last executing test programs:

9m16.669816145s ago: executing program 32 (id=94):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000050000000004000009000000"], 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000080000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x3, 0x1d, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}}, @alu={0x7, 0x1, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x10}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x22b21749e7838800}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0xf97d, 0x64, &(0x7f0000000280)=""/100, 0x41000, 0x10, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000a40)={0x1, 0x2, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000ac0)=[0xffffffffffffffff, 0xffffffffffffffff, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000b00)=[{0x3, 0x2, 0x5, 0xa}, {0x5, 0x1, 0x4, 0x5}], 0x10, 0xb0b}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x19, &(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES32=r0], &(0x7f0000000400)='GPL\x00', 0x7, 0xc, &(0x7f00000004c0)=""/12, 0x41000, 0x24, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000540)={0x1, 0x39, 0x996b}, 0x10, 0x0, r8, 0x9, 0x0, &(0x7f0000000580)=[{0x0, 0x5, 0xc, 0xb}, {0x5, 0x5, 0xd, 0x3}, {0x0, 0x4, 0x8, 0x4}, {0x0, 0x4, 0x10, 0x2}, {0x0, 0x4, 0x4, 0x4}, {0x0, 0x5, 0xb, 0xb}, {0x0, 0x2, 0xe, 0x1}, {0x1, 0x4, 0x8, 0xa}, {0x5, 0x1, 0x1, 0xb}], 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r9}, 0x10)
setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xcb, 0x0, 0x0)
r11 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r11, 0x400, 0x0)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x2, 0x0, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x4}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0xf, 0x491, 0x3, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)

5m8.657974322s ago: executing program 0 (id=603):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r0 = socket(0x8000000010, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
write(r0, &(0x7f00000002c0)="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", 0xfc)

5m8.402075747s ago: executing program 0 (id=604):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYRESDEC=r5, @ANYRES32=r0, @ANYRES32=r3, @ANYRESDEC=r1], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x83e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x20040064)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = syz_open_procfs(0x0, &(0x7f0000000140)='coredump_filter\x00')
preadv(r7, &(0x7f0000000300)=[{&(0x7f0000000040)=""/3, 0x3}, {0x0, 0x3}], 0x2, 0x0, 0x0)
sendmsg$key(r6, &(0x7f00000007c0)={0x40000000000ff80, 0x0, &(0x7f0000000700)={0x0, 0xa8}}, 0x40080)
sendfile(r1, r2, 0x0, 0x20000023896)
close(r1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_driver={0xa58, 0x8000, &(0x7f00000004c0)="66858a5de44b5599dbd6d9cbb019360abfc4127842e4b96426af7774a8fdb3f77cb1ffc0b216e5df674e1f59cd56626cf360a75e8516071934c978955d5bcde0a077bdb52f8c61eb2f1267ea1054baae0f882bdc4992afa3a61fefc4f6c905bbe570f4ce110a77d483dfa6d09f3ff7bbbeb06aa0fea7f5b78a69bef1391efc48f40637a7259c7a0716e65b3aa149d194fde248cf8f91487f14d6c1ac1e8f46616e0c364cba2624c1c375c84fdb43451b73b3436e891b2916096d80ee0fa208221fde568be69bfc7c06"})
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

5m5.402168314s ago: executing program 0 (id=609):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xeb}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$TCFLSH(r7, 0x400455c8, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000000)={0xd2b3, 0x9})

5m4.713253743s ago: executing program 0 (id=612):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x380470a, &(0x7f0000000a00)={[{@quota}, {@bsdgroups}, {@lazytime}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8080c61)
syz_open_dev$vcsu(0x0, 0x100000001, 0x400140)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r2, r2, 0x0, 0x800000009)

5m2.930964589s ago: executing program 0 (id=615):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000100)='./file0\x00')
syncfs(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES16=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x10000000}, 0x2}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

5m1.542334736s ago: executing program 0 (id=619):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x2, &(0x7f00000009c0)={[{@errors_remount}, {@grpquota}]}, 0x2, 0x517, &(0x7f0000000140)="$eJzs3U9vI2cZAPBnJvGS7aYkpRxKpZaKFu1WsPamgTbi0BYJcasEKvclSrwhihNHsdNuQoVS8QGQEIJKnDhxQeIDIKHyDapKK8EdAQIh2MIBIWDQ2OPdxBpvEjW2I/v3k8bzzuuZeZ53HI/nX2YCmFrPRcTrETETES9GxEJRnxZdHHW7fLyP7r+zlnfxQRJv/i2JpKiLTumha8Vkc91eqdbB4dZqo1HfK4Zr7e3dWuvg8Obm9upGfaO+s7y89PLKKysxd2vQLL5znnbm7Xr1a3/68Q9+/vVXf/3Ft39/+y83vpdnPV+8323Ho6UnhmbOFLe7ZCr5ssjd+3dRv3ee5C+xpFi2lXEnAgDAmTwZEZ+KiM91tv8XYiZme2/ZpAMAAIAJkb02H/9JIjIAAABgYr3WuQY2SavF9a3zkabVavca3k/HY2mj2Wp/4U5zf2e9e63sYlTSO5uN+q3ius/FqCT58FKn/HD4pb7h5Yh4IiJ+tHC1M1xdazbWx33wAwAAAKbEtb79/38udPf/AQAAgAmzOO4EAAAAgKEbtP+fjDgPAAAAYHic/wcAAICJ9o033si7rPf86/W3Dva3mm/dXK+3tqrb+2vVtebebnWj2dzo3LNv+7T5NZrN3S/Fzv7dWrveatdaB4e3t5v7O+3bm71HYAMAAACj9sRn3/9dEhFHX7na6XJX8peZARO4VgAmRnqekf84vDyA0Rv0Mw9MvtlxJwCMz1Gxvw9MrRO3+ijZKDh+8c6JYwYfDC8nAADgYl3/TPn5/3wXoDLu5IChOtf5f2CiOP8P06vs/P9vBo/+4TBzAUarYgsApt5pj/oYePOOM5//z7JT5wUAAAzVfL7tfxRRLc4FzkeaVqsRj3f+1b+S3Nls1G9FxCcj4rcLlU/kw0udKROPBwQAAAAAAAAAAAAAAAAAAAAAAACAM8qyJDIAAABgokWkf06K539dX3hhvv/4wJXkXwudfkS8/dM3f3J3td3eW8rr//6gvv1eUf/SOI5gAAAAwNSb7a/o7af39uMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CJ9dP+dtV43yrh//WpELJbFn425Tn8uKhHx2D+SmD02XRIRMxcQ/+jdiHiqLH6SpxWLRRb98dOIuDqa+M9kWZZGSfxrFxAfptn7+frn9bLvXxrPdfrl3//Zovu4Bq//0gfrv5kB67/Hzxjj6Xu/rA2M/27E07Pl659e/GRA/OfLZliyUL79rcPDQfGzn0VcL/39SU7EqrW3d2utg8Obm9urG/WN+s7y8tLLK6+sfHnlVu3OZqNevJbG+OEzv/pfX9V/s65O+2NA/MVT2v9CXqgcb0x/mCLYvbv3n+wWK32z6MS/8Xz55//UI+LnfxOfL34H8vev98pH3fJxz/7iw2dLEyvirw9o/2mf/41BM+3z4je//4czjgoAjEDr4HBrtdGo7w298F6WZaOKdWkK2eVI41IU5i5HGgqnFy7iyBYAAHDZPNzoP8dE3x1iQgAAAAAAAAAAAAAAAAAAADCFWgeRDrwN2JWLuZ1Yf8yj8TQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCR/h8AAP//oszk1w==")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[], 0xe4}, 0x1, 0x0, 0x0, 0x100}, 0x4000044)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0xdddd0000, 0xe, 0xf0, 0x40, 0xfd, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x7}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0x8, 0x5, 0xf, 0x3, 0xca}, {0xeeee0000, 0xe6e50002, 0xb, 0x0, 0x2, 0x7, 0x4, 0x1, 0xc, 0x0, 0x6, 0x5}, {0x8000000, 0x0, 0x8, 0xfc, 0x3, 0x46, 0xff, 0xd, 0x6, 0x3, 0x0, 0x1}, {0x100000, 0x0, 0x9, 0x1, 0x3, 0x9, 0x47, 0x5, 0x5, 0x44, 0xe, 0x4b}, {0xf000, 0xeeee8000, 0x0, 0x7, 0x3, 0x6c, 0x1, 0xff, 0x4, 0x80, 0x1, 0xfc}, {0x6000, 0x1000, 0xf, 0x9d, 0x9, 0x0, 0x0, 0xb, 0x5, 0x7, 0x0, 0xf8}, {0xffff1000, 0x8000000, 0xd, 0x5, 0x3, 0x8, 0xa, 0x9, 0x4, 0x6, 0x2, 0x7}, {0xeeee8000, 0x5}, {0x2, 0x209}, 0x40010000, 0x0, 0xf000, 0x300, 0x5, 0x0, 0xe6e70c00, [0xffffffffffffff47, 0x401, 0x5, 0xc5]})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x81, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r7}, 0x10)
connect$pppl2tp(r4, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @private2}}}, 0x32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

4m46.095013467s ago: executing program 33 (id=619):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x2, &(0x7f00000009c0)={[{@errors_remount}, {@grpquota}]}, 0x2, 0x517, &(0x7f0000000140)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[], 0xe4}, 0x1, 0x0, 0x0, 0x100}, 0x4000044)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0xdddd0000, 0xe, 0xf0, 0x40, 0xfd, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x7}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0x8, 0x5, 0xf, 0x3, 0xca}, {0xeeee0000, 0xe6e50002, 0xb, 0x0, 0x2, 0x7, 0x4, 0x1, 0xc, 0x0, 0x6, 0x5}, {0x8000000, 0x0, 0x8, 0xfc, 0x3, 0x46, 0xff, 0xd, 0x6, 0x3, 0x0, 0x1}, {0x100000, 0x0, 0x9, 0x1, 0x3, 0x9, 0x47, 0x5, 0x5, 0x44, 0xe, 0x4b}, {0xf000, 0xeeee8000, 0x0, 0x7, 0x3, 0x6c, 0x1, 0xff, 0x4, 0x80, 0x1, 0xfc}, {0x6000, 0x1000, 0xf, 0x9d, 0x9, 0x0, 0x0, 0xb, 0x5, 0x7, 0x0, 0xf8}, {0xffff1000, 0x8000000, 0xd, 0x5, 0x3, 0x8, 0xa, 0x9, 0x4, 0x6, 0x2, 0x7}, {0xeeee8000, 0x5}, {0x2, 0x209}, 0x40010000, 0x0, 0xf000, 0x300, 0x5, 0x0, 0xe6e70c00, [0xffffffffffffff47, 0x401, 0x5, 0xc5]})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x81, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r7}, 0x10)
connect$pppl2tp(r4, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @private2}}}, 0x32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

3m20.303857585s ago: executing program 2 (id=826):
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000140)='./file0\x00', 0x71)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r2, r0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7ea, 0x0, 0x9, 0x4, 0x0, 0xfffffffffffff84d, 0x3f8}, 0x0, 0x0)

3m18.248025658s ago: executing program 2 (id=829):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000100)='./file0\x00')
syncfs(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES16=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x10000000}, 0x2}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

3m16.942688978s ago: executing program 2 (id=833):
socket$nl_sock_diag(0x10, 0x3, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000380))
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f00000001c0)={'IDLETIMER\x00'}, &(0x7f0000000400)=0x1e)

3m14.864236724s ago: executing program 2 (id=835):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x2000410, &(0x7f0000000380)=ANY=[], 0x1, 0x2b4, &(0x7f00000000c0)="$eJzs3T9PA2UcB/DfldIWHdrByZB4iQxOBFhdSgwkRiZNB3VQI5AY2phAQuKfWJlcXRx9BSYmbr4JF9+BiauJmwwkZ653Rwu0hRoKGj+fAR6ee77P/e7yFErIPXy4Pjg5TOP44svfotVKotaNtbhMohO1qHwdN3S/DQDgv+wyy+LPrLBILomI1vLKAgCWaObP/5UZgZ+epCwAYIneefe9t3YPDvbeTtNW7A++Oe/lv9nnn4vju8fxSfTjKLaiHVcRWaX6+0CWZcN6mqZp1o4YDM97eXLwwS/l/Lt/RIzy29GOTpUo3m3kH/ffPNjbTguxcZ0f5nW8UJ6/m+d3oh0vTZx/Ir8zJR+9Rrz26kT9m9GOXz+OT6Mfh6MixvmvttP0jey7v754Py8vzyfD815zNG4sm/WOCAAAAAAAAAAAAAAAAAAAAAAAFrZZ7p3TjLQTG4O8q9x/Z+Uq/2I10krn5v48Rb5ZTXRrf6BhFt9X++tspWmaJcWwcb4eL9ej/jxXDQAAAAAAAAAAAAAAAAAAAP8uZ599fvJRv390+iiN8iH/68f6/+k83YmeV2L+4Ob4XLWyOWfmWKnGJBF5TzLrJuQX8Ui35b7G2qyaf/hx0Qlb949ZnXd/HqdRra789k4d04yqp1Utkp8nxzTigedqzDq0XpbwsHkaUw+1F772xoujxnDOmEjmvS5e/70ou+xJbr+IGqO7OjW+Wjbieo3fXhsLree73ysSu3UAAAAAAAAAAAAAAAAAAMBSjR/6vXOoHhdzo7WsucTCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAJjf///+xGPSJu9AzL8NxU0WjE6dkzXyIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/A38HAAD//zY6VNc=")
r0 = open(&(0x7f00000001c0)='./file2\x00', 0xc6442, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
io_setup(0x2, &(0x7f0000000400))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x9)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x17)

3m11.36404383s ago: executing program 2 (id=842):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000100)='./file0\x00')
syncfs(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES16=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x10000000}, 0x2}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

3m9.584183696s ago: executing program 2 (id=844):
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0x6, 0x0, &(0x7f00000000c0)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
getpgid(0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
capset(&(0x7f0000000080)={0x20071026}, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x50, 0x0, &(0x7f0000000180))
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400))
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/address_bits', 0x141b82, 0x180)
write$hidraw(r7, &(0x7f0000000040)="ae", 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

3m3.316855937s ago: executing program 4 (id=856):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB], 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000008c0)=ANY=[@ANYBLOB="7401000001020101007a9fecbbf0860881e872068aebbc000000"], 0x174}, 0x1, 0x0, 0x0, 0x41}, 0x4000000)

3m0.602050766s ago: executing program 4 (id=858):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000000000001811", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r3, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x3, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

3m0.420708194s ago: executing program 4 (id=859):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000003c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r1)
r2 = inotify_init1(0x800)
fcntl$setstatus(r1, 0x4, 0x2c00)
r3 = gettid()
fcntl$setown(r1, 0x8, r3)
fcntl$setsig(r2, 0xa, 0xe)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r2, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')

2m59.403807885s ago: executing program 4 (id=862):
socket$nl_sock_diag(0x10, 0x3, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000380))
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f00000001c0)={'IDLETIMER\x00'}, &(0x7f0000000400)=0x1e)

2m58.318597013s ago: executing program 4 (id=863):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000100)='./file0\x00')
syncfs(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES16=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x10000000}, 0x2}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

2m56.331745199s ago: executing program 4 (id=865):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x81, r5}, 0x38)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r6}, 0x10)
connect$pppl2tp(r3, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @private2}}}, 0x32)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)

2m54.176629363s ago: executing program 34 (id=844):
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0x6, 0x0, &(0x7f00000000c0)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
getpgid(0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
capset(&(0x7f0000000080)={0x20071026}, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x50, 0x0, &(0x7f0000000180))
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400))
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/address_bits', 0x141b82, 0x180)
write$hidraw(r7, &(0x7f0000000040)="ae", 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

