400 audit(1721352993.223:376): avc:  denied  { write } for  pid=1762 comm="syz.4.484" name="snmp" dev="proc" ino=4026532951 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   88.355979][   T30] audit: type=1400 audit(1721352993.253:377): avc:  denied  { unmount } for  pid=806 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   88.573819][ T1774] loop1: detected capacity change from 0 to 16
[   88.657649][ T1774] erofs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿ„$)°ógÚæH	—…o뿲uwÿ¯Í(„[ãè_É7Nè`d–¢´rȬƒÙlG!Š‘§Ü•æ;ïºÜAŠ'
[   88.833655][   T63] usb 4-1: USB disconnect, device number 9
[   88.868239][ T1783] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[   88.952909][ T1785] netlink: 40 bytes leftover after parsing attributes in process `syz.0.490'.
[   89.254485][ T1787] loop1: detected capacity change from 0 to 512
[   89.339013][ T1787] EXT4-fs (loop1): 1 orphan inode deleted
[   89.344627][ T1787] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   89.355736][   T30] audit: type=1400 audit(1721352994.253:378): avc:  denied  { mount } for  pid=1786 comm="syz.1.491" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   89.355771][ T1787] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038 (0x7fffffff)
[   89.420710][ T1787] xt_TPROXY: Can be used only with -p tcp or -p udp
[   89.484255][ T1793] loop1: detected capacity change from 0 to 256
[   89.507348][ T1793] exfat: Deprecated parameter 'utf8'
[   89.512531][ T1793] exfat: Deprecated parameter 'utf8'
[   89.517911][ T1793] exfat: Deprecated parameter 'utf8'
[   89.608843][ T1793] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[   89.767525][   T30] audit: type=1400 audit(1721352994.663:379): avc:  denied  { write } for  pid=1796 comm="syz.0.495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   89.797775][   T30] audit: type=1326 audit(1721352994.693:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1799 comm="syz.0.496" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ab172fb59 code=0x0
[   90.022698][ T1806] netlink: 16 bytes leftover after parsing attributes in process `syz.0.496'.
[   90.031487][ T1806] netlink: 24 bytes leftover after parsing attributes in process `syz.0.496'.
[   90.271883][ T1810] loop3: detected capacity change from 0 to 512
[   90.358647][ T1810] EXT4-fs (loop3): 1 orphan inode deleted
[   90.364245][ T1810] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,errors=continue,. Quota mode: writeback.
[   90.385672][ T1810] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038 (0x7fffffff)
[   90.409143][  T297] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz-executor: corrupted xattr block 19
[   90.421151][  T297] SELinux: inode_doinit_use_xattr:  getxattr returned 74 for dev=loop3 ino=15
[   90.429921][  T297] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz-executor: corrupted xattr block 19
[   90.441985][  T297] SELinux: inode_doinit_use_xattr:  getxattr returned 74 for dev=loop3 ino=15
[   90.451029][  T297] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz-executor: corrupted xattr block 19
[   90.463298][  T297] SELinux: inode_doinit_use_xattr:  getxattr returned 74 for dev=loop3 ino=15
[   90.472129][   T30] audit: type=1400 audit(1721352995.363:381): avc:  denied  { unlink } for  pid=297 comm="syz-executor" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   90.472148][  T297] EXT4-fs warning (device loop3): ext4_dirblock_csum_set:426: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   90.509545][  T297] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #15: comm syz-executor: corrupted xattr block 19
[   90.521877][  T297] EXT4-fs warning (device loop3): ext4_evict_inode:303: xattr delete (err -74)
[   90.530949][   T30] audit: type=1400 audit(1721352995.433:382): avc:  denied  { unmount } for  pid=297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   90.531113][  T297] EXT4-fs warning (device loop3): ext4_dirblock_csum_set:426: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   90.566014][  T297] EXT4-fs error (device loop3): ext4_lookup:1859: inode #2: comm syz-executor: deleted inode referenced: 16
[   90.577678][  T297] EXT4-fs error (device loop3): ext4_lookup:1859: inode #2: comm syz-executor: deleted inode referenced: 16
[   90.709835][ T1815] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.717754][ T1815] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.724969][ T1815] device bridge_slave_0 entered promiscuous mode
[   90.733712][ T1815] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.740595][ T1815] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.747831][ T1815] device bridge_slave_1 entered promiscuous mode
[   90.787020][ T1815] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.793897][ T1815] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.801000][ T1815] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.807851][ T1815] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.828998][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   90.836254][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   90.844382][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   90.864424][ T1815] device veth0_vlan entered promiscuous mode
[   90.871413][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   90.879690][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   90.887452][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   90.894649][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   90.902557][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   90.910459][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   90.924540][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   90.933393][ T1815] device veth1_macvtap entered promiscuous mode
[   90.939524][   T63] Bluetooth: hci0: command 0x1003 tx timeout
[   90.945412][ T1365] Bluetooth: hci0: sending frame failed (-49)
[   90.945483][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   90.959519][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   90.976658][  T664] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   91.127523][  T415] device bridge_slave_1 left promiscuous mode
[   91.133488][  T415] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.141031][  T415] device bridge_slave_0 left promiscuous mode
[   91.147079][  T415] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.155152][  T415] device veth1_macvtap left promiscuous mode
[   91.161219][  T415] device veth0_vlan left promiscuous mode
[   91.332204][ T1840] loop3: detected capacity change from 0 to 40427
[   91.366788][  T664] usb 2-1: config 0 interface 0 has no altsetting 0
[   91.373223][  T664] usb 2-1: New USB device found, idVendor=0582, idProduct=00c4, bcdDevice=ac.5f
[   91.382120][  T664] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.390498][  T664] usb 2-1: config 0 descriptor??
[   91.406362][ T1840] F2FS-fs (loop3): invalid crc value
[   91.412494][ T1840] F2FS-fs (loop3): Found nat_bits in checkpoint
[   91.434484][ T1840] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   91.447258][  T664] usb 2-1: selecting invalid altsetting 0
[   91.460050][ T1840] attempt to access beyond end of device
[   91.460050][ T1840] loop3: rw=2049, want=45104, limit=40427
[   91.471736][ T1840] attempt to access beyond end of device
[   91.471736][ T1840] loop3: rw=2049, want=45104, limit=40427
[   91.485424][ T1815] attempt to access beyond end of device
[   91.485424][ T1815] loop3: rw=2049, want=45112, limit=40427
[   91.707250][   T39] usb 2-1: USB disconnect, device number 7
[   91.866617][  T664] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[   92.037776][   T30] audit: type=1400 audit(1721352996.933:383): avc:  denied  { remount } for  pid=1857 comm="syz.0.515" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   92.087463][ T1862] device syzkaller0 entered promiscuous mode
[   92.127436][  T664] usb 4-1: Using ep0 maxpacket: 16
[   92.276684][  T664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[   92.287557][  T664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[   92.297328][  T664] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[   92.306175][  T664] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.315977][  T664] usb 4-1: config 0 descriptor??
[   92.536597][   T39] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[   92.606650][  T973] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   92.772861][ T1848] UDC core: couldn't find an available UDC or it's busy: -16
[   92.780142][ T1848] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   92.798662][  T664] hid-generic 0003:0158:0100.0009: unknown main item tag 0x1
[   92.805908][  T664] hid-generic 0003:0158:0100.0009: unexpected long global item
[   92.813454][  T664] hid-generic: probe of 0003:0158:0100.0009 failed with error -22
[   92.906656][   T39] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   92.917446][   T39] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[   92.928125][   T39] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   92.940932][   T39] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   92.949741][   T39] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.959194][   T39] usb 2-1: config 0 descriptor??
[   92.966649][  T973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   92.977427][  T973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   92.986683][ T1870] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   92.987110][  T973] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   93.006696][   T63] Bluetooth: hci0: command 0x1001 tx timeout
[   93.009055][  T973] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.012540][ T1365] Bluetooth: hci0: sending frame failed (-49)
[   93.023716][  T973] usb 1-1: config 0 descriptor??