2m49.092588255s ago: executing program 1 (id=878):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000001c0)="82ab", 0x2}], 0x1}}], 0x1, 0x6404c880)
sendto$inet6(r0, &(0x7f0000000200)="9ad42ae202f39a5770a8bd0f341c890605", 0x11, 0x3b00, 0x0, 0x0)

2m48.791893366s ago: executing program 1 (id=879):
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x901800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
pipe2$9p(0x0, 0x4880)
write$P9_RFLUSH(0xffffffffffffffff, &(0x7f00000003c0)={0x7, 0x6d, 0x2}, 0x7)
syz_emit_ethernet(0x2a, 0x0, 0x0)
r3 = getpid()
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x20000, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
open(0x0, 0x14927e, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x24, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x17\x00'}, @typed={0x8, 0xa, 0x0, 0x0, @fd}]}, 0x24}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="7b87f20f", @ANYBLOB="01"], &(0x7f0000000200)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m44.260071835s ago: executing program 1 (id=883):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x2000410, &(0x7f0000000380)=ANY=[], 0x1, 0x2b4, &(0x7f00000000c0)="$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")
r0 = open(&(0x7f00000001c0)='./file2\x00', 0xc6442, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
io_setup(0x2, &(0x7f0000000400))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x9)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)

2m42.554431594s ago: executing program 1 (id=885):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106a053103000000000001090224000100008000090400101c0300010009210000000122f80409058103"], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newqdisc={0x24, 0x14, 0xf0b, 0x80000000, 0x0, {0x2, 0x0, 0x0, 0x0, {0x4}, {0xfff1, 0xb}, {0xfff1, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x759, &(0x7f00000000c0)={[{@usrquota}, {@nobarrier}], [], 0x2c}, 0x0, 0x4f6, &(0x7f00000002c0)="$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")
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)

2m41.102710917s ago: executing program 35 (id=865):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), 0x81, r5}, 0x38)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r6}, 0x10)
connect$pppl2tp(r3, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @private2}}}, 0x32)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)

2m40.021042625s ago: executing program 1 (id=891):
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB], 0x48)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000840)=ANY=[@ANYBLOB='dots,fmask=00000000000000000006675,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB=',dots,nodots,gid=', @ANYRESHEX=0xee00, @ANYBLOB="2c6e6f646f74732c6e6f646f74732c646f74732c6e6f646f74732c6e66733d6e6f7374616c655f726f2c6e6f646f74732c636865636b3d72656c617865642c6e6f646f74732c6edd2640614868dbe60c1066732c6e6f646f74732c6e6f646f74732c666c7573682c756d61736b3d30303030303030303030303030303030303030303030372c6e6f646f74732c646f74732c00"], 0x1, 0x1f5, &(0x7f0000000600)="$eJzs3cFqE1EUANCbmCYTcdGdIAgjLnRV1C+oSAUxIFSy0J2gK7NqN6mb9jP8Bf/LD5CuspEncSadmKYxBDKj7Tmb3pn7Xt+7M2SSTW5SFL7f/RpZ1or2fuzHpBW70Y6ZswAArpNJSvEjFZreCwBQjzXe/3/WvCUAYMvevnv/+vlgcHCY51nE+dl4OB4Wf4v8y1eDgyf5b7vVrPPxeHjrIv80X/zsMM3vxO0y/6yYn1+kuxEx7Mbjh0V+mnvxZpD/Ob8XH7dcOwAAAAAAAAAAAAAAAAAAAAAANOV+5DNL+/vs7S3m+2W+OJrrD7TQv6cT9zrlYdUeKJ3WURQAAAAAAAAAAAAAAAAAAAD8Z45Pvnz+MBp9OqqCXkTMn+ksGXN10Cr/8VqDmw/asdn0flnmBou2yku03QL7y2/uOkF0/pW7s2mQ17BWf+XlTWkaLH8VzNpiXDm9GxGrV390uOnmJyml0bcHR8cnkVYOrp4RvVqfSAAAAAAAAAAAAAAAAAAAcHPNfev7kqyJDQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAA6rf/58Gl8+sDE4j4k78dfBsrZ3IGq0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+tXAAAA//85ziI4")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='\n'], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000280), &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6gretap0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r2, {0xfffd, 0x10}, {0x1, 0xfff1}, {0x6, 0x3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x8804)

2m38.494152276s ago: executing program 1 (id=896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

2m22.661452714s ago: executing program 36 (id=896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

1m47.256992931s ago: executing program 6 (id=1005):
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000140)='./file0\x00', 0x71)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r1, r0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7ea, 0x0, 0x9, 0x4, 0x0, 0xfffffffffffff84d, 0x3f8}, 0x0, 0x0)

1m45.796000156s ago: executing program 6 (id=1008):
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b70300000000000085000000720000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
connect$netlink(r4, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route(r4, &(0x7f0000000380)={&(0x7f00000001c0), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000012000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00*\x005\x00wg0\x00'/28], 0x34}}, 0x0)

1m43.815934762s ago: executing program 6 (id=1013):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2000800)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040)={{{@in=@rand_addr=0x64010100, @in6=@mcast2, 0x4e25, 0x0, 0x0, 0x0, 0x2}, {0x2, 0x53, 0xfff, 0x0, 0xfffffffffffffffc, 0x1e6, 0xfffffffffffffffe, 0x8001}, {0x7ffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x5}, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2}, {{@in6=@empty, 0x0, 0x32}, 0xa, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x4, 0x2, 0x0, 0x0, 0x2, 0x9}}, 0xe8)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x45}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0xab}, 0x0}, {@usrjquota}, {@noload}, {@jqfmt_vfsv1}, {@data_err_abort}, {@noacl}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x1f0ffca}}], [{@fsmagic={'fsmagic', 0x3d, 0x9}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}], 0x2c}, 0x0, 0x4f9, &(0x7f0000000200)="$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")
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaa"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m43.008309612s ago: executing program 6 (id=1015):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000140)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000040), 0x1)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r9 = socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000900)=@gettaction={0x1cc, 0x32, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}, @action_gd=@TCA_ACT_TAB={0x94, 0x1, [{0x10, 0x14, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0xc, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0x14, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x39}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0x1a, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x59}}, {0xc, 0xe, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}, @action_gd=@TCA_ACT_TAB={0x74, 0x1, [{0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0x10, 0x17, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x101}}, {0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xffffff80}}]}, @action_gd=@TCA_ACT_TAB={0x7c, 0x1, [{0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0x10, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0x14, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0x10, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x4}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}]}]}, 0x1cc}}, 0x4000000)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

1m41.938246757s ago: executing program 6 (id=1017):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chdir(&(0x7f0000000100)='./file0\x00')
syncfs(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRES16=r2], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x10000000}, 0x2}, 0x94)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

1m39.08630977s ago: executing program 6 (id=1023):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x533, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, 0x0)

1m23.180829874s ago: executing program 37 (id=1023):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x533, &(0x7f0000000b00)="$eJzs3e9rI2kdAPDvTJped7dncyqyHnh3uCe7h26yvXp3VeRuBdFXB+r5fi1tWkrTpjTpuS2H9vCFLwURFfwDfCP4Bwhyf4IIB/peVBTRPX2pO5Jkgv2RNKFNN73084Fpnmcm83y/z9BMZiYPMwFcWS9ExP2IKETESxExl89P8ykOOlPrfR88eme5NSWRZW/9I4kkn9dtq1Wfiogb+WozEfHNr0XcSk/GbeztbyzVatWdvF5pbm5XGnv7d9c3l9aqa9WthYX5VxdfW3xl8V6WO1c/SxHx+lf+8pMf/uKrr//mc9/544O/3fluK98vfaKTd0QsnytAH522i+1t0dXaRjsXEWxMWv0pFsadBQAAw2gdmn80Ij7dPv6fi0L7aA4AAACYJNkbs/GfJCIDAAAAJlYaEbORpOV8LMBspGm53BnD+/G4ntbqjeZnV+u7WyutZRGlKKar67XqvXyscCmKSas+n4+x7dZfPlZfiIhnIuLHc9fa9fJyvbYy7osfAAAAcEXceP7o+f+/59J2GQAAAJgwpb4VAAAAYFI45QcAAIDJ5/wfAAAAJtrX33yzNWXd53ivvL23u1F/++5KtbFR3txdLi/Xd7bLa/X6WvuefZuD2qvV69ufj63dh5VmtdGsNPb2H2zWd7eaD9aPPAIbAAAAeIKeef69PyQRcfDFa+0p8vsADjJ94ZkBl8qfx50AMEqFcScAjM3UuBMAxqY48B32EDDpkgHLTw7e6VwrjN9eTD4AAMDo3f7kyd//u7/tD742AHyYDTPWBwCYLH7dg6ureNYRgDdHnQkwLh/pvDzVb3nfm3cM8ft/5xpDlp0pMQAAYGRm21OSlvPj9NlI03I54un2YwGKyep6rXovPz/4/VzxqVZ9vr1mMnDMMAAAAAAAAAAAAAAAAAAAAAAAAADQkWVJZAAAAMBEi0j/mrTv5h9xe+7F2aNXB4499evnb/304VKzuTMfMZ38c641azoimj/L57+ceSQAAAAAXAKd8/T8dX7c2QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwaT549M5yd3qScf/+5Ygo9Yo/FTPt15koRsT1fyUxdWi9JCIKI4h/8G5E3OwVP4nHWZaV8ix6xb92wfFL7U0zkyX5ew/HTyPixgjiw1X2Xmv/c7/X5y+NF9qvvT//U8c+j2fV3f9N5/XD8bv7v0Kf/c/Th+tp/xjPvv+rSt/470Y8O9WJez+O7n+68ZNO/CSOxb81ZB+//a39/Z4LDjXZa/93OFalubldaezt313fXFqrrlW3FhbmX118bfGVxXuV1fVaNf/bM8yPPvXrx6f1/3qf+KWj/T+x/V8cqvdZ/Pf9h48+1qkUe8W/c6v39+/NPvHT/LvvM3m5tfx2t3zQKR/23C9/99xp/V/p0/+ZAf2/M1T/4wsvfeP7f+q55MTWAACehMbe/sZSrVbdOaUwM8R7hi4URtLOGyPL57IU4nKkMa5C9r3O/+P52jnn6icKWfUHZ199KkaQxvSJz2khztpgEnHQamvIf0gAAGDC/P+gPxl3KgAAAAAAAAAAAAAAAAAAAHBlnfG2ZDMR0ZlTHHw7seMxD8bTVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAU/0vAAD//xluyPE=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, 0x0)

1m19.644015183s ago: executing program 8 (id=1059):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r3, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x3, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

1m19.366665181s ago: executing program 8 (id=1061):
syz_open_dev$tty1(0xc, 0x4, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000080000000800000000000000c848bbd1d30e950e9e074226a659565571c75c1c6a148661c6f9957323411057c2e052bbb76cd288f5b3abeef9d282fb5c178153763485599c96ee5d7a1519901362d3c101e745eb677a7f0579667fdf70c84d3bbab6dc2005ea3b236dfd3f6cee921f8ad9d7e751", @ANYRES32], 0x50)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000400)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x0, 0x2}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f00000001c0)={0x42, 0x1}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000fdffffff00000000060000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000006}, 0x4048000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
bind$tipc(r3, 0x0, 0x0)
dup3(r4, r3, 0x0)
prctl$PR_SCHED_CORE(0x53564d41, 0x0, 0x0, 0x3, 0x0)

1m17.936078522s ago: executing program 8 (id=1062):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000000180)={0x10, 0x0, 0x25dfdbfb, 0x4}, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x58)
listen(r1, 0x5)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x24040014, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
close_range(r1, 0xffffffffffffffff, 0x0)

1m17.643979411s ago: executing program 8 (id=1065):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f00000001c0)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c757466383d312c696f636861727365743d61736369692c73686f72746e616d653d77696e39352c73686f77657865632c6e66732c636865636b3d7374726963742c756e695f786c6174653d302c757466383d312c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c726f6469722c726f6469722c64656275672c757466383d302c726f6469722c71756965742c6572726f72733d72656d6f756e742d726f2c009c8a8fc4f74784ad79ec08fb556262ebc972ef94821f3565ef5f75f11e30ef1f72a065c510b17cae352940538b7b2c5d72f4627c25306b2479725add28f511a68f5f6f47f9facdd0cc574286d00ab52d6b9374b6a58eac694336ebe971f41860d01084c1a0fa6b51d80fa9f9d2c5a2e7a5284f93296217ef8f28e0a36e573296a0bfb38b94191f4b82873563f3759b5e193ecfab6ed7892542364757e47d656ad6a0fbb6e8bf138bddae620a3602991821d4844f628e6bdd8b62cca73744332f0185a54b"], 0x6, 0x2c1, &(0x7f00000005c0)="$eJzs3T+LI2UcB/DfZLOTUYuksBLhBrzC6nCvE5sscgfiVh4p1EIX7w5kE4Q7WPAPxqtsbSwsfAWC4Au5xncg2Ap2rrAwMpOZzWSNMZHNyu1+Ps0++8zznfk9k4fsbJEnH748Obqfx8MnX/wSWZZEZxjDOEliEJ1ofBULht8EAPAsOymK+L2Y2SSXRES2vbIAgC1a7+9/d9786VLKAgC26N677729f3Bw550ssrg7+fp4VP5nX/6cHd9/GB/HOB7Ea9GP04jqQWE3qqeFsnm3KIppNy8N4uZkejwqk5MPntbn3/8tosrvRT8GVdfZ00aVf+vgzl4+08pPyzqer68/LPO3ox8vnoUX8reX5GOUxquvtOq/Ff34+aP4JMZxvypinv9yL8/fLL794/P3y/LKfDI9HvWqcXPFziW/NAAAAAAAAAAAAAAAAAAAAAAAXGG36r1zepHfiJuTsqvef2fnNNLy17wxWNyfZ5ZPmhO19wcqimJaxPetLQXzoh44z3fjpW57Y0EAAAAAAAAAAAAAAAAAAAC4vh5/+tnR4Xj84NGFNJrdALoR8ee9iP96nmGr50asHtyrr3k4Hnfq5sKYp2m7J3aaMUnEyjLKSVzQbfm3xnPna24aP/xYTnCTE2atnteXT3B3+/NqVtfRYbL8Wr1oerJ6kXyXRszHpLHmtdJ/OlTEJssvXXqov/Hc0xeqxnTFmEhWFfbGr7M7V/ck52eRVnd1aXy3brTi59bGWq97ZLP4398rkmq3jt723owAAAAAAAAAAAAAAAAAAOCam3/6d8nBJyujncJHgQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4Iubf/79BY1qH1xicxqPH//MUAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuAb+CgAA//8HIVi7")
r0 = syz_create_resource$binfmt(&(0x7f0000000100)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x41, 0x1ff)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}})
fchmodat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40)
utime(&(0x7f0000000040)='./file0\x00', 0x0)
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f00000001c0)={0x50, 0x0, r2, {0x7, 0x2b, 0x6, 0x0, 0x7, 0x0, 0x3, 0x4}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x78, 0x0, 0x3, {0x8000, 0xcd, 0x0, {0x2, 0x0, 0x9ef1, 0x1000, 0x5, 0x9b, 0xf79c000, 0x2339fdf8, 0x3, 0x4000, 0x538, 0x0, 0xffffffffffffffff, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m17.268260448s ago: executing program 8 (id=1067):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_setup(0x8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setaffinity(r1, 0x8, &(0x7f0000000000)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r5}, 0xe)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BSS(r6, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)={0xfffffffffffffeec, 0x0, 0x9ddee2a8e6810bd5, 0x70bd2a, 0x25dfdbfe, {{}, {@val, @val={0xc, 0x99, {0x2, 0x5}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x23535f2a4705fe9a}, 0x4890)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='svcrdma_decode_short_err\x00', 0xffffffffffffffff, 0x0, 0x10001}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

1m16.707405694s ago: executing program 8 (id=1072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)

1m15.397972663s ago: executing program 38 (id=1072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, 0xffffffffffffffff, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)

12.746319311s ago: executing program 9 (id=1213):
socket$nl_sock_diag(0x10, 0x3, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000380))
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f00000001c0)={'IDLETIMER\x00'}, 0x0)

11.568649218s ago: executing program 3 (id=1216):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000140)='./file0\x00', 0x71)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r2, r0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7ea, 0x0, 0x9, 0x4, 0x0, 0xfffffffffffff84d, 0x3f8}, 0x0, 0x0)

11.419829312s ago: executing program 5 (id=1218):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_setup(0x8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$binfmt_format(0xffffffffffffffff, &(0x7f0000000000)='1\x00', 0x2400)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r4}, 0xe)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BSS(r5, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)={0xfffffffffffffeec, 0x0, 0x9ddee2a8e6810bd5, 0x70bd2a, 0x25dfdbfe, {{}, {@val, @val={0xc, 0x99, {0x2, 0x5}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x23535f2a4705fe9a}, 0x4890)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='svcrdma_decode_short_err\x00', 0xffffffffffffffff, 0x0, 0x10001}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

10.761743187s ago: executing program 9 (id=1220):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a65140fadf0ac7f, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000082861490000000000024000000f0ffffff9500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0xcab5, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, &(0x7f0000000400)={[{}]})

8.624004359s ago: executing program 9 (id=1225):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

7.874556353s ago: executing program 5 (id=1226):
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
flistxattr(r2, 0x0, 0x0)
mlockall(0x2)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSERGETLSR(r4, 0x5459, &(0x7f00000002c0))

7.866170273s ago: executing program 7 (id=1227):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="2000000002010102000000000000000000020007040019"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x40010)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
pipe(&(0x7f0000000040))
r4 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000400)={{0x0, 0x1, 0xfffffffe, 0x0, 0xd335}})
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00'}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000005, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

7.816557039s ago: executing program 3 (id=1228):
socket$nl_sock_diag(0x10, 0x3, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000380))
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f00000001c0)={'IDLETIMER\x00'}, 0x0)

6.756042763s ago: executing program 3 (id=1229):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000007"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x6}, 0x10)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
close_range(r2, 0xffffffffffffffff, 0x0)

6.495838189s ago: executing program 9 (id=1230):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
r0 = syz_mount_image$ext4(&(0x7f00000003c0)='ext2\x00', &(0x7f0000000200)='./file1\x00', 0x2280850, &(0x7f0000000080)={[{@journal_dev={'journal_dev', 0x3d, 0x7}}, {@debug}, {@nodioread_nolock}, {@min_batch_time={'min_batch_time', 0x3d, 0x6}}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@orlov}, {@nodelalloc}, {@grpjquota}, {@norecovery}]}, 0x5, 0x596, &(0x7f0000000400)="$eJzs3V1rFFcYAOB3NonGj9YIIrUXRfCiFuvGJK0fUNBellYqtPd2SdYg2biS3YhJhepFvelNkUIpFUp/QO97Kf0D/RVCK0iR0FKkkDKb2SQm+5Ho6q7u88DoOTOTPefsmXf2nJlZNoC+dTj9JxdxKCK+TSL2rds2GNnGwyv7LT26MZkuSSwvf/ZXEkm2rr5/kv2/J8u8ERG/fR1xLLeyfmjda1cWFmcKpVJxLsuPVmevjlYWFo9fni1MF6eLV8YnJk6/Pzx+5tTJjrX1nQv//PDpvY+Gvzmy9P0vD/bfSeJc7M22rW/HM7i5PnO48F+WGopzG3Yc60BhvSTpdgV4KgNZnKexeSj2xUAW9cCr76uIWAb6VCL+oU/VxwH1uX2H5sEvjYcfrkyANrd/cOXaSAzX5ka7l5InZkbpfHekA+WnZfz659076RKtr0PsapMH2JabtyLixODg5vNfkp3/nt6J2sXj1jaW0W+fP9BN99Lxz7uNxj+51fFPNBj/7GkQu0+jffznHjyR7fCNhnT890HD8e/qqWtkIMu9VhvzDSWXLpeKJyLi9Yg4GkM703yr+zmnl+4vN9u2fvyXLmn59bFgVo8Hgztrl+lXTRWqhWdr9ZqHtyLebDj+TVb7P2nQ/+n7caHlK6911MHi3bea7dW+/c/X8s8Rbzfs/7X6J03vT06Mnzl1crR2PIzWj4rN/r598Pdm5Xe7/Wn/727d/pFk/f3ayvbL+Gn4cbHZti0e/09Ij/8dyee19I5s3fVCtTo3FrEj+WTz+vG1v63n6/un7T96pPX5r9Hxn06+vthi+28fuN10117o/6lt9f/2E/c//vLHZuVvrf/fq6WOZms2nP8eb7iUUbPVCnbobQQAAAAAAICekIuIvZHk8qvpXC6fX3m+40DszpXKleqxS+X5K1NR+67sSAzl6ne699Vuwa48DzGWPQ9bfz5ifEN+IiL2R8R3A7tq+fxkuTTV7cYDAAAAAAAAAAAAAAAAAABAj9jT5Pv/qT8Gul074Lmr/bDBzm7XAuiGtj/534lfegJ6Utv4B15Z4h/6l/iH/iX+oX+Jf+hf4h/6V+P49/QP9AOf/wAAAAAAAAAAAAAAAAAAAAAAAAAAANBRF86fT5flpUc3JtP81LWF+ZnyteNTxcpMfnZ+Mj9Znruany6Xp0vF/GR5tt3rlcrlq2PjMX99tFqsVEcrC4sXZ8vzV6oXL88WposXi0MvpFUAAAAAAAAAAAAAAAAAAADwcqksLM4USqXi3AtODEYXCm2VGM7ekAabzkZP1PD5Jc42b3v7xODmTf9GRC+0S+IZEl08KQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADABv8HAAD//9L0OVA=")
dup3(r0, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000010000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlink(0x0, &(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r8, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'})
pipe2$9p(&(0x7f00000000c0), 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x109202)
ioctl$USBDEVFS_SETINTERFACE(r9, 0x80085504, &(0x7f0000000180)={0x4000})

6.411735637s ago: executing program 7 (id=1231):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60303, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20000000, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000)=@x86={0xa0, 0xfd, 0x5, 0x0, 0x3, 0x3, 0xb, 0x1, 0xf8, 0x19, 0x7, 0x3, 0x0, 0x9d, 0x1, 0x7, 0x6, 0x40, 0x0, '\x00', 0x4, 0xcaa})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000300)={[0xe6, 0x55e, 0xffffffff, 0x4, 0xfffffffffffffffd, 0x7, 0x9, 0xb, 0x4, 0x80, 0x6, 0x794, 0xa, 0x40, 0xc976, 0x6], 0x2, 0x20200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.153813003s ago: executing program 3 (id=1232):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x40)
fadvise64(r0, 0xfff, 0x8, 0x2)

6.143403434s ago: executing program 5 (id=1233):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f0000000540)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000340)='leases_conflict\x00', r4}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x10, 0x4, 0x8, 0x1, 0x1040, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYRES32=r5], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
r7 = getpgid(0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'veth0\x00', <r9=>0x0})
setsockopt$packet_add_memb(r8, 0x107, 0x1, &(0x7f00000004c0)={r9, 0x3, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20048054)
syz_open_procfs(r7, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=""/145, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r10, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000680)={0x24, 0x3, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x1}]}, @CTA_TUPLE_REPLY={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x91}, 0x2084)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

4.919518275s ago: executing program 3 (id=1234):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, &(0x7f0000000040)={0x7fffffff, 0x8, 0xffff, 0x400, 0x80, "d7c70600", 0xffffc081, 0xc88})
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x3)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x141301)
ioctl$USBDEVFS_CONTROL(r4, 0xc0105500, &(0x7f00000000c0)={0x80, 0xa, 0x303, 0x0, 0x0, 0x6e9, 0x0})

4.919093705s ago: executing program 7 (id=1235):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_setup(0x8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$binfmt_format(0xffffffffffffffff, &(0x7f0000000000)='1\x00', 0x2400)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setaffinity(r1, 0x8, &(0x7f0000000000)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r5}, 0xe)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BSS(r6, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)={0xfffffffffffffeec, 0x0, 0x9ddee2a8e6810bd5, 0x70bd2a, 0x25dfdbfe, {{}, {@val, @val={0xc, 0x99, {0x2, 0x5}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x23535f2a4705fe9a}, 0x4890)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$NS_GET_USERNS(r0, 0xb701, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='svcrdma_decode_short_err\x00', 0xffffffffffffffff, 0x0, 0x10001}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

4.841206362s ago: executing program 9 (id=1236):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000140)='./file0\x00', 0x71)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r2, r0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7ea, 0x0, 0x9, 0x4, 0x0, 0xfffffffffffff84d, 0x3f8}, 0x0, 0x0)

3.011263143s ago: executing program 7 (id=1237):
socket$nl_sock_diag(0x10, 0x3, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000380))
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f00000001c0)={'IDLETIMER\x00'}, 0x0)

2.490037584s ago: executing program 9 (id=1238):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000700000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='kmem_cache_free\x00', r1}, 0x18)
syz_clone(0x400a1400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000080)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$eJzs3M9rHFUcAPDv7CZt06YmlvqjadVoFYM/kiattQcvioIHBUEP9RiTtMRuG2ki2BI0itSjFLyLR8G/wJNeRD0JXvUuhSK5tIqHldmdSXY3u2k2blzNfj4wyXszb3nvuzNv9715mQTQs0bTH0nEYET8EhFD1Wx9gdHqr9uryzN/rC7PJFEuv/57Uil3a3V5Ji+av+5AnumLKHycxNEm9S5euXphulSau5zlJ5YuvjOxeOXq0/MXp8/PnZ+7NHXmzKmTk8+ennqmI3Gmcd0aeX/h2JGX37z+6szZ62/98FWSx98QR4eMbnbwsXK5w9V118GadNLXxYbQlmK1m0Z/pf8PRTHWT95QvPRRVxsH7KhyuVy+t/XhlTKwiyXR7RYA3ZF/0afz33zbfMDQ0eFH1918vjoBSuO+nW3VI31RyMr0N8xvO2k0Is6u/Pl5usXO3IcAAKjzTTr+earZ+K8QtfeF7srWUIYj4u6IOBQRpyPicETcE1Epe19E3N9m/Y2LJBvHP4Ub2wpsi9Lx33PZ2lb9+C8f/cVwMcsdrMTfn5ybL82dyN6Tsejfm+YnN6nj2xd//rTVsdrxX7ql9edjwawdN/r21r9mdnpp+p/EXOvmhxEjfc3iT9ZWApKIOBIRI9usY/6JL4+1Onbn+JurvCUdWGcqfxHxePX8r0RD/Llk8/XJiX1RmjsxkV8VG/3407XXWtW/3fg7JT3/+5te/2vxDye167WL7ddx7ddPWs5ptnv970neqNv33vTS0uXJiD3JK9VG1+6faig3tV4+jX/sePP+fyjW34mjEZFexA9ExIMR8VDW9ocj4pGIOL5J/N+/8OjbdTvGBtuIf2el8c+2df7XE3uicU/zRPHCd1/XVTocbcSfnv9TldRYtmcrn39badf2rmYAAAD4/ylExGAkhfG1dKEwPl79G/7Dsb9QWlhcevLcwruXZqvPCAxHfyG/0zVUcz90MpvW5/mphvzJ7L7xZ8WBSn58ZqE02+3goccdaNH/U78Vu906YMd5Xgt6l/4PvUv/h96l/0PvatL/Bzbu+qvhkUFgN2j2/f9BF9oB/Psa+r9lP+gh5v/Qu/R/6F36P/SkxYG480PyEhIbElH4TzRj5xP7tvhvLnZZotufTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ3xdwAAAP//FX7vJg==")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
pipe2(0x0, 0x80000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000200))
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e24, @multicast1}, 0x10)
setsockopt$sock_int(r3, 0x1, 0xc, &(0x7f0000000000)=0x56, 0x4)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
syz_clone(0x82020080, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
fdatasync(r2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

1.869653946s ago: executing program 7 (id=1239):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.415525641s ago: executing program 3 (id=1240):
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYRES32=r0], 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x10000007}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'tunl0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r2, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10)

1.131748329s ago: executing program 7 (id=1241):
syz_mount_image$f2fs(&(0x7f0000002080), &(0x7f00000000c0)='./bus\x00', 0x1800004, &(0x7f0000002240)={[{@discard_unit_segment}, {}, {@acl}, {@disable_roll_forward}, {@grpjquota={'grpjquota', 0x3d, 'checkpoint=disable'}}, {@alloc_mode_def}, {@two_active_logs}, {@grpjquota={'grpjquota', 0x3d, '\'*(\'\\'}}, {@checkpoint_diasble}, {@noacl}, {@nobarrier}, {@background_gc_on}, {@jqfmt_vfsold}, {@noinline_dentry}], [{@appraise}, {@uid_gt}, {@dont_appraise}, {@hash}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x36, 0x62, 0x66, 0x37, 0x62, 0x32, 0x62], 0x2d, [0x38, 0x33, 0x66, 0x35], 0x2d, [0x36, 0x62, 0x61, 0x30], 0x2d, [0x65, 0x36, 0x62, 0x34], 0x2d, [0x64, 0x62, 0x30, 0x64, 0x35, 0x34, 0x38, 0x63]}}}, {@fowner_eq}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x31, 0x31, 0x39, 0x39, 0x39, 0x64, 0x62], 0x2d, [0xefec4c41f6baf387, 0x65, 0x33, 0x65], 0x2d, [0x63, 0x66, 0x30, 0x31], 0x2d, [0x6ce993fc39ed3e2f, 0x31, 0x30, 0x32], 0x2d, [0x34, 0x66, 0x63, 0x34, 0x30, 0x36, 0x3, 0x32]}}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0xfd, 0x5521, &(0x7f00000079c0)="$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")

734.362078ms ago: executing program 5 (id=1242):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="080086dd0003"], 0xfdef)

261.467475ms ago: executing program 5 (id=1243):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setpgid(0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)