[   93.031304][    T6] usb 4-1: USB disconnect, device number 10
[   93.452085][ T1875] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.459064][ T1875] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.466414][ T1875] device bridge_slave_0 entered promiscuous mode
[   93.473413][ T1875] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.480414][ T1875] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.488154][ T1875] device bridge_slave_1 entered promiscuous mode
[   93.497217][  T973] hid (null): bogus close delimiter
[   93.566746][ T1875] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.573602][ T1875] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.580750][ T1875] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.587503][ T1875] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.595638][   T39] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x4
[   93.603099][   T39] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[   93.615216][   T39] plantronics 0003:047F:FFFF.000B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   93.630349][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.637686][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.649558][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   93.656906][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   93.667688][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.675799][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.683953][    T6] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.690794][    T6] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.698055][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.706244][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.714510][    T6] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.721360][    T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.736337][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   93.744211][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   93.752052][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   93.760558][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   93.773484][ T1875] device veth0_vlan entered promiscuous mode
[   93.779563][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   93.787748][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   93.795920][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   93.803986][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   93.814626][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   93.821904][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   93.833102][ T1875] device veth1_macvtap entered promiscuous mode
[   93.839675][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   93.847983][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   93.855950][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   93.872009][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   93.880063][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   93.888269][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   93.896253][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   93.977336][   T45] device bridge_slave_1 left promiscuous mode
[   93.983392][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.991045][   T45] device bridge_slave_0 left promiscuous mode
[   93.997151][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.005255][   T45] device veth1_macvtap left promiscuous mode
[   94.011450][   T45] device veth0_vlan left promiscuous mode
[   94.036595][  T973] usb 1-1: string descriptor 0 read error: -71
[   94.057159][  T973] uclogic 0003:256C:006D.000A: failed retrieving string descriptor #200: -71
[   94.069406][  T973] uclogic 0003:256C:006D.000A: failed retrieving pen parameters: -71
[   94.078663][  T973] uclogic 0003:256C:006D.000A: failed probing pen v2 parameters: -71
[   94.091791][  T973] uclogic 0003:256C:006D.000A: failed probing parameters: -71
[   94.104124][  T973] uclogic: probe of 0003:256C:006D.000A failed with error -71
[   94.122788][  T973] usb 1-1: USB disconnect, device number 6
[   94.396593][   T63] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   94.560005][    C0] ------------[ cut here ]------------
[   94.565288][    C0] WARNING: CPU: 0 PID: 0 at kernel/softirq.c:358 __local_bh_enable_ip+0x6c/0x80
[   94.574132][    C0] Modules linked in:
[   94.577865][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W         5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   94.588625][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   94.598521][    C0] RIP: 0010:__local_bh_enable_ip+0x6c/0x80
[   94.604160][    C0] Code: 66 8b 05 c7 87 c0 7e 66 85 c0 75 22 bf 01 00 00 00 e8 98 42 09 00 65 8b 05 39 85 bf 7e 85 c0 74 02 5d c3 e8 3a 99 bd ff 5d c3 <0f> 0b eb a2 e8 0b 00 00 00 eb d7 66 0f 1f 84 00 00 00 00 00 55 48
[   94.623694][    C0] RSP: 0018:ffffc90000007d20 EFLAGS: 00010006
[   94.629591][    C0] RAX: 0000000080010203 RBX: ffff888114715d28 RCX: dffffc0000000000