0s ago: executing program 5 (id=1244):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x66, &(0x7f0000000340)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000086dd6002adb700303a00fe880000000000000000000000000001ff020000000000000000000000000001"], 0x0)

kernel console output (not intermixed with test programs):

lantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  427.496428][ T5801] Bluetooth: hci2: command tx timeout
[  427.600113][ T5879] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  427.784721][ T5879] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  427.815150][ T5879] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  427.837214][ T5879] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  427.943116][ T5879] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  428.256803][ T5879] usb 2-1: USB disconnect, device number 8
[  428.392967][ T8638] fido_id[8638]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  429.212336][ T8593] hsr_slave_0: entered promiscuous mode
[  429.234536][ T8593] hsr_slave_1: entered promiscuous mode
[  429.727027][ T5801] Bluetooth: hci2: command tx timeout
[  431.318412][   T27] kauditd_printk_skb: 21 callbacks suppressed
[  431.318568][   T27] audit: type=1326 audit(2000000006.050:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.580931][   T27] audit: type=1326 audit(2000000006.050:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.601973][ T8593] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  431.606502][   T27] audit: type=1326 audit(2000000006.050:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.680072][   T27] audit: type=1326 audit(2000000006.150:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.704785][ T8593] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  431.750301][   T27] audit: type=1326 audit(2000000006.150:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.803445][ T5801] Bluetooth: hci2: command tx timeout
[  431.812647][ T8593] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  431.832614][   T27] audit: type=1326 audit(2000000006.220:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f52b95c1785 code=0x7ffc0000
[  431.863569][   T27] audit: type=1326 audit(2000000006.220:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.909201][   T27] audit: type=1326 audit(2000000006.220:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  431.970010][   T27] audit: type=1326 audit(2000000006.220:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  432.012134][ T8593] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  432.045062][   T27] audit: type=1326 audit(2000000006.520:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.1.678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  434.332249][ T8593] 8021q: adding VLAN 0 to HW filter on device bond0
[  434.440963][ T8593] 8021q: adding VLAN 0 to HW filter on device team0
[  434.467958][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  434.475143][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  434.487473][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  434.494664][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  435.505021][ T8703] loop1: detected capacity change from 0 to 1024
[  435.721314][ T8703] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  435.774919][ T8703] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.888311][ T8715] netlink: 352 bytes leftover after parsing attributes in process `syz.2.690'.
[  436.190037][ T8703] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.689: Freeing blocks not in datazone - block = 0, count = 16
[  436.648841][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  436.725136][ T8593] 8021q: adding VLAN 0 to HW filter on device batadv0
[  439.195953][ T8739] netlink: 8 bytes leftover after parsing attributes in process `syz.2.695'.
[  439.207621][ T8739] netlink: 24 bytes leftover after parsing attributes in process `syz.2.695'.
[  439.274425][ T8739] netlink: 24 bytes leftover after parsing attributes in process `syz.2.695'.
[  439.435141][ T8593] veth0_vlan: entered promiscuous mode
[  439.463295][ T8593] veth1_vlan: entered promiscuous mode
[  440.122836][ T8746] loop2: detected capacity change from 0 to 256
[  440.238176][ T8593] veth0_macvtap: entered promiscuous mode
[  440.327345][ T5807] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  440.330943][ T8593] veth1_macvtap: entered promiscuous mode
[  440.486808][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  440.493347][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  440.683156][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.709816][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.753701][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.828544][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.866370][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.910162][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.935517][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.970842][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.998213][ T8593] batman_adv: batadv0: Interface activated: batadv_slave_0
[  441.040227][ T8754] netlink: 352 bytes leftover after parsing attributes in process `syz.1.700'.
[  441.079425][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.136146][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.175828][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.208513][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.237268][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.247967][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.258556][ T8593] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.269140][ T8593] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.280889][ T8593] batman_adv: batadv0: Interface activated: batadv_slave_1
[  441.304289][ T8593] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  441.323150][ T8593] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  441.333252][ T8593] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  441.347557][ T8593] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  441.585641][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.635067][ T6463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.646279][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.669222][ T6463] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  442.791789][ T8769] loop5: detected capacity change from 0 to 256
[  442.848666][ T8769] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  443.169692][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  443.169708][   T27] audit: type=1326 audit(2000000018.440:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  443.216409][   T27] audit: type=1326 audit(2000000018.470:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  443.248007][   T27] audit: type=1326 audit(2000000018.510:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  443.281395][   T27] audit: type=1326 audit(2000000018.550:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  443.304004][   T27] audit: type=1326 audit(2000000018.550:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  443.446469][ T8775] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  444.171416][   T27] audit: type=1326 audit(2000000018.570:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  444.224292][   T27] audit: type=1326 audit(2000000018.570:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  444.246686][   T27] audit: type=1326 audit(2000000018.580:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  444.319041][   T27] audit: type=1326 audit(2000000018.590:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  444.403674][   T27] audit: type=1326 audit(2000000018.630:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8772 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52b958eec9 code=0x7ffc0000
[  444.436758][ T8781] loop5: detected capacity change from 0 to 1024
[  444.454798][ T8781] EXT4-fs: Ignoring removed nobh option
[  444.461181][ T8781] EXT4-fs: Ignoring removed bh option
[  444.476226][ T8781] EXT4-fs: Ignoring removed nobh option
[  444.578619][ T8781] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  445.305409][ T8789] netlink: 352 bytes leftover after parsing attributes in process `syz.1.711'.
[  446.780738][ T8797] loop1: detected capacity change from 0 to 512
[  446.867992][ T8797] EXT4-fs: Ignoring removed nobh option
[  446.950236][ T8797] fscrypt (loop1, inode 2): Error -61 getting encryption context
[  446.997299][ T8797] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -61
[  447.039601][ T8797] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #13: comm syz.1.712: casefold flag without casefold feature
[  447.056279][ T8797] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.712: couldn't read orphan inode 13 (err -117)
[  447.128509][ T8797] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.909740][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.115396][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.450561][ T8814] loop1: detected capacity change from 0 to 512
[  448.472454][ T8814] EXT4-fs: Ignoring removed mblk_io_submit option
[  448.500198][ T8814] EXT4-fs: inline encryption not supported
[  448.522283][ T8814] EXT4-fs: Ignoring removed mblk_io_submit option
[  448.543439][ T8814] EXT4-fs (loop1): Test dummy encryption mode enabled
[  448.567522][ T8814] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  448.618568][ T8814] EXT4-fs (loop1): 1 truncate cleaned up
[  448.623979][ T8818] loop5: detected capacity change from 0 to 256
[  448.640534][ T8818] exfat: Deprecated parameter 'utf8'
[  448.649105][ T8814] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  448.684019][ T8818] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  448.751984][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.060531][ T8822] loop4: detected capacity change from 0 to 256
[  449.107495][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  449.107512][   T27] audit: type=1800 audit(2000000024.370:395): pid=8822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.721" name="file2" dev="loop4" ino=1048613 res=0 errno=0
[  450.667688][ T8824] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  451.790746][ T8829] netlink: 68 bytes leftover after parsing attributes in process `syz.5.719'.
[  454.550830][ T8845] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  457.541977][ T8872] loop2: detected capacity change from 0 to 256
[  457.631268][   T27] audit: type=1800 audit(2000000032.900:396): pid=8872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.732" name="file2" dev="loop2" ino=1048617 res=0 errno=0
[  458.972056][ T8878] netlink: 212 bytes leftover after parsing attributes in process `syz.4.736'.
[  460.911023][ T8883] loop5: detected capacity change from 0 to 128
[  461.012280][ T8883] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  461.113076][ T8883] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  462.272176][ T8593] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  463.443585][ T8911] loop1: detected capacity change from 0 to 256
[  463.470352][ T8911] exfat: Deprecated parameter 'utf8'
[  463.531086][ T8911] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  464.053652][ T8922] netlink: 352 bytes leftover after parsing attributes in process `syz.4.748'.
[  464.063706][ T8921] loop5: detected capacity change from 0 to 4096
[  464.089018][ T8921] EXT4-fs: Ignoring removed oldalloc option
[  464.109202][ T8921] EXT4-fs: Ignoring removed i_version option
[  464.140796][ T8921] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  464.168106][ T8921] EXT4-fs (loop5): Test dummy encryption mode enabled
[  464.194352][ T8921] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.691301][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.729956][ T8932] netlink: 'syz.4.753': attribute type 12 has an invalid length.
[  466.019486][ T8937] netlink: 12 bytes leftover after parsing attributes in process `syz.4.756'.
[  466.151083][ T8937] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  469.564833][ T8958] syz.5.761[8958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  469.564992][ T8958] syz.5.761[8958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  469.655943][ T8958] netlink: 8 bytes leftover after parsing attributes in process `syz.5.761'.
[  469.924695][ T8963] netlink: 352 bytes leftover after parsing attributes in process `syz.4.762'.
[  472.776881][ T8979] netlink: 'syz.5.767': attribute type 3 has an invalid length.
[  472.785362][ T8979] netlink: 'syz.5.767': attribute type 3 has an invalid length.
[  474.236429][ T8985] netlink: 12 bytes leftover after parsing attributes in process `syz.1.764'.
[  474.892292][ T5879] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  474.894854][ T8992] netlink: 96 bytes leftover after parsing attributes in process `syz.1.771'.
[  474.931922][ T8995] loop2: detected capacity change from 0 to 128
[  474.960341][ T8995] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  475.107083][ T5879] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  475.248656][ T5879] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  475.416075][ T8995] ext4 filesystem being mounted at /197/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  475.589784][ T5879] usb 5-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  475.666023][ T5879] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.938242][ T5879] usb 5-1: config 0 descriptor??
[  475.952094][ T5879] usb 5-1: can't set config #0, error -71
[  475.968673][ T5879] usb 5-1: USB disconnect, device number 3
[  476.810516][ T5790] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  476.898223][ T9006] netlink: 352 bytes leftover after parsing attributes in process `syz.4.775'.
[  477.385582][ T9015] xt_bpf: check failed: parse error
[  478.874532][ T9019] netlink: 4 bytes leftover after parsing attributes in process `syz.4.779'.
[  479.150657][ T9020] loop5: detected capacity change from 0 to 4096
[  479.192391][ T9020] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.029433][ T9028] loop4: detected capacity change from 0 to 256
[  480.111403][   T27] audit: type=1800 audit(2000000055.380:397): pid=9028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.780" name="file2" dev="loop4" ino=1048619 res=0 errno=0
[  482.119746][   T27] audit: type=1326 audit(2000000057.390:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.205455][   T27] audit: type=1326 audit(2000000057.410:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.294346][   T27] audit: type=1326 audit(2000000057.420:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.387574][   T27] audit: type=1326 audit(2000000057.420:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.474963][   T27] audit: type=1326 audit(2000000057.420:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.609899][   T27] audit: type=1326 audit(2000000057.420:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.635556][   T27] audit: type=1326 audit(2000000057.420:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.661158][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.677593][   T27] audit: type=1326 audit(2000000057.420:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  482.838337][   T27] audit: type=1326 audit(2000000057.420:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.2.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51e118eec9 code=0x7ffc0000
[  486.950669][ T9078] loop5: detected capacity change from 0 to 256
[  487.166637][   T27] kauditd_printk_skb: 7 callbacks suppressed
[  487.166654][   T27] audit: type=1800 audit(2000000062.380:414): pid=9078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.796" name="file2" dev="loop5" ino=1048620 res=0 errno=0
[  491.117022][ T6258] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  491.898435][ T6258] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  491.925966][ T6258] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  491.955545][ T6258] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  491.976210][ T6258] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  492.845996][ T6258] usb 5-1: SerialNumber: syz
[  492.870566][ T6258] usb 5-1: 0:2 : does not exist
[  493.511962][ T9121] netlink: 352 bytes leftover after parsing attributes in process `syz.1.808'.
[  494.743893][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  494.764539][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  494.846343][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[  494.948829][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  494.969321][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  495.051119][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  495.496480][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  496.075201][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  499.226179][ T5879] usb 5-1: USB disconnect, device number 4
[  499.314502][ T9148] loop5: detected capacity change from 0 to 512
[  500.303057][ T9148] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.815: corrupted in-inode xattr: invalid ea_ino
[  500.388425][ T9148] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.815: couldn't read orphan inode 15 (err -117)
[  500.673036][ T9148] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  501.907627][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  501.934619][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  502.500198][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.770622][ T9183] loop5: detected capacity change from 0 to 256
[  503.820876][   T27] audit: type=1800 audit(2000000079.080:415): pid=9183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.823" name="file2" dev="loop5" ino=1048621 res=0 errno=0
[  511.672941][ T9223] loop5: detected capacity change from 0 to 256
[  511.748107][ T9223] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  511.796523][ T9223] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  511.827898][ T9223] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  513.908759][ T9239] loop2: detected capacity change from 0 to 256
[  513.953275][   T27] audit: type=1800 audit(2000000089.220:416): pid=9239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.835" name="file2" dev="loop2" ino=1048622 res=0 errno=0
[  514.061087][ T9243] netlink: 352 bytes leftover after parsing attributes in process `syz.5.837'.
[  514.678707][ T9246] loop5: detected capacity change from 0 to 512
[  515.020742][ T9246] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  515.095334][ T9246] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  515.139185][ T9252] netlink: 96 bytes leftover after parsing attributes in process `syz.1.839'.
[  517.094570][ T9256] netlink: 96 bytes leftover after parsing attributes in process `syz.1.840'.
[  519.254382][ T9271] loop1: detected capacity change from 0 to 512
[  519.270566][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  519.393215][ T9271] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6).
[  519.468313][ T9277] netlink: 352 bytes leftover after parsing attributes in process `syz.5.846'.
[  519.536549][ T9271] EXT4-fs warning (device loop1): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  519.611019][ T9271] EXT4-fs (loop1): mount failed
[  521.246887][ T9287] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  521.438856][ T9289] loop1: detected capacity change from 0 to 256
[  521.491290][   T27] audit: type=1800 audit(2000000096.760:417): pid=9289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.850" name="file2" dev="loop1" ino=1048623 res=0 errno=0
[  525.353209][ T9309] netlink: 352 bytes leftover after parsing attributes in process `syz.4.856'.
[  525.535183][ T9311] netlink: 12 bytes leftover after parsing attributes in process `syz.1.854'.
[  526.630933][ T6340] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  526.789349][ T9318] syz.1.857[9318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  526.790110][ T9318] syz.1.857[9318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  527.066307][ T6340] usb 6-1: Using ep0 maxpacket: 32
[  527.846478][ T6340] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  527.877636][ T6340] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.923241][ T6340] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  527.964833][ T6340] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.016056][ T6340] usb 6-1: config 0 descriptor??
[  528.392320][ T6340] usbhid 6-1:0.0: can't add hid device: -71
[  528.404325][ T6340] usbhid: probe of 6-1:0.0 failed with error -71
[  528.444940][ T6340] usb 6-1: USB disconnect, device number 2
[  529.186877][ T9327] loop5: detected capacity change from 0 to 256
[  529.222861][   T27] audit: type=1800 audit(2000000104.490:418): pid=9327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.861" name="file2" dev="loop5" ino=1048624 res=0 errno=0