[   94.637404][    C0] RDX: 0000000080010203 RSI: 0000000000000201 RDI: ffffffff83fe46fb
[   94.645218][    C0] RBP: ffffc90000007d20 R08: dffffc0000000000 R09: ffffed1024069be1
[   94.653026][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888114715d28
[   94.660838][    C0] R13: ffff88812034df00 R14: 0000000000000000 R15: ffff88812034df00
[   94.668653][    C0] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   94.677415][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   94.683837][    C0] CR2: 0000001b2cc1fffc CR3: 000000000680f000 CR4: 00000000003526b0
[   94.691653][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   94.699460][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   94.707272][    C0] Call Trace:
[   94.710397][    C0]  <IRQ>
[   94.713088][    C0]  ? show_regs+0x58/0x60
[   94.717169][    C0]  ? __warn+0x160/0x2f0
[   94.721162][    C0]  ? __local_bh_enable_ip+0x6c/0x80
[   94.726194][    C0]  ? report_bug+0x3d9/0x5b0
[   94.730534][    C0]  ? __local_bh_enable_ip+0x6c/0x80
[   94.735571][    C0]  ? handle_bug+0x41/0x70
[   94.739733][    C0]  ? exc_invalid_op+0x1b/0x50
[   94.744247][    C0]  ? asm_exc_invalid_op+0x1b/0x20
[   94.749124][    C0]  ? sock_map_delete_elem+0xcb/0x130
[   94.754234][    C0]  ? __local_bh_enable_ip+0x6c/0x80
[   94.759274][    C0]  _raw_spin_unlock_bh+0x51/0x60
[   94.764036][    C0]  sock_map_delete_elem+0xcb/0x130
[   94.768984][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0x94
[   94.774278][    C0]  bpf_trace_run2+0xec/0x210
[   94.778713][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[   94.783410][    C0]  ? ktime_get+0x12f/0x160
[   94.787649][    C0]  __bpf_trace_tlb_flush+0x23/0x30
[   94.792594][    C0]  switch_mm_irqs_off+0x616/0x9b0
[   94.797455][    C0]  flush_tlb_func+0x11e/0x550
[   94.801966][    C0]  ? sched_clock+0x9/0x10
[   94.806140][    C0]  ? sched_clock_cpu+0x18/0x3b0
[   94.810818][    C0]  flush_smp_call_function_queue+0x222/0x6a0
[   94.816634][    C0]  ? native_flush_tlb_multi+0x210/0x210
[   94.822017][    C0]  generic_smp_call_function_single_interrupt+0x13/0x20
[   94.828786][    C0]  __sysvec_call_function_single+0x63/0x1b0
[   94.834694][    C0]  sysvec_call_function_single+0x92/0xb0
[   94.840156][    C0]  </IRQ>
[   94.842932][    C0]  <TASK>
[   94.845711][    C0]  asm_sysvec_call_function_single+0x1b/0x20
[   94.851525][    C0] RIP: 0010:acpi_idle_enter+0x416/0x760
[   94.856907][    C0] Code: 89 de 48 83 e6 08 31 ff e8 57 31 a7 fc 48 83 e3 08 0f 85 b0 00 00 00 0f 1f 44 00 00 e8 03 2d a7 fc 0f 00 2d 9c 4f c0 00 fb f4 <fa> e9 e1 00 00 00 49 83 c7 04 4c 89 f8 48 c1 e8 03 42 0f b6 04 30
[   94.876350][    C0] RSP: 0018:ffffffff86807bf0 EFLAGS: 000002d3
[   94.882252][    C0] RAX: ffffffff84c90abd RBX: 0000000000000000 RCX: ffffffff8681d280
[   94.890063][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   94.897871][    C0] RBP: ffffffff86807c30 R08: ffffffff84c90aa9 R09: fffffbfff0d03a51
[   94.905691][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001
[   94.913497][    C0] R13: ffff888104185804 R14: dffffc0000000000 R15: ffff888105ded864
[   94.921327][    C0]  ? acpi_idle_enter+0x3f9/0x760
[   94.926080][    C0]  ? acpi_idle_enter+0x40d/0x760
[   94.930858][    C0]  ? intel_idle_ibrs+0x130/0x130
[   94.935629][    C0]  cpuidle_enter_state+0x5e1/0x1550
[   94.940665][    C0]  ? cpuidle_enter_s2idle+0x600/0x600
[   94.945874][    C0]  ? menu_enable_device+0x380/0x380
[   94.950905][    C0]  ? sched_clock_cpu+0x18/0x3b0
[   94.955591][    C0]  cpuidle_enter+0x5f/0xa0
[   94.960711][    C0]  do_idle+0x36b/0x5d0
[   94.964620][    C0]  ? idle_inject_timer_fn+0x60/0x60
[   94.969742][    C0]  cpu_startup_entry+0x18/0x20
[   94.974347][    C0]  rest_init+0x10b/0x130
[   94.978419][    C0]  ? time_init+0x38/0x38
[   94.982497][    C0]  arch_call_rest_init+0xe/0x10
[   94.987187][    C0]  start_kernel+0x462/0x4ce
[   94.991525][    C0]  x86_64_start_reservations+0x2a/0x2c
[   94.996820][    C0]  x86_64_start_kernel+0x5b/0x5e
[   95.001593][    C0]  secondary_startup_64_no_verify+0xb1/0xbb
[   95.007322][    C0]  </TASK>
[   95.010189][    C0] ---[ end trace 4b56b9c99e516b7f ]---
[   95.066642][   T63] usb 3-1: Using ep0 maxpacket: 16
[   95.086703][  T664] Bluetooth: hci0: command 0x1009 tx timeout
[   95.126438][   T30] audit: type=1400 audit(1721353000.013:384): avc:  denied  { setopt } for  pid=1900 comm="syz.0.529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   95.146075][   T30] audit: type=1400 audit(1721353000.013:385): avc:  denied  { read } for  pid=1900 comm="syz.0.529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   95.183462][ T1905] netlink: 24 bytes leftover after parsing attributes in process `syz.0.531'.
[   95.206707][   T63] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   95.217513][   T63] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   95.230216][   T63] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   95.239116][   T63] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.248054][   T63] usb 3-1: config 0 descriptor??
[   95.756652][  T973] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   95.786596][   T63] usbhid 3-1:0.0: can't add hid device: -71
[   95.792339][   T63] usbhid: probe of 3-1:0.0 failed with error -71
[   95.801555][   T63] usb 3-1: USB disconnect, device number 3
[   95.868353][ T1935] loop1: detected capacity change from 0 to 16
[   95.899501][ T1935] erofs: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿ„$)°ógÚæH	—…o뿲uwÿ¯Í(„[ãè_É7Nè`d–¢´rȬƒÙlG!Š‘§Ü•æ;ïºÜAŠ'
[   95.978785][    T6] usb 2-1: USB disconnect, device number 8
[   96.306627][  T973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.317535][  T973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.327100][  T973] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   96.335923][  T973] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.347462][  T973] usb 1-1: config 0 descriptor??
[   97.116819][  T973] hid (null): bogus close delimiter
[   97.166681][   T39] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   97.192531][ T1964] loop3: detected capacity change from 0 to 256
[   97.224228][ T1966] loop2: detected capacity change from 0 to 512
[   97.259157][ T1964] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[   97.312179][ T1966] EXT4-fs (loop2): 1 orphan inode deleted
[   97.318033][ T1971] loop3: detected capacity change from 0 to 512
[   97.330850][ T1966] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[   97.351895][ T1966] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038 (0x7fffffff)
[   97.378277][ T1971] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,,errors=continue. Quota mode: writeback.
[   97.390756][ T1971] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038 (0x7fffffff)
[   97.456586][   T39] usb 2-1: Using ep0 maxpacket: 16
[   97.717087][  T973] usb 1-1: string descriptor 0 read error: -71
[   97.746635][  T973] uclogic 0003:256C:006D.000C: failed retrieving string descriptor #200: -71
[   97.755248][  T973] uclogic 0003:256C:006D.000C: failed retrieving pen parameters: -71
[   97.768258][  T973] uclogic 0003:256C:006D.000C: failed probing pen v2 parameters: -71
[   97.776170][  T973] uclogic 0003:256C:006D.000C: failed probing parameters: -71
[   97.784036][  T973] uclogic: probe of 0003:256C:006D.000C failed with error -71
[   97.796736][  T973] usb 1-1: USB disconnect, device number 7
[   97.896645][   T39] usb 2-1: New USB device found, idVendor=0582, idProduct=fff9, bcdDevice=ff.ff
[   97.906010][   T39] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[   97.915010][   T39] usb 2-1: Product: syz
[   97.919036][   T39] usb 2-1: Manufacturer: syz
[   97.923411][   T39] usb 2-1: SerialNumber: syz
[   98.053821][ T1984] loop3: detected capacity change from 0 to 256
[   98.267604][   T39] usb 2-1: USB disconnect, device number 9
[   98.597323][   T30] audit: type=1400 audit(1721353003.493:386): avc:  denied  { bind } for  pid=2002 comm="syz.0.565" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   98.623559][ T2005] loop0: detected capacity change from 0 to 256
[   98.710158][ T2005] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[   98.774185][ T2009] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[   98.783537][ T2011] loop0: detected capacity change from 0 to 256
[   98.818148][ T2011] exfat: Deprecated parameter 'utf8'
[   98.823282][ T2011] exfat: Deprecated parameter 'utf8'
[   98.828729][ T2011] exfat: Deprecated parameter 'utf8'
[   98.840979][ T2011] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[   98.871769][ T2017] netlink: 40 bytes leftover after parsing attributes in process `syz.1.567'.
[   98.950049][ T2021] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.957039][ T2021] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.964586][ T2021] device bridge_slave_0 entered promiscuous mode
[   98.972152][ T2021] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.979126][ T2021] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.986853][ T2021] device bridge_slave_1 entered promiscuous mode
[   99.076539][   T39] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   99.096236][ T2021] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.103110][ T2021] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.110249][ T2021] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.117096][ T2021] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.148054][  T537] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.156142][  T537] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.163681][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   99.171470][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   99.186537][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   99.195038][   T63] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.201885][   T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.220548][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   99.228618][  T537] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.235451][  T537] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.259237][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   99.268005][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   99.275800][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   99.285912][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   99.293788][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   99.301268][  T318] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   99.309769][ T2021] device veth0_vlan entered promiscuous mode
[   99.320719][ T2021] device veth1_macvtap entered promiscuous mode
[   99.327771][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   99.339143][  T537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   99.350675][  T973] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   99.356714][  T664] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   99.380029][   T30] audit: type=1107 audit(1721353004.273:387): pid=2034 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   99.466614][   T39] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.477662][   T39] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.487474][   T39] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   99.496433][   T39] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.525541][   T39] usb 4-1: config 0 descriptor??