[  533.621186][ T9348] netlink: 352 bytes leftover after parsing attributes in process `syz.5.866'.
[  534.949848][ T5798] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  534.970942][ T5798] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  534.979989][ T5798] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  534.990920][ T5798] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  534.999156][ T5798] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  535.006706][ T5798] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  536.242699][ T9353] chnl_net:caif_netlink_parms(): no params data found
[  536.572988][ T9353] bridge0: port 1(bridge_slave_0) entered blocking state
[  536.585151][ T9353] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.593464][ T9353] bridge_slave_0: entered allmulticast mode
[  536.948640][ T9353] bridge_slave_0: entered promiscuous mode
[  537.062781][ T9353] bridge0: port 2(bridge_slave_1) entered blocking state
[  537.071979][ T5801] Bluetooth: hci5: command tx timeout
[  537.083892][ T9353] bridge0: port 2(bridge_slave_1) entered disabled state
[  537.120422][ T9353] bridge_slave_1: entered allmulticast mode
[  537.139015][ T9353] bridge_slave_1: entered promiscuous mode
[  537.596764][ T9353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  537.610992][ T9353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  537.655177][ T9380] loop5: detected capacity change from 0 to 256
[  537.708417][   T27] audit: type=1800 audit(2000000112.970:419): pid=9380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.874" name="file2" dev="loop5" ino=1048625 res=0 errno=0
[  537.737475][ T9353] team0: Port device team_slave_0 added
[  537.764432][ T9353] team0: Port device team_slave_1 added
[  537.803688][ T9353] batman_adv: batadv0: Adding interface: batadv_slave_0
[  537.812785][ T9353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.852805][ T9353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  537.867072][ T9353] batman_adv: batadv0: Adding interface: batadv_slave_1
[  537.874075][ T9353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.931496][ T9353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  538.444397][ T9353] hsr_slave_0: entered promiscuous mode
[  539.079131][ T9353] hsr_slave_1: entered promiscuous mode
[  539.113515][ T9353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  539.127530][ T9353] Cannot create hsr debugfs directory
[  539.149652][ T5801] Bluetooth: hci5: command tx timeout
[  539.645940][ T9393] loop5: detected capacity change from 0 to 512
[  539.720414][ T9393] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  539.880254][ T9393] EXT4-fs (loop5): 1 truncate cleaned up
[  539.894290][ T9393] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  540.057509][ T9393] EXT4-fs error (device loop5): __ext4_iget:5053: inode #12: block 2: comm syz.5.876: invalid block
[  540.098532][ T9393] EXT4-fs (loop5): Remounting filesystem read-only
[  541.152860][ T9353] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  541.163972][ T9353] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  541.175462][ T9353] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  541.187135][ T9353] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  541.236932][ T5801] Bluetooth: hci5: command tx timeout
[  542.870598][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.096675][ T9353] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.201866][ T9353] 8021q: adding VLAN 0 to HW filter on device team0
[  543.253779][ T9353] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  543.264263][ T9353] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  543.297732][  T142] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.305009][  T142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  543.314195][ T5801] Bluetooth: hci5: command tx timeout
[  543.323902][  T142] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.331212][  T142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  543.833575][ T9353] 8021q: adding VLAN 0 to HW filter on device batadv0
[  544.311400][ T9423] loop1: detected capacity change from 0 to 256
[  544.387178][   T27] audit: type=1800 audit(2000000119.660:420): pid=9423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.883" name="file2" dev="loop1" ino=1048626 res=0 errno=0
[  544.419535][ T9426] loop5: detected capacity change from 0 to 128
[  544.565172][ T9426] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  544.656296][ T9426] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  544.863861][ T9353] veth0_vlan: entered promiscuous mode
[  544.895309][ T9353] veth1_vlan: entered promiscuous mode
[  544.959765][ T9353] veth0_macvtap: entered promiscuous mode
[  544.971422][ T9353] veth1_macvtap: entered promiscuous mode
[  545.018610][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.031359][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.041496][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.082113][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.082231][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.082273][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.082437][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.082599][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.082687][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  545.082725][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.092553][ T9353] batman_adv: batadv0: Interface activated: batadv_slave_0
[  545.609813][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.638988][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.650845][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.674378][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.695775][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.714149][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.724519][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.740749][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.761986][ T9353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  545.779947][ T9353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  545.795224][ T9353] batman_adv: batadv0: Interface activated: batadv_slave_1
[  545.797134][ T8593] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  545.808134][ T9353] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  545.820520][ T9353] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  545.829497][ T9353] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  545.838307][ T9353] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  546.037774][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.079713][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.139040][  T142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.149329][  T142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.376301][ T5838] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  546.587452][ T5838] usb 2-1: Using ep0 maxpacket: 16
[  546.594559][ T5838] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  546.607740][ T5838] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  546.617766][ T5838] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  546.630978][ T5838] usb 2-1: config 0 interface 0 has no altsetting 0
[  546.637870][ T5838] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  546.647201][ T5838] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.658746][ T5838] usb 2-1: config 0 descriptor??
[  546.688428][ T9396] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  546.878419][ T9396] usb 6-1: Using ep0 maxpacket: 8
[  546.885806][ T9396] usb 6-1: config index 0 descriptor too short (expected 5924, got 36)
[  546.894996][ T9396] usb 6-1: config 250 has an invalid interface number: 228 but max is -1
[  546.903663][ T9396] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0
[  546.912908][ T9396] usb 6-1: config 250 has no interface number 0
[  546.921760][ T9396] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  546.933502][ T9396] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  546.944291][ T9396] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 12336, setting to 1024
[  546.956293][ T9396] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024
[  546.968303][ T9396] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  546.982127][ T9396] usb 6-1: config 250 interface 228 has no altsetting 0
[  547.000913][ T9396] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  547.010090][ T9396] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  547.018589][ T9396] usb 6-1: Product: syz
[  547.022791][ T9396] usb 6-1: SerialNumber: syz
[  547.042919][ T9396] hub 6-1:250.228: bad descriptor, ignoring hub
[  547.049938][ T9396] hub: probe of 6-1:250.228 failed with error -5
[  547.081943][ T9435] loop1: detected capacity change from 0 to 512
[  547.118613][ T9435] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  547.130967][ T9435] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ce01c, mo2=0002]
[  547.140777][ T9435] System zones: 1-12
[  547.145298][ T9435] EXT4-fs (loop1): orphan cleanup on readonly fs
[  547.153152][ T9435] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.885: invalid indirect mapped block 12 (level 1)
[  547.167435][ T9435] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.885: invalid indirect mapped block 2 (level 2)
[  547.182802][ T9435] EXT4-fs (loop1): 1 truncate cleaned up
[  547.190651][ T9435] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  547.215461][ T5838] hid (null): unknown global tag 0xc
[  547.221221][ T5838] hid (null): invalid report_size 64812
[  547.227249][ T5838] hid (null): unknown global tag 0xe
[  547.232750][ T5838] hid (null): unknown global tag 0x5f
[  547.238539][ T5838] hid (null): report_id 45668 is invalid
[  547.244320][ T5838] hid (null): invalid report_size 16147
[  547.250285][ T5838] hid (null): unknown global tag 0xc
[  547.255737][ T5838] hid (null): report_id 2960 is invalid
[  547.261588][ T5838] hid (null): unknown global tag 0xc
[  547.267731][ T5838] hid (null): report_id 469595287 is invalid
[  547.274650][ T5838] hid (null): unknown global tag 0xc
[  547.295936][ T9396] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  547.424067][ T5838] usb 2-1: USB disconnect, device number 9
[  547.673222][    C0] usblp0: nonzero read bulk status received: -71
[  547.729946][   T23] usb 6-1: USB disconnect, device number 3
[  547.824097][ T9453] xt_TCPMSS: Only works on TCP SYN packets
[  547.835358][ T9453] netlink: 12 bytes leftover after parsing attributes in process `syz.6.889'.
[  548.376398][   T23] usblp0: removed
[  548.505573][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  548.760837][ T9457] loop6: detected capacity change from 0 to 256
[  548.814194][ T9460] loop1: detected capacity change from 0 to 256
[  549.311940][   T27] audit: type=1800 audit(2000000124.470:421): pid=9457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.892" name="file2" dev="loop6" ino=1048630 res=0 errno=0
[  549.332817][    C1] vkms_vblank_simulate: vblank timer overrun
[  549.514971][ T9460] netlink: 4 bytes leftover after parsing attributes in process `syz.1.891'.
[  550.107237][ T5798] Bluetooth: hci2: command 0x0406 tx timeout
[  550.392041][ T5801] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  550.402614][ T5801] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  550.414304][ T5801] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  550.424307][ T5801] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  550.435715][ T5801] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  550.444275][ T5801] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  550.814245][ T9475] chnl_net:caif_netlink_parms(): no params data found
[  550.947746][ T9475] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.955043][ T9475] bridge0: port 1(bridge_slave_0) entered disabled state
[  550.963621][ T9475] bridge_slave_0: entered allmulticast mode
[  550.971909][ T9475] bridge_slave_0: entered promiscuous mode
[  550.982264][ T9475] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.989908][ T9475] bridge0: port 2(bridge_slave_1) entered disabled state
[  550.997303][ T9475] bridge_slave_1: entered allmulticast mode
[  551.004671][ T9475] bridge_slave_1: entered promiscuous mode
[  551.048683][ T9475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  551.061908][ T9475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  551.121256][ T9475] team0: Port device team_slave_0 added
[  551.132218][ T9475] team0: Port device team_slave_1 added
[  551.201543][ T9475] batman_adv: batadv0: Adding interface: batadv_slave_0
[  551.216921][ T9475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.252662][ T9475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  551.273565][ T9475] batman_adv: batadv0: Adding interface: batadv_slave_1
[  551.290705][ T9475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.327482][ T9475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  551.421917][ T9475] hsr_slave_0: entered promiscuous mode
[  551.435766][ T9475] hsr_slave_1: entered promiscuous mode
[  551.452915][ T9475] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  551.464676][ T9475] Cannot create hsr debugfs directory
[  552.551641][ T5798] Bluetooth: hci6: command tx timeout
[  552.752012][ T9475] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  552.820853][ T9475] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  552.865687][ T9475] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  552.915231][ T9475] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  553.095224][ T9511] loop5: detected capacity change from 0 to 256
[  553.421806][   T27] audit: type=1800 audit(2000000128.450:422): pid=9511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.904" name="file2" dev="loop5" ino=1048631 res=0 errno=0
[  553.653382][ T9475] 8021q: adding VLAN 0 to HW filter on device bond0
[  553.732475][ T9475] 8021q: adding VLAN 0 to HW filter on device team0
[  553.765484][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  553.772760][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  553.822694][ T2967] bridge0: port 2(bridge_slave_1) entered blocking state
[  553.830140][ T2967] bridge0: port 2(bridge_slave_1) entered forwarding state
[  554.015978][ T9475] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  554.860646][ T5798] Bluetooth: hci6: command tx timeout
[  555.338534][ T9475] 8021q: adding VLAN 0 to HW filter on device batadv0
[  556.907442][ T5798] Bluetooth: hci6: command tx timeout
[  556.928680][ T9475] veth0_vlan: entered promiscuous mode
[  556.988527][ T9475] veth1_vlan: entered promiscuous mode
[  557.137299][ T9475] veth0_macvtap: entered promiscuous mode
[  557.184952][ T9475] veth1_macvtap: entered promiscuous mode
[  557.261929][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.303322][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.329681][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.382762][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.442136][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.473248][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.505514][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.551520][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.561715][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.581562][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.595038][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.605846][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.628258][ T9475] batman_adv: batadv0: Interface activated: batadv_slave_0
[  557.910121][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.944921][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  558.650713][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  558.696303][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  558.731003][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  558.762328][ T9553] loop5: detected capacity change from 0 to 256
[  558.769997][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  558.816841][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  559.036170][   T27] audit: type=1800 audit(2000000134.090:423): pid=9553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.913" name="file2" dev="loop5" ino=1048632 res=0 errno=0
[  559.059906][ T5798] Bluetooth: hci6: command tx timeout
[  559.071858][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.082133][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  559.133295][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.145742][ T9475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  559.169020][ T9475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  559.193918][ T9475] batman_adv: batadv0: Interface activated: batadv_slave_1
[  559.284219][ T9475] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  559.313343][ T9475] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  559.351130][ T9475] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  559.384799][ T9475] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  559.787077][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  559.845094][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  560.010274][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  560.021530][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  561.656893][ T9558] loop6: detected capacity change from 0 to 40427
[  561.675933][ T9558] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  561.696819][ T9558] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  561.723556][ T9558] F2FS-fs (loop6): invalid crc value
[  561.751350][ T9558] F2FS-fs (loop6): Found nat_bits in checkpoint
[  562.753478][ T9558] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  562.799503][ T9558] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  564.046710][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  564.053074][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  568.143372][ T9608] netlink: 'syz.5.930': attribute type 3 has an invalid length.
[  568.151678][ T9608] netlink: 'syz.5.930': attribute type 3 has an invalid length.
[  568.320960][ T5798] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  568.333147][ T5798] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  568.342898][ T5798] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  568.353434][ T5798] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  568.364629][ T5798] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  568.378464][ T5798] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  569.112072][ T9618] loop5: detected capacity change from 0 to 128
[  569.179784][ T9618] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  569.214362][ T9618] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  569.231447][ T9609] chnl_net:caif_netlink_parms(): no params data found
[  569.968515][ T9609] bridge0: port 1(bridge_slave_0) entered blocking state
[  569.988492][ T8593] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  569.998271][ T9609] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.005570][ T9609] bridge_slave_0: entered allmulticast mode
[  570.015425][ T9609] bridge_slave_0: entered promiscuous mode
[  570.024623][ T9609] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.032880][ T9609] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.064373][ T9609] bridge_slave_1: entered allmulticast mode
[  570.094663][ T9609] bridge_slave_1: entered promiscuous mode
[  570.282700][ T9609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  570.352816][ T9609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  570.426833][ T5801] Bluetooth: hci7: command tx timeout
[  570.546242][ T9609] team0: Port device team_slave_0 added
[  570.588379][ T9609] team0: Port device team_slave_1 added
[  570.779992][ T9609] batman_adv: batadv0: Adding interface: batadv_slave_0
[  570.787097][ T9609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  570.998434][ T9609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  571.051712][ T9609] batman_adv: batadv0: Adding interface: batadv_slave_1
[  571.092363][ T9609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  571.201081][ T9609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  571.312812][ T9609] hsr_slave_0: entered promiscuous mode
[  571.335059][ T9609] hsr_slave_1: entered promiscuous mode
[  571.345467][ T9609] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  571.358962][ T9609] Cannot create hsr debugfs directory
[  572.506913][ T5801] Bluetooth: hci7: command tx timeout
[  572.824910][ T9663] veth2: entered promiscuous mode
[  572.843183][ T9663] veth2: entered allmulticast mode
[  572.941865][ T9665] netlink: 352 bytes leftover after parsing attributes in process `syz.6.943'.