[   99.616699][  T664] usb 1-1: Using ep0 maxpacket: 32
[   99.736654][  T664] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.748821][  T664] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.891451][  T664] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   99.900751][  T664] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   99.911308][  T664] usb 1-1: Product: syz
[   99.915368][  T664] usb 1-1: Manufacturer: syz
[   99.961343][  T664] hub 1-1:4.0: USB hub found
[  100.017737][   T39] hid (null): bogus close delimiter
[  100.216610][  T664] hub 1-1:4.0: config failed, hub has too many ports! (err -19)
[  100.536696][   T39] usb 4-1: string descriptor 0 read error: -71
[  100.550564][   T30] audit: type=1107 audit(1721353005.443:388): pid=2063 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  100.556624][   T39] uclogic 0003:256C:006D.000D: failed retrieving string descriptor #200: -71
[  100.572292][   T39] uclogic 0003:256C:006D.000D: failed retrieving pen parameters: -71
[  100.580325][  T318] usb 1-1: USB disconnect, device number 8
[  100.580776][   T39] uclogic 0003:256C:006D.000D: failed probing pen v2 parameters: -71
[  100.594255][   T39] uclogic 0003:256C:006D.000D: failed probing parameters: -71
[  100.601784][   T39] uclogic: probe of 0003:256C:006D.000D failed with error -71
[  100.610438][   T39] usb 4-1: USB disconnect, device number 11
[  100.639429][ T2068] netlink: 24 bytes leftover after parsing attributes in process `syz.1.589'.
[  100.698571][ T2073] loop1: detected capacity change from 0 to 512
[  100.718777][ T2073] EXT4-fs (loop1): 1 orphan inode deleted
[  100.724444][ T2073] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  100.745516][ T2073] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038 (0x7fffffff)
[  100.763441][ T2073] EXT4-fs error (device loop1): ext4_ext_remove_space:2840: inode #16: comm syz.1.591: path[1].p_hdr == NULL
[  100.784048][ T2073] EXT4-fs (loop1): Remounting filesystem read-only
[  100.790708][ T2073] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5820: Corrupt filesystem
[  100.800249][ T2073] EXT4-fs error (device loop1): ext4_punch_hole:4132: inode #16: comm syz.1.591: mark_inode_dirty error
[  100.811833][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  100.825755][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  100.840747][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  100.857289][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  100.874437][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  100.915336][ T2080] loop4: detected capacity change from 0 to 256
[  100.949217][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  101.007108][ T2072] EXT4-fs error (device loop1): ext4_ext_map_blocks:4160: inode #16: comm syz.1.591: bad extent address lblock: 0, depth: 1 pblock 0
[  101.183416][ T2084] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.190397][ T2084] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.198481][ T2084] device bridge_slave_0 entered promiscuous mode
[  101.207165][ T2084] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.213989][ T2084] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.221359][ T2084] device bridge_slave_1 entered promiscuous mode
[  101.284647][ T2084] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.291558][ T2084] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.298654][ T2084] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.305414][ T2084] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.333416][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.341400][  T622] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.350366][  T622] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.359750][   T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  101.368385][   T63] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.375222][   T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.382593][ T2094] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  101.404988][ T2099] loop0: detected capacity change from 0 to 512
[  101.415409][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  101.423789][  T622] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.430656][  T622] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.442239][ T2099] EXT4-fs warning (device loop0): read_mmp_block:115: Error -117 while reading MMP block 0
[  101.462472][ T2104] loop2: detected capacity change from 0 to 512