[  573.061876][ T9609] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  573.101780][ T9609] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  573.152008][ T9609] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  573.210240][ T9609] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  573.503070][   T27] audit: type=1326 audit(2000000148.770:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  573.630675][ T9609] 8021q: adding VLAN 0 to HW filter on device bond0
[  573.647374][   T27] audit: type=1326 audit(2000000148.770:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  573.669683][    C0] vkms_vblank_simulate: vblank timer overrun
[  573.768178][ T9609] 8021q: adding VLAN 0 to HW filter on device team0
[  573.787789][   T27] audit: type=1326 audit(2000000148.800:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd331d8d710 code=0x7ffc0000
[  573.812180][   T27] audit: type=1326 audit(2000000148.800:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd331d8d710 code=0x7ffc0000
[  573.850356][   T27] audit: type=1326 audit(2000000148.800:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  573.871733][ T3000] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.879872][ T3000] bridge0: port 1(bridge_slave_0) entered forwarding state
[  574.044618][   T27] audit: type=1326 audit(2000000148.800:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  574.100754][ T9609] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  574.169729][ T9609] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  574.185878][   T27] audit: type=1326 audit(2000000148.800:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  574.263786][   T27] audit: type=1326 audit(2000000148.800:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  574.282632][ T3000] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.286021][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.293280][ T3000] bridge0: port 2(bridge_slave_1) entered forwarding state
[  574.316309][   T27] audit: type=1326 audit(2000000148.800:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  574.338790][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.365309][   T27] audit: type=1326 audit(2000000148.810:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9676 comm="syz.7.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  574.387554][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.587613][ T5801] Bluetooth: hci7: command tx timeout
[  575.011187][ T9609] 8021q: adding VLAN 0 to HW filter on device batadv0
[  575.587290][ T9698] loop7: detected capacity change from 0 to 256
[  575.975763][ T9609] veth0_vlan: entered promiscuous mode
[  576.053905][ T9609] veth1_vlan: entered promiscuous mode
[  576.215720][ T9609] veth0_macvtap: entered promiscuous mode
[  576.268449][ T9609] veth1_macvtap: entered promiscuous mode
[  576.398240][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.481713][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.521773][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.552889][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.591357][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.629141][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.659883][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.673003][ T5801] Bluetooth: hci7: command tx timeout
[  576.706255][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.744554][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.791799][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.819305][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.852412][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.883076][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  576.920779][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  576.963679][ T9609] batman_adv: batadv0: Interface activated: batadv_slave_0
[  577.058328][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.126537][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.179495][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.228693][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.276592][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.325745][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.370676][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.401856][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.440531][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.471998][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.506744][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.550215][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.576845][ T9609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  577.604295][ T9609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  577.660580][ T9609] batman_adv: batadv0: Interface activated: batadv_slave_1
[  577.733088][ T9609] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  577.764478][ T9609] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  577.785976][ T9609] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  577.805493][ T9609] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  577.873735][ T9708] loop6: detected capacity change from 0 to 512
[  577.907001][ T9708] EXT4-fs: Ignoring removed mblk_io_submit option
[  578.016397][ T9708] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -13
[  578.093131][ T9708] EXT4-fs error (device loop6): ext4_clear_blocks:883: inode #13: comm syz.6.952: attempt to clear invalid blocks 2 len 1
[  578.141669][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  578.166153][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.206866][ T9708] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  578.257500][ T9708] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.952: invalid indirect mapped block 1819239214 (level 0)
[  578.300730][ T3000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  578.309988][ T9708] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.952: invalid indirect mapped block 1819239214 (level 1)
[  578.324777][ T3000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.364453][ T9708] EXT4-fs (loop6): 1 truncate cleaned up
[  578.382400][ T9708] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.616707][   T27] kauditd_printk_skb: 30 callbacks suppressed
[  578.616728][   T27] audit: type=1326 audit(2000000004.610:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  578.777243][   T27] audit: type=1326 audit(2000000004.610:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  578.800510][   T27] audit: type=1326 audit(2000000004.670:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  578.852889][ T9718] syzkaller0: entered promiscuous mode
[  578.858570][ T9718] syzkaller0: entered allmulticast mode
[  578.890332][   T27] audit: type=1326 audit(2000000004.670:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  579.011023][ T9723] EXT4-fs (loop6): Quota file not on filesystem root. Journaled quota will not work
[  579.768938][   T27] audit: type=1326 audit(2000000004.670:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  579.831903][   T27] audit: type=1326 audit(2000000004.670:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  579.855749][   T27] audit: type=1326 audit(2000000004.670:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  579.879659][ T9353] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.892948][   T27] audit: type=1326 audit(2000000004.670:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.7.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  581.256435][ T9728] netlink: 352 bytes leftover after parsing attributes in process `syz.6.956'.
[  582.767074][ T9739] loop6: detected capacity change from 0 to 8192
[  582.846576][ T9739]  loop6: p1 p2 p3 p4[EZD]
[  582.871219][ T9739] loop6: p1 start 134154240 is beyond EOD, truncated
[  582.916753][ T9739] loop6: p3 start 360447 is beyond EOD, truncated
[  582.923296][ T9739] loop6: p4 size 264072 extends beyond EOD, truncated
[  583.226146][   T27] audit: type=1326 audit(2000000004.380:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9751 comm="syz.5.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  583.296389][   T27] audit: type=1326 audit(2000000004.380:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9751 comm="syz.5.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  583.345473][ T5807] udevd[5807]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  583.370930][ T5796] udevd[5796]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  587.247319][ T9775] syz.6.973[9775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  587.247461][ T9775] syz.6.973[9775] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  589.624090][ T9746] tipc: Started in network mode
[  589.641768][ T9746] tipc: Node identity ac14140f, cluster identity 4711
[  589.649233][ T9746] tipc: New replicast peer: 255.255.255.255
[  589.657650][ T9746] tipc: Enabled bearer <udp:syz2>, priority 10
[  589.922393][   T27] kauditd_printk_skb: 69 callbacks suppressed
[  589.922410][   T27] audit: type=1326 audit(2000000006.490:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.076151][   T27] audit: type=1326 audit(2000000006.530:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.178192][   T27] audit: type=1326 audit(2000000006.530:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff1fbd8d710 code=0x7ffc0000
[  590.257367][   T27] audit: type=1326 audit(2000000006.540:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff1fbd8d710 code=0x7ffc0000
[  590.294877][   T27] audit: type=1326 audit(2000000006.540:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.340904][   T27] audit: type=1326 audit(2000000006.540:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.386821][   T27] audit: type=1326 audit(2000000006.550:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.421830][   T27] audit: type=1326 audit(2000000006.550:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.468057][   T27] audit: type=1326 audit(2000000006.550:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.534661][   T27] audit: type=1326 audit(2000000006.550:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9779 comm="syz.6.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1fbd8eec9 code=0x7ffc0000
[  590.647794][    T9] tipc: Node number set to 2886997007
[  593.052499][ T9816] syz.5.985[9816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  593.052724][ T9816] syz.5.985[9816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  593.066602][ T9816] netlink: 'syz.5.985': attribute type 12 has an invalid length.
[  593.777915][ T9818] loop7: detected capacity change from 0 to 8192
[  597.326365][   T27] kauditd_printk_skb: 52 callbacks suppressed
[  597.326383][   T27] audit: type=1326 audit(2000000006.800:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.464243][   T27] audit: type=1326 audit(2000000006.810:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.545522][   T27] audit: type=1326 audit(2000000006.810:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.630495][   T27] audit: type=1326 audit(2000000006.830:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.707087][   T27] audit: type=1326 audit(2000000006.830:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.795132][   T27] audit: type=1326 audit(2000000006.830:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.882125][   T27] audit: type=1326 audit(2000000006.840:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.949654][   T27] audit: type=1326 audit(2000000006.840:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  597.996726][   T27] audit: type=1326 audit(2000000006.840:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  598.084029][   T27] audit: type=1326 audit(2000000006.840:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9839 comm="syz.7.992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  598.114742][ T9845] loop7: detected capacity change from 0 to 128
[  598.195064][ T9845] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  598.282657][ T9845] ext4 filesystem being mounted at /28/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  599.514936][ T9475] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  600.479863][ T9872] loop7: detected capacity change from 0 to 512
[  600.774811][ T9874] loop7: detected capacity change from 0 to 512
[  600.868269][ T9874] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.977156][ T9874] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  601.041902][ T9874] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  601.187822][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.594750][ T9887] netlink: 'syz.7.1004': attribute type 3 has an invalid length.
[  601.604064][ T9887] netlink: 'syz.7.1004': attribute type 3 has an invalid length.
[  602.736674][ T9894] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1006'.
[  603.933621][ T9907] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1008'.
[  605.146841][ T9910] loop6: detected capacity change from 0 to 512
[  605.213209][ T9910] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  605.239541][ T9910] EXT4-fs (loop6): group descriptors corrupted!
[  605.337232][ T9914] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1014'.
[  605.819382][ T9919] netlink: 'syz.6.1015': attribute type 3 has an invalid length.
[  605.830220][ T9919] netlink: 'syz.6.1015': attribute type 3 has an invalid length.
[  608.285478][ T9933] loop8: detected capacity change from 0 to 512
[  608.421607][ T9933] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.493643][ T9933] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  608.577158][   T27] kauditd_printk_skb: 4 callbacks suppressed
[  608.577175][   T27] audit: type=1800 audit(2000000018.130:619): pid=9933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1019" name="file2" dev="loop8" ino=16 res=0 errno=0
[  609.440810][ T9933] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  609.471607][ T9945] loop5: detected capacity change from 0 to 128
[  609.493653][ T9945] FAT-fs (loop5): Unrecognized mount option "��C����9�:*��&���" or missing value
[  609.555741][ T9945] loop5: detected capacity change from 0 to 256
[  609.605785][ T9945] FAT-fs (loop5): Unrecognized mount option "codapage=949" or missing value
[  610.030953][ T9953] netlink: 'syz.5.1025': attribute type 3 has an invalid length.
[  610.043364][ T9953] netlink: 'syz.5.1025': attribute type 3 has an invalid length.
[  611.070597][ T9959] loop5: detected capacity change from 0 to 512
[  611.204033][ T9959] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  611.215143][ T9959] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  611.263691][ T9959] EXT4-fs (loop5): 1 truncate cleaned up
[  611.275033][ T9959] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  611.419828][ T9959] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.1027: Logical block already allocated
[  611.532937][ T9961] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.1027: Logical block already allocated
[  612.146923][ T9938] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  613.819445][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.339690][ T9975] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1031'.
[  615.348924][ T9975] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1031'.
[  616.334965][ T9992] netlink: 'syz.7.1036': attribute type 3 has an invalid length.
[  616.346291][ T9992] netlink: 'syz.7.1036': attribute type 3 has an invalid length.
[  618.504395][T10000] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1038'.
[  619.519301][   T27] audit: type=1326 audit(2000000029.070:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  619.666606][   T27] audit: type=1326 audit(2000000029.080:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  619.766400][   T27] audit: type=1326 audit(2000000029.080:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.477114][   T27] audit: type=1326 audit(2000000029.080:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.593878][   T27] audit: type=1326 audit(2000000029.090:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.654911][   T27] audit: type=1326 audit(2000000029.090:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.677815][   T27] audit: type=1326 audit(2000000029.090:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.702431][   T27] audit: type=1326 audit(2000000029.090:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.725789][   T27] audit: type=1326 audit(2000000029.090:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.771666][   T27] audit: type=1326 audit(2000000029.100:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10004 comm="syz.7.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  620.856858][T10012] loop7: detected capacity change from 0 to 512
[  620.877572][T10012] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  620.945616][T10012] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  620.990474][T10012] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  621.170242][T10015] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  622.052650][T10023] netlink: 352 bytes leftover after parsing attributes in process `syz.8.1043'.
[  622.106691][T10012] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28
[  622.141479][T10012] EXT4-fs (loop7): This should not happen!! Data will be lost
[  622.141479][T10012] 
[  622.166237][T10012] EXT4-fs (loop7): Total free blocks count 0
[  622.172393][T10012] EXT4-fs (loop7): Free/Dirty block details
[  622.188325][T10012] EXT4-fs (loop7): free_blocks=39626
[  622.193767][T10012] EXT4-fs (loop7): dirty_blocks=2698
[  622.209760][T10012] EXT4-fs (loop7): Block reservation details
[  622.215936][T10012] EXT4-fs (loop7): i_reserved_data_blocks=2698
[  622.498704][   T42] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 649 with error 28
[  623.275865][T10033] netlink: 'syz.7.1046': attribute type 3 has an invalid length.
[  623.284862][T10033] netlink: 'syz.7.1046': attribute type 3 has an invalid length.
[  624.072093][T10025] loop5: detected capacity change from 0 to 40427
[  624.114583][T10025] F2FS-fs (loop5): Wrong SSA boundary, start(3584) end(4096) blocks(3072)
[  624.123695][T10025] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  624.158392][T10025] F2FS-fs (loop5): invalid crc value
[  624.399785][T10025] F2FS-fs (loop5): Try to recover 1th superblock, ret: -30
[  624.416336][T10025] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  624.713616][T10045] syz.7.1050[10045] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  624.714348][T10045] syz.7.1050[10045] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  624.892926][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  624.977281][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  625.806462][ T9396] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  626.028522][ T9396] usb 9-1: Using ep0 maxpacket: 32
[  626.037129][ T9396] usb 9-1: unable to get BOS descriptor or descriptor too short
[  626.056354][ T9396] usb 9-1: config 2 has an invalid interface number: 221 but max is 0
[  626.085140][ T9396] usb 9-1: config 2 has no interface number 0
[  626.113617][ T9396] usb 9-1: config 2 interface 221 has no altsetting 0
[  626.149497][ T9396] usb 9-1: string descriptor 0 read error: -22
[  626.186375][ T9396] usb 9-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=85.42
[  626.205595][ T9396] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  626.273884][ T9396] uvcvideo 9-1:2.221: Found multiple Units with ID 1
[  626.322498][ T9396] usb 9-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  626.376267][ T9396] usb 9-1: No valid video chain found.
[  626.510110][ T9396] usb 9-1: USB disconnect, device number 2
[  627.667810][T10057] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  627.678536][T10057] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  627.687778][T10057] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  627.700847][T10057] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  627.716897][T10057] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  627.724372][T10057] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  627.874149][T10062] netlink: 'syz.8.1056': attribute type 3 has an invalid length.
[  627.884993][T10062] netlink: 'syz.8.1056': attribute type 3 has an invalid length.
[  629.116528][T10075] netlink: 352 bytes leftover after parsing attributes in process `syz.7.1055'.
[  629.256597][T10055] chnl_net:caif_netlink_parms(): no params data found
[  629.891196][T10057] Bluetooth: hci8: command tx timeout
[  630.592330][T10055] bridge0: port 1(bridge_slave_0) entered blocking state
[  630.635333][T10055] bridge0: port 1(bridge_slave_0) entered disabled state
[  630.643416][T10055] bridge_slave_0: entered allmulticast mode
[  630.655428][T10055] bridge_slave_0: entered promiscuous mode
[  630.665534][T10055] bridge0: port 2(bridge_slave_1) entered blocking state
[  630.673244][T10055] bridge0: port 2(bridge_slave_1) entered disabled state
[  630.686333][T10055] bridge_slave_1: entered allmulticast mode
[  630.695438][T10055] bridge_slave_1: entered promiscuous mode
[  630.911164][T10055] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  630.921484][T10095] loop8: detected capacity change from 0 to 256
[  630.941743][T10055] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  631.102974][T10055] team0: Port device team_slave_0 added
[  631.122463][T10055] team0: Port device team_slave_1 added
[  631.232492][ T9609] FAT-fs (loop8): error, corrupted directory (invalid entries)
[  631.249769][ T9609] FAT-fs (loop8): Filesystem has been set read-only
[  631.261907][ T9609] FAT-fs (loop8): error, corrupted directory (invalid entries)
[  631.275664][T10055] batman_adv: batadv0: Adding interface: batadv_slave_0
[  631.316128][T10055] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  631.362282][T10055] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  631.392643][T10055] batman_adv: batadv0: Adding interface: batadv_slave_1
[  631.408937][T10055] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  631.445478][T10055] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  631.608187][T10055] hsr_slave_0: entered promiscuous mode
[  631.615859][T10055] hsr_slave_1: entered promiscuous mode
[  631.624545][T10055] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  631.643504][T10055] Cannot create hsr debugfs directory
[  631.996329][T10057] Bluetooth: hci8: command tx timeout
[  632.195332][T10109] netlink: 352 bytes leftover after parsing attributes in process `syz.7.1071'.
[  632.614153][ T3000] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.190470][ T3000] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.378915][ T3000] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.550179][ T3000] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  633.738434][T10055] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  633.787405][T10055] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  633.820873][T10055] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  633.890012][T10055] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  633.929437][ T5801] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  633.953239][ T5801] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  633.967077][ T5801] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  633.981806][ T5801] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  633.997087][ T5801] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  634.006412][ T5801] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  634.026737][ T5801] Bluetooth: hci8: command tx timeout
[  634.133962][T10121] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  634.863091][T10118] chnl_net:caif_netlink_parms(): no params data found
[  635.690969][T10055] 8021q: adding VLAN 0 to HW filter on device bond0
[  635.757264][T10118] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.768772][T10118] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.793535][T10118] bridge_slave_0: entered allmulticast mode
[  635.810106][T10118] bridge_slave_0: entered promiscuous mode
[  635.985623][T10118] bridge0: port 2(bridge_slave_1) entered blocking state
[  636.016306][T10118] bridge0: port 2(bridge_slave_1) entered disabled state
[  636.028576][T10118] bridge_slave_1: entered allmulticast mode
[  636.039426][T10118] bridge_slave_1: entered promiscuous mode
[  636.122421][T10125] Bluetooth: hci7: command tx timeout
[  636.129848][T10125] Bluetooth: hci8: command tx timeout
[  636.150009][T10118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  636.187450][T10055] 8021q: adding VLAN 0 to HW filter on device team0
[  636.335895][T10118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  636.429474][ T3510] bridge0: port 1(bridge_slave_0) entered blocking state
[  636.436810][ T3510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  637.435697][T10118] team0: Port device team_slave_0 added
[  637.508434][T10118] team0: Port device team_slave_1 added
[  637.620625][T10187] loop5: detected capacity change from 0 to 1024
[  637.632526][ T3000] hsr_slave_0: left promiscuous mode
[  637.652544][ T3000] hsr_slave_1: left promiscuous mode
[  637.673015][ T5807] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  637.694554][ T3000] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  637.713255][ T3000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  637.785669][ T3000] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  637.815494][ T3000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  637.853399][ T3000] bridge_slave_1: left allmulticast mode
[  637.891066][ T3000] bridge_slave_1: left promiscuous mode
[  637.922107][ T3000] bridge0: port 2(bridge_slave_1) entered disabled state
[  637.968572][ T3000] bridge_slave_0: left allmulticast mode
[  637.974396][ T3000] bridge_slave_0: left promiscuous mode
[  637.986537][ T3000] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.186619][ T5798] Bluetooth: hci7: command tx timeout
[  638.394191][ T3000] veth1_macvtap: left promiscuous mode
[  638.891849][ T3000] veth0_macvtap: left promiscuous mode
[  639.025335][ T3000] veth1_vlan: left promiscuous mode
[  639.031181][ T3000] veth0_vlan: left promiscuous mode
[  639.471688][T10203] binder: 10199:10203 ioctl 4018620d 0 returned -22
[  639.928066][T10202] loop7: detected capacity change from 0 to 128
[  639.943166][T10202] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  639.989248][T10202] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  640.248363][ T3510] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  640.266691][ T5798] Bluetooth: hci7: command tx timeout
[  640.754537][ T3000] team0 (unregistering): Port device team_slave_1 removed
[  640.931525][ T3000] team0 (unregistering): Port device team_slave_0 removed
[  641.204063][ T3000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  641.735283][ T3000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  642.347446][ T5798] Bluetooth: hci7: command tx timeout
[  643.173985][ T3000] bond0 (unregistering): Released all slaves
[  643.630494][T10118] batman_adv: batadv0: Adding interface: batadv_slave_0
[  643.659762][T10118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  643.687674][T10118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  643.721074][T10241] loop7: detected capacity change from 0 to 512
[  643.784711][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  643.792023][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  643.866667][T10241] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  643.896474][T10241] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  643.955548][T10118] batman_adv: batadv0: Adding interface: batadv_slave_1
[  643.973887][T10118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  644.078809][T10245] netlink: 148 bytes leftover after parsing attributes in process `syz.5.1093'.
[  644.090425][T10245] netlink: 116 bytes leftover after parsing attributes in process `syz.5.1093'.
[  644.100221][T10245] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1093'.
[  644.331160][T10118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  644.449726][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  645.042703][T10118] hsr_slave_0: entered promiscuous mode
[  645.057734][T10118] hsr_slave_1: entered promiscuous mode
[  645.064597][T10118] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  645.078572][T10118] Cannot create hsr debugfs directory
[  645.306994][T10252] loop7: detected capacity change from 0 to 1024
[  645.629406][T10252] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[  645.641058][T10252] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  645.673385][T10252] EXT4-fs (loop7): invalid journal inode
[  652.453431][T10055] 8021q: adding VLAN 0 to HW filter on device batadv0
[  653.772528][T10118] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  653.801121][T10118] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  653.884383][T10118] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  653.930016][T10118] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  654.135990][T10055] veth0_vlan: entered promiscuous mode
[  654.260606][T10055] veth1_vlan: entered promiscuous mode
[  655.528457][T10339] bridge0: entered promiscuous mode
[  655.542002][T10339] bridge0: port 3(macsec1) entered blocking state
[  655.549191][T10339] bridge0: port 3(macsec1) entered disabled state
[  655.557816][T10339] macsec1: entered allmulticast mode
[  655.563216][T10339] bridge0: entered allmulticast mode
[  655.997194][T10339] macsec1: left allmulticast mode
[  656.002866][T10339] bridge0: left allmulticast mode
[  656.016644][T10339] bridge0: left promiscuous mode
[  657.318493][T10055] veth0_macvtap: entered promiscuous mode
[  657.393391][T10055] veth1_macvtap: entered promiscuous mode
[  657.874664][T10125] Bluetooth: hci5: command 0x0406 tx timeout
[  658.387824][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  658.445117][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  658.477145][T10365] capability: warning: `syz.7.1110' uses 32-bit capabilities (legacy support in use)
[  658.557662][T10365] loop7: detected capacity change from 0 to 512
[  658.639736][T10365] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  658.649774][T10365] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  658.659669][T10365] EXT4-fs (loop7): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  658.727181][T10365] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  658.735244][T10365] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  658.744787][T10365] EXT4-fs (loop7): orphan cleanup on readonly fs
[  658.804857][T10365] EXT4-fs error (device loop7): ext4_validate_block_bitmap:439: comm syz.7.1110: bg 0: block 34: padding at end of block bitmap is not set
[  658.848567][T10365] __quota_error: 25 callbacks suppressed
[  658.848586][T10365] Quota error (device loop7): write_blk: dquota write failed
[  658.862666][T10365] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  658.873029][T10365] EXT4-fs error (device loop7): ext4_acquire_dquot:6940: comm syz.7.1110: Failed to acquire dquot type 1
[  658.948013][T10365] EXT4-fs (loop7): 1 truncate cleaned up
[  658.976687][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.173003][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.335272][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.336067][T10365] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  659.358433][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.358466][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.358483][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.358500][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.358514][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.358531][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.358545][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.358562][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  659.358576][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.360889][T10055] batman_adv: batadv0: Interface activated: batadv_slave_0
[  659.511370][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.535186][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.548548][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.568882][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.621658][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.653025][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.700692][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.748458][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.782046][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.816200][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.836662][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.855786][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.890634][T10055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  659.915770][T10055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  659.949572][T10055] batman_adv: batadv0: Interface activated: batadv_slave_1
[  659.972257][T10118] 8021q: adding VLAN 0 to HW filter on device bond0
[  660.017651][T10055] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  660.043604][T10055] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  660.062787][T10055] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  660.082473][T10055] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  660.094430][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  660.160964][T10118] 8021q: adding VLAN 0 to HW filter on device team0
[  660.237621][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  660.244881][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  660.314295][ T6463] bridge0: port 2(bridge_slave_1) entered blocking state
[  660.321558][ T6463] bridge0: port 2(bridge_slave_1) entered forwarding state
[  660.678872][  T142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  660.711918][  T142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  660.907989][  T142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  660.977502][  T142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  661.062944][T10388] xt_TCPMSS: Only works on TCP SYN packets
[  662.854249][T10118] 8021q: adding VLAN 0 to HW filter on device batadv0
[  663.199206][T10118] veth0_vlan: entered promiscuous mode
[  663.237667][T10118] veth1_vlan: entered promiscuous mode
[  663.403508][T10118] veth0_macvtap: entered promiscuous mode
[  663.471935][T10118] veth1_macvtap: entered promiscuous mode
[  663.574427][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  663.606430][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  663.771867][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.049258][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.068931][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.095490][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.164911][T10429] xt_TCPMSS: Only works on TCP SYN packets
[  664.378086][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.696725][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.737818][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.780929][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.821899][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.879015][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.889094][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.900305][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.910953][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  664.929704][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.942662][T10118] batman_adv: batadv0: Interface activated: batadv_slave_0
[  664.959357][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  664.970279][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  664.980266][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.001651][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.017871][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.029554][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.041078][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.052260][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.083678][T10431] tipc: Failed to remove unknown binding: 66,1,1/0:1255651378/1255651380
[  665.102459][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.113300][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.123623][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.134329][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.145868][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.157239][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.167909][T10118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  665.178499][T10118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  665.190506][T10118] batman_adv: batadv0: Interface activated: batadv_slave_1
[  665.244464][T10118] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  665.279765][T10118] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  665.298662][T10118] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  665.338481][T10118] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  665.552575][T10419] loop9: detected capacity change from 0 to 40427
[  665.606384][T10419] F2FS-fs (loop9): build fault injection attr: rate: 25, type: 0x7ffff
[  665.650443][T10419] F2FS-fs (loop9): invalid crc value
[  665.661441][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  665.700863][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  665.713429][T10419] F2FS-fs (loop9): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x4552/0x6c20
[  665.748311][T10419] F2FS-fs (loop9): Failed to initialize F2FS segment manager (-12)
[  665.852350][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  665.890184][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  666.517747][T10458] loop3: detected capacity change from 0 to 128
[  666.640654][T10458] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  666.732045][T10458] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  666.811141][T10470] loop7: detected capacity change from 0 to 128
[  666.864199][T10470] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  666.916593][T10470] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  666.992949][T10118] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  667.059378][ T9475] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  667.551085][T10460] tipc: Failed to remove unknown binding: 66,1,1/0:3688212538/3688212540
[  667.569565][T10485] loop3: detected capacity change from 0 to 128
[  667.576488][T10460] tipc: Failed to remove unknown binding: 66,1,1/0:3688212538/3688212540
[  667.586477][T10485] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffff�01777777777777777777777���=��d̞��Y��S�38`������" or missing value
[  667.664283][T10488] loop7: detected capacity change from 0 to 512
[  667.701412][T10488] EXT4-fs (loop7): external journal device major/minor numbers have changed
[  667.867943][T10488] block device autoloading is deprecated and will be removed.
[  667.897479][T10488] EXT4-fs (loop7): external journal has bad superblock
[  668.215916][   T27] audit: type=1326 audit(2000000077.760:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10494 comm="syz.9.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b4c78eec9 code=0x7ffc0000
[  668.280698][   T27] audit: type=1326 audit(2000000077.790:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10494 comm="syz.9.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f8b4c78eec9 code=0x7ffc0000
[  668.396111][   T27] audit: type=1326 audit(2000000077.790:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10494 comm="syz.9.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b4c78eec9 code=0x7ffc0000
[  668.645254][T10503] loop7: detected capacity change from 0 to 512
[  668.886223][T10503] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  668.899627][T10503] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  670.385193][T10512] syzkaller0: entered promiscuous mode
[  670.529705][T10512] syzkaller0: entered allmulticast mode
[  670.637015][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  671.534462][T10553] loop3: detected capacity change from 0 to 512
[  671.543063][T10553] EXT4-fs: Ignoring removed i_version option
[  671.551496][T10553] ext2: Unknown parameter 'dont_appraise'
[  671.585439][T10551] loop9: detected capacity change from 0 to 512
[  671.618455][ T5796] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  671.891945][T10551] EXT4-fs error (device loop9): ext4_validate_block_bitmap:439: comm syz.9.1154: bg 0: block 248: padding at end of block bitmap is not set
[  672.006874][T10561] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  672.687532][T10551] Quota error (device loop9): write_blk: dquota write failed
[  672.906498][T10560] loop7: detected capacity change from 0 to 1024
[  672.934326][ T5798] Bluetooth: hci6: command 0x0406 tx timeout
[  673.029924][T10551] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[  673.198319][T10551] EXT4-fs error (device loop9): ext4_acquire_dquot:6940: comm syz.9.1154: Failed to acquire dquot type 1
[  673.575220][T10551] EXT4-fs (loop9): 1 truncate cleaned up
[  673.791512][T10560] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  674.198777][T10551] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.208233][T10560] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  674.533471][T10551] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  674.588462][T10560] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  674.696547][T10560] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  674.770425][T10055] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.780727][T10560] EXT4-fs (loop7): This should not happen!! Data will be lost
[  674.780727][T10560] 
[  674.833565][T10560] EXT4-fs (loop7): Total free blocks count 0
[  674.869811][T10560] EXT4-fs (loop7): Free/Dirty block details
[  674.875831][T10560] EXT4-fs (loop7): free_blocks=4293918720