[  101.473570][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  101.483270][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  101.491205][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  101.510229][ T2104] EXT4-fs (loop2): 1 orphan inode deleted
[  101.515855][ T2104] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  101.536872][ T2104] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038 (0x7fffffff)
[  101.538637][ T2084] device veth0_vlan entered promiscuous mode
[  101.572260][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  101.603765][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  101.611443][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  101.637090][ T2084] device veth1_macvtap entered promiscuous mode
[  101.644967][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  101.667261][  T622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  101.704601][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  101.730601][ T2111] EXT4-fs error (device loop2): ext4_free_blocks:6216: comm syz.2.603: Freeing blocks not in datazone - block = 41, count = 1
[  101.747982][    T8] device bridge_slave_1 left promiscuous mode
[  102.029496][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.039097][ T2111] EXT4-fs (loop2): Remounting filesystem read-only
[  102.160501][   T30] audit: type=1326 audit(1721353007.043:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2107 comm="syz.0.604" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0ab172fb59 code=0x0
[  102.213689][    T8] device bridge_slave_0 left promiscuous mode
[  102.242684][ T2111] ==================================================================
[  102.250574][ T2111] BUG: KASAN: out-of-bounds in ext4_ext_remove_space+0x2149/0x4a60
[  102.258297][ T2111] Read of size 18446744073709551604 at addr ffff88812537e018 by task syz.2.603/2111
[  102.267497][ T2111] 
[  102.269669][ T2111] CPU: 1 PID: 2111 Comm: syz.2.603 Tainted: G        W         5.15.151-syzkaller-00415-gdb06c48ab67e #0
[  102.280692][ T2111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  102.290608][ T2111] Call Trace:
[  102.291433][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.293708][ T2111]  <TASK>
[  102.293718][ T2111]  dump_stack_lvl+0x151/0x1b7
[  102.302871][ T2115] loop1: detected capacity change from 0 to 512
[  102.303345][ T2111]  ? io_uring_drop_tctx_refs+0x190/0x190
[  102.319410][ T2111]  ? panic+0x751/0x751
[  102.323306][ T2111]  ? preempt_schedule_irq+0xe7/0x140
[  102.328431][ T2111]  print_address_description+0x87/0x3b0
[  102.333809][ T2111]  kasan_report+0x179/0x1c0
[  102.338148][ T2111]  ? sysvec_reschedule_ipi+0x7d/0x150
[  102.343366][ T2111]  ? ext4_ext_remove_space+0x2149/0x4a60
[  102.348821][ T2111]  ? ext4_ext_remove_space+0x2149/0x4a60
[  102.354291][ T2111]  kasan_check_range+0x293/0x2a0
[  102.359065][ T2111]  ? ext4_ext_remove_space+0x2149/0x4a60
[  102.364534][ T2111]  memmove+0x2d/0x70
[  102.368273][ T2111]  ext4_ext_remove_space+0x2149/0x4a60
[  102.373566][ T2111]  ? ext4_ext_index_trans_blocks+0x120/0x120
[  102.379373][ T2111]  ? ext4_es_remove_extent+0x297/0x460
[  102.384676][ T2111]  ext4_punch_hole+0x794/0xbf0
[  102.389274][ T2111]  ext4_fallocate+0x30c/0x1f10
[  102.393880][ T2111]  ? avc_policy_seqno+0x1b/0x70
[  102.398558][ T2111]  ? selinux_file_permission+0x2c4/0x570
[  102.404026][ T2111]  ? ext4_ext_truncate+0x240/0x240
[  102.408970][ T2111]  ? fsnotify_perm+0x6a/0x5d0
[  102.413488][ T2111]  vfs_fallocate+0x492/0x570
[  102.417915][ T2111]  __x64_sys_fallocate+0xc0/0x110
[  102.422771][ T2111]  do_syscall_64+0x3d/0xb0
[  102.427025][ T2111]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  102.432753][ T2111] RIP: 0033:0x7fe8bff5bb59
[  102.437007][ T2111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.456447][ T2111] RSP: 002b:00007fe8bf1bc048 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  102.464695][ T2111] RAX: ffffffffffffffda RBX: 00007fe8c00ec038 RCX: 00007fe8bff5bb59
[  102.472505][ T2111] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  102.480314][ T2111] RBP: 00007fe8bffcae5d R08: 0000000000000000 R09: 0000000000000000
[  102.488125][ T2111] R10: 0000000000001a00 R11: 0000000000000246 R12: 0000000000000000
[  102.496042][ T2111] R13: 000000000000006e R14: 00007fe8c00ec038 R15: 00007fffc7f3d9b8
[  102.503843][ T2111]  </TASK>
[  102.506705][ T2111] 
[  102.508871][ T2111] The buggy address belongs to the page:
[  102.514526][ T2111] page:ffffea000494df80 refcount:2 mapcount:0 mapping:ffff88810919d358 index:0x27 pfn:0x12537e
[  102.524667][ T2111] memcg:ffff88810af28000
[  102.528749][ T2111] aops:def_blk_aops ino:700002
[  102.533346][ T2111] flags: 0x4000000000002036(referenced|uptodate|lru|active|private|zone=1)
[  102.541772][ T2111] raw: 4000000000002036 ffffea0004624d48 ffff88810c215030 ffff88810919d358
[  102.550190][ T2111] raw: 0000000000000027 ffff888122f15d20 00000002ffffffff ffff88810af28000
[  102.558603][ T2111] page dumped because: kasan: bad access detected
[  102.564861][ T2111] page_owner tracks the page as allocated
[  102.570409][ T2111] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 2103, ts 101677048001, free_ts 100543293077
[  102.587519][ T2111]  post_alloc_hook+0x1a3/0x1b0
[  102.592105][ T2111]  prep_new_page+0x1b/0x110
[  102.596446][ T2111]  get_page_from_freelist+0x3550/0x35d0
[  102.601828][ T2111]  __alloc_pages+0x27e/0x8f0
[  102.606254][ T2111]  pagecache_get_page+0xb18/0xeb0
[  102.611116][ T2111]  __getblk_gfp+0x21e/0x7c0
[  102.615452][ T2111]  ext4_ext_insert_extent+0xf7a/0x4b10
[  102.620748][ T2111]  ext4_split_extent_at+0x80e/0x10f0
[  102.625870][ T2111]  ext4_split_extent+0x1bd/0x4e0
[  102.630644][ T2111]  ext4_ext_map_blocks+0x223e/0x74a0
[  102.635765][ T2111]  ext4_map_blocks+0xaa7/0x1e00
[  102.640451][ T2111]  _ext4_get_block+0x23b/0x660
[  102.645050][ T2111]  ext4_get_block_unwritten+0x2a/0x40
[  102.650258][ T2111]  __block_write_begin_int+0x58a/0x1580
[  102.655645][ T2111]  block_page_mkwrite+0x205/0x270
[  102.660500][ T2111]  ext4_page_mkwrite+0x4c1/0x13a0
[  102.665364][ T2111] page last free stack trace:
[  102.669876][ T2111]  free_unref_page_prepare+0x7c8/0x7d0
[  102.675170][ T2111]  free_unref_page_list+0x14b/0xa60
[  102.680214][ T2111]  release_pages+0x1310/0x1370
[  102.684817][ T2111]  __pagevec_release+0x84/0x100
[  102.689491][ T2111]  shmem_undo_range+0x604/0x1560
[  102.694264][ T2111]  shmem_evict_inode+0x215/0x9d0
[  102.699040][ T2111]  evict+0x2a3/0x630
[  102.702768][ T2111]  iput+0x63b/0x7e0
[  102.706414][ T2111]  dentry_unlink_inode+0x34f/0x440
[  102.711364][ T2111]  __dentry_kill+0x447/0x660
[  102.715794][ T2111]  dentry_kill+0xc0/0x2a0
[  102.719961][ T2111]  dput+0x45/0x80
[  102.723425][ T2111]  __fput+0x662/0x910
[  102.727245][ T2111]  ____fput+0x15/0x20
[  102.731065][ T2111]  task_work_run+0x129/0x190
[  102.735490][ T2111]  do_exit+0xc48/0x2ca0
[  102.739483][ T2111] 
[  102.741653][ T2111] Memory state around the buggy address:
[  102.747125][ T2111]  ffff88812537df00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.755024][ T2111]  ffff88812537df80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.762928][ T2111] >ffff88812537e000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.770817][ T2111]                             ^
[  102.775505][ T2111]  ffff88812537e080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.783406][ T2111]  ffff88812537e100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  102.791301][ T2111] ==================================================================
[  102.799200][ T2111] Disabling lock debugging due to kernel taint
[  102.830189][ T2111] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5820: Corrupt filesystem
[  102.839574][    T8] device veth1_macvtap left promiscuous mode
[  102.839908][ T2111] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.603: mark_inode_dirty error
[  102.845518][    T8] device veth0_vlan left promiscuous mode
[  102.856983][ T2111] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5820: Corrupt filesystem
[  102.871541][ T2111] EXT4-fs error (device loop2): ext4_punch_hole:4132: inode #16: comm syz.2.603: mark_inode_dirty error
[  102.886377][ T2104] EXT4-fs warning (device loop2): ext4_resize_begin:83: There are errors in the filesystem, so online resizing is not allowed
[  102.902402][ T2115] EXT4-fs (loop1): 1 orphan inode deleted
[  102.908090][ T2115] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  102.921172][ T1875] EXT4-fs error (device loop2): ext4_map_blocks:602: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[  102.946039][ T2115] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038 (0x7fffffff)
[  103.126025][ T2121] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  104.137079][    T8] device bridge_slave_1 left promiscuous mode
[  104.143043][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.150833][    T8] device bridge_slave_0 left promiscuous mode
[  104.156889][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.164823][    T8] device veth1_macvtap left promiscuous mode
[  104.170886][    T8] device veth0_vlan left promiscuous mode