[  674.882000][T10560] EXT4-fs (loop7): dirty_blocks=16
[  674.900101][T10560] EXT4-fs (loop7): Block reservation details
[  674.909328][T10560] EXT4-fs (loop7): i_reserved_data_blocks=1
[  674.993885][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  675.376387][  T786] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  675.577400][  T786] usb 10-1: Using ep0 maxpacket: 32
[  675.590492][  T786] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  675.622392][  T786] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  675.646122][  T786] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  675.670677][  T786] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  675.702824][  T786] usb 10-1: config 0 descriptor??
[  675.741866][  T786] hub 10-1:0.0: USB hub found
[  675.940603][  T786] hub 10-1:0.0: 1 port detected
[  676.155885][  T786] hub 10-1:0.0: hub_hub_status failed (err = -71)
[  676.165504][  T786] hub 10-1:0.0: config failed, can't get hub status (err -71)
[  676.187701][  T786] usbhid 10-1:0.0: can't add hid device: -71
[  676.196692][  T786] usbhid: probe of 10-1:0.0 failed with error -71
[  676.247703][  T786] usb 10-1: USB disconnect, device number 2
[  676.311241][T10573] loop3: detected capacity change from 0 to 40427
[  676.344472][T10573] F2FS-fs (loop3): build fault injection attr: rate: 25, type: 0x7ffff
[  676.416659][T10573] F2FS-fs (loop3): invalid crc value
[  676.435826][T10573] F2FS-fs (loop3): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x4552/0x6c20
[  676.459117][T10573] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12)
[  676.982894][T10591] loop3: detected capacity change from 0 to 128
[  677.020690][T10591] EXT4-fs: Ignoring removed nobh option
[  677.131621][T10591] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  677.208642][T10595] xt_TCPMSS: Only works on TCP SYN packets
[  677.605523][T10591] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  678.243526][T10118] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  680.995492][T10611] fuse: Bad value for 'fd'
[  681.986453][T10616] loop9: detected capacity change from 0 to 1024
[  684.639185][T10628] xt_TCPMSS: Only works on TCP SYN packets
[  684.782393][T10638] loop5: detected capacity change from 0 to 1024
[  684.825927][T10638] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  684.865572][T10638] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  684.922620][T10638] JBD2: no valid journal superblock found
[  684.952076][T10638] EXT4-fs (loop5): Could not load journal inode
[  685.472550][T10651] loop9: detected capacity change from 0 to 128
[  686.028757][T10652] xt_CT: No such helper "pptp"
[  686.222295][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  686.233466][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  686.384228][T10651] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  686.460703][T10665] loop7: detected capacity change from 0 to 1024
[  687.206817][T10651] ext4 filesystem being mounted at /20/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  688.162539][T10676] loop5: detected capacity change from 0 to 1024
[  688.178332][T10676] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  688.238121][T10676] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.1182: Invalid block bitmap block 0 in block_group 0
[  688.663850][T10676] Quota error (device loop5): write_blk: dquota write failed
[  688.672410][T10676] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  688.683076][T10676] EXT4-fs error (device loop5): ext4_acquire_dquot:6940: comm syz.5.1182: Failed to acquire dquot type 0
[  688.710380][T10676] EXT4-fs error (device loop5): ext4_free_blocks:6676: comm syz.5.1182: Freeing blocks not in datazone - block = 0, count = 4096
[  688.740395][T10676] EXT4-fs error (device loop5): ext4_read_inode_bitmap:140: comm syz.5.1182: Invalid inode bitmap blk 0 in block_group 0
[  688.759378][T10676] EXT4-fs error (device loop5) in ext4_free_inode:363: Corrupt filesystem
[  688.778405][T10676] EXT4-fs (loop5): 1 orphan inode deleted
[  688.795648][T10676] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.107971][ T3000] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-8
[  689.157268][ T3000] EXT4-fs error (device loop5): ext4_release_dquot:6976: comm kworker/u4:8: Failed to release dquot type 0
[  689.237752][ T8593] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.984205][T10697] loop3: detected capacity change from 0 to 512
[  689.992333][T10055] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  690.043194][T10697] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  690.096537][T10697] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  690.126643][T10697] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  690.198045][T10697] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  690.245321][T10697] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  690.254006][T10697] EXT4-fs (loop3): orphan cleanup on readonly fs
[  690.268857][T10697] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1185: bg 0: block 34: padding at end of block bitmap is not set
[  690.339287][T10697] Quota error (device loop3): write_blk: dquota write failed
[  690.385800][T10697] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  690.449722][T10697] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1185: Failed to acquire dquot type 1
[  690.528820][T10697] EXT4-fs (loop3): 1 truncate cleaned up
[  690.550379][T10697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  690.566462][T10697] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  690.755160][   T27] audit: type=1326 audit(2000000100.300:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.5.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  690.815420][   T27] audit: type=1326 audit(2000000100.330:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.5.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  690.842926][   T27] audit: type=1326 audit(2000000100.330:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.5.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  690.923972][   T27] audit: type=1326 audit(2000000100.340:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.5.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  691.035357][   T27] audit: type=1326 audit(2000000100.340:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.5.1191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  691.134746][T10720] loop5: detected capacity change from 0 to 1024
[  693.756082][T10758] netlink: 'syz.7.1202': attribute type 3 has an invalid length.
[  693.767600][T10758] netlink: 'syz.7.1202': attribute type 3 has an invalid length.
[  694.694822][T10762] syz.9.1204[10762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  694.694983][T10762] syz.9.1204[10762] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  697.155325][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  697.155340][   T27] audit: type=1326 audit(2000000106.700:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  697.282571][   T27] audit: type=1326 audit(2000000106.700:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  697.358475][T10810] loop7: detected capacity change from 0 to 1024
[  697.387635][   T27] audit: type=1326 audit(2000000106.700:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5c4078d710 code=0x7ffc0000
[  697.420429][   T27] audit: type=1326 audit(2000000106.700:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5c4078d710 code=0x7ffc0000
[  697.443045][   T27] audit: type=1326 audit(2000000106.700:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  697.639766][   T27] audit: type=1326 audit(2000000106.700:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  697.717350][   T27] audit: type=1326 audit(2000000106.700:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  698.222377][   T27] audit: type=1326 audit(2000000106.700:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  698.394793][   T27] audit: type=1326 audit(2000000106.700:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  698.460896][   T27] audit: type=1326 audit(2000000106.700:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.5.1218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f5c4078eec9 code=0x7ffc0000
[  699.055049][T10833] netlink: 48 bytes leftover after parsing attributes in process `syz.7.1223'.
[  699.304507][T10840] loop7: detected capacity change from 0 to 1024
[  699.374120][T10840] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  699.416302][T10840] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  700.685528][   T12] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  700.754062][   T12] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  700.816232][   T12] EXT4-fs (loop7): This should not happen!! Data will be lost
[  700.816232][   T12] 
[  700.846069][   T12] EXT4-fs (loop7): Total free blocks count 0
[  700.852400][   T12] EXT4-fs (loop7): Free/Dirty block details
[  700.866472][   T12] EXT4-fs (loop7): free_blocks=4293918720
[  700.872284][   T12] EXT4-fs (loop7): dirty_blocks=16
[  700.896135][   T12] EXT4-fs (loop7): Block reservation details
[  700.902203][   T12] EXT4-fs (loop7): i_reserved_data_blocks=1
[  700.938616][ T9475] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.260285][T10866] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1227'.
[  702.322047][T10875] loop9: detected capacity change from 0 to 1024
[  702.448418][ T5796] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  702.513576][T10883] veth0: entered promiscuous mode
[  703.698033][   T27] kauditd_printk_skb: 37 callbacks suppressed
[  703.698083][   T27] audit: type=1326 audit(2000000005.420:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.402439][   T27] audit: type=1326 audit(2000000005.450:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.425101][   T27] audit: type=1326 audit(2000000005.470:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd331d8d710 code=0x7ffc0000
[  705.527960][   T27] audit: type=1326 audit(2000000005.470:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd331d8d710 code=0x7ffc0000
[  705.683851][   T27] audit: type=1326 audit(2000000005.470:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.769639][   T27] audit: type=1326 audit(2000000005.480:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.793342][   T27] audit: type=1326 audit(2000000005.490:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.822678][   T27] audit: type=1326 audit(2000000005.490:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  705.912257][   T27] audit: type=1326 audit(2000000005.490:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  706.020061][   T27] audit: type=1326 audit(2000000005.490:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.7.1235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fd331d8eec9 code=0x7ffc0000
[  706.453863][T10914] loop9: detected capacity change from 0 to 512
[  706.542531][T10914] EXT4-fs: Ignoring removed mblk_io_submit option
[  706.566139][T10914] EXT4-fs: inline encryption not supported
[  706.572861][T10914] EXT4-fs: Ignoring removed mblk_io_submit option
[  706.591522][T10914] EXT4-fs (loop9): Test dummy encryption mode enabled
[  706.598723][T10914] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  706.746769][T10914] EXT4-fs (loop9): 1 truncate cleaned up
[  706.753896][T10914] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  707.491925][T10883] veth0: left promiscuous mode
[  707.586220][ T9396] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  707.776290][ T9396] usb 4-1: device descriptor read/64, error -71
[  708.066244][ T9396] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  708.236476][ T9396] usb 4-1: device descriptor read/64, error -71
[  708.372380][ T9396] usb usb4-port1: attempt power cycle
[  708.590159][   T29] INFO: task syz.1.896:9470 blocked for more than 142 seconds.
[  708.610279][   T29]       Not tainted syzkaller #0
[  708.636075][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  708.694135][   T29] task:syz.1.896       state:D stack:25832 pid:9470  ppid:5791   flags:0x00004004
[  708.740964][   T29] Call Trace:
[  708.754555][   T29]  <TASK>
[  708.775230][   T29]  __schedule+0x14d2/0x44d0
[  708.784968][   T29]  ? asan.module_dtor+0x20/0x20
[  708.805199][   T29]  ? mark_lock+0x94/0x320
[  708.816128][ T9396] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  708.821456][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  708.832291][T10930] loop7: detected capacity change from 0 to 40427
[  708.849159][   T29]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  708.854715][   T29]  ? rwsem_down_read_slowpath+0x50e/0x840
[  708.867769][ T9396] usb 4-1: device descriptor read/8, error -71
[  708.884367][T10930] F2FS-fs (loop7): Invalid log_blocksize (64), supports only 12
[  708.906961][   T29]  schedule+0xbd/0x170
[  708.911245][   T29]  schedule_preempt_disabled+0x13/0x20
[  708.917320][   T29]  rwsem_down_read_slowpath+0x4f8/0x840
[  708.923235][   T29]  ? down_write_killable_nested+0x220/0x220
[  708.929847][   T29]  ? read_lock_is_recursive+0x20/0x20
[  708.934059][T10930] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  708.935492][   T29]  ? filemap_check_errors+0xd2/0x120
[  708.950353][   T29]  down_read+0x98/0x2e0
[  708.954672][   T29]  super_lock+0x167/0x360
[  708.957473][T10930] F2FS-fs (loop7): group quota file already specified
[  708.963381][   T29]  ? user_get_super+0x180/0x180
[  708.973674][   T29]  ? __lock_acquire+0x7c80/0x7c80
[  708.981334][   T29]  ? __rwlock_init+0x150/0x150
[  708.987597][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  708.992987][   T29]  ? do_quotactl+0x860/0x860
[  708.998875][   T29]  iterate_supers+0x80/0x170
[  709.003664][   T29]  __se_sys_quotactl+0x355/0x950
[  709.009333][   T29]  ? bpf_trace_run2+0xde/0x3c0
[  709.014281][   T29]  ? bpf_trace_run1+0x3b0/0x3b0
[  709.024727][   T29]  ? __x64_sys_quotactl+0xb0/0xb0
[  709.031132][   T29]  ? trace_sys_enter+0x1f/0x80
[  709.036431][   T29]  do_syscall_64+0x55/0xb0
[  709.041077][   T29]  ? clear_bhb_loop+0x40/0x90
[  709.046685][   T29]  ? clear_bhb_loop+0x40/0x90
[  709.051602][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  709.060433][   T29] RIP: 0033:0x7f52b958eec9
[  709.072620][   T29] RSP: 002b:00007f52ba498038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  709.092245][   T29] RAX: ffffffffffffffda RBX: 00007f52b97e5fa0 RCX: 00007f52b958eec9
[  709.110593][   T29] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff80000102
[  709.138695][   T29] RBP: 00007f52b9611f91 R08: 0000000000000000 R09: 0000000000000000
[  709.147053][ T9396] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  709.155652][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  709.164431][   T29] R13: 00007f52b97e6038 R14: 00007f52b97e5fa0 R15: 00007ffeb40943a8
[  709.175162][   T29]  </TASK>
[  709.179167][ T9396] usb 4-1: device descriptor read/8, error -71
[  709.212429][   T29] 
[  709.212429][   T29] Showing all locks held in the system:
[  709.221707][   T29] 4 locks held by kworker/u4:1/12:
[  709.233415][   T29] 1 lock held by khungtaskd/29:
[  709.254645][T10055] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.265491][   T29]  #0: ffffffff8cd2ff20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  709.288734][   T29] 2 locks held by kworker/u4:11/3482:
[  709.298941][   T29]  #0: ffff8880b8f3c218 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  709.309859][ T9396] usb usb4-port1: unable to enumerate USB device
[  709.339590][   T29]  #1: ffffc9000cb47d00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  709.388950][   T29] 2 locks held by getty/5551:
[  709.411632][   T29]  #0: ffff88814c7770a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  709.435374][   T29]  #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  709.456347][   T29] 1 lock held by syz-executor/5788:
[  709.461634][   T29]  #0: ffff888078d1c0e0 (&type->s_umount_key#62){++++}-{3:3}, at: deactivate_super+0xa4/0xe0
[  709.494853][   T29] 1 lock held by syz-executor/5790:
[  709.501864][   T29]  #0: ffff888023d9e0e0 (&type->s_umount_key#62){++++}-{3:3}, at: deactivate_super+0xa4/0xe0
[  709.532060][   T29] 4 locks held by kworker/0:6/5858:
[  709.538010][   T29]  #0: ffff8880b8e3c218 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  709.550436][   T29]  #1: ffff8880b8e289c0 (psi_seq){-.-.}-{0:0}, at: __schedule+0x20ee/0x44d0
[  709.559801][   T29]  #2: ffffffff8cd2ff80 (rcu_read_lock_bh){....}-{1:2}, at: wg_packet_tx_worker+0x24a/0x7c0
[  709.570189][   T29]  #3: ffffffff8cd2ff20 (rcu_read_lock){....}-{1:2}, at: ip6_input_finish+0xd9/0x2c0
[  709.591342][   T29] 1 lock held by syz-executor/6327:
[  709.603439][   T29]  #0: ffff88805258c0e0 (&type->s_umount_key#62){++++}-{3:3}, at: deactivate_super+0xa4/0xe0
[  709.624337][   T29] 2 locks held by dhcpcd/6928:
[  709.638953][   T29]  #0: ffff888076ec3220 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.652190][   T29]  #1: ffffffff8cd358f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x830
[  709.663530][   T29] 1 lock held by syz-executor/9353:
[  709.669276][   T29]  #0: ffff88807a34e0e0 (&type->s_umount_key#62){++++}-{3:3}, at: deactivate_super+0xa4/0xe0
[  709.680097][   T29] 1 lock held by syz.1.896/9470:
[  709.687491][   T29]  #0: ffff888078d1c0e0 (&type->s_umount_key#62){++++}-{3:3}, at: super_lock+0x167/0x360
[  709.698705][   T29] 2 locks held by kworker/0:0/10347:
[  709.704878][   T29]  #0: ffff888017872538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  709.716328][   T29]  #1: ffffc900039e7d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  709.728599][   T29] 1 lock held by dhcpcd/10953:
[  709.733515][   T29]  #0: ffff88805e0eb220 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.758231][   T29] 2 locks held by dhcpcd/10954:
[  709.763167][   T29]  #0: ffff88805e0e9420 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.778019][   T29]  #1: ffffffff8cd358f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x830
[  709.790255][   T29] 1 lock held by dhcpcd/10955:
[  709.795089][   T29]  #0: ffff88805e0e9a20 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.807845][   T29] 1 lock held by dhcpcd/10956:
[  709.812682][   T29]  #0: ffff88805e0eb820 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.823811][   T29] 1 lock held by dhcpcd/10957:
[  709.829004][   T29]  #0: ffff888076dbac20 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  709.839634][   T29] 3 locks held by dhcpcd-run-hook/10958:
[  709.852768][   T29] 
[  709.855167][   T29] =============================================
[  709.855167][   T29] 
[  709.879789][   T29] NMI backtrace for cpu 0
[  709.884218][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  709.891460][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  709.901558][   T29] Call Trace:
[  709.904876][   T29]  <TASK>
[  709.908017][   T29]  dump_stack_lvl+0x16c/0x230
[  709.912763][   T29]  ? show_regs_print_info+0x20/0x20
[  709.918013][   T29]  ? load_image+0x3b0/0x3b0
[  709.922576][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  709.927576][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  709.933783][   T29]  ? _printk+0xd0/0x110
[  709.937961][   T29]  ? load_image+0x3b0/0x3b0
[  709.942484][   T29]  ? load_image+0x3b0/0x3b0
[  709.947004][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  709.953186][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  709.959193][   T29]  watchdog+0xf41/0xf80
[  709.963377][   T29]  ? watchdog+0x1e1/0xf80
[  709.967732][   T29]  kthread+0x2fa/0x390
[  709.971814][   T29]  ? hungtask_pm_notify+0x90/0x90
[  709.976857][   T29]  ? kthread_blkcg+0xd0/0xd0
[  709.981461][   T29]  ret_from_fork+0x48/0x80
[  709.985897][   T29]  ? kthread_blkcg+0xd0/0xd0
[  709.990514][   T29]  ret_from_fork_asm+0x11/0x20
[  709.995314][   T29]  </TASK>
[  710.000306][   T29] Sending NMI from CPU 0 to CPUs 1:
[  710.005875][    C1] NMI backtrace for cpu 1
[  710.005887][    C1] CPU: 1 PID: 5149 Comm: klogd Not tainted syzkaller #0
[  710.005902][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  710.005912][    C1] RIP: 0010:unwind_next_frame+0x1606/0x2970
[  710.005946][    C1] Code: 0f 84 7f 08 00 00 e8 29 d2 4a 00 48 8b 6c 24 10 4c 8b 7c 24 38 4c 89 f7 e8 37 20 00 00 49 89 c6 48 8b 44 24 40 42 80 3c 28 00 <48> 8b 5c 24 20 74 08 48 89 df e8 9b 2b a2 00 4c 89 33 48 8b 44 24
[  710.005960][    C1] RSP: 0018:ffffc90003267630 EFLAGS: 00000246
[  710.005975][    C1] RAX: 1ffff9200064cef6 RBX: ffffc90003260000 RCX: ffff88807e62da00
[  710.005992][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffc90003267760
[  710.006003][    C1] RBP: ffffc900032677b8 R08: ffff88807e62da00 R09: 0000000000000003
[  710.006015][    C1] R10: 0000000000000004 R11: 0000000000000000 R12: ffffc90003267768
[  710.006026][    C1] R13: dffffc0000000000 R14: ffffffff813218d8 R15: ffffffff8ecd1114
[  710.006040][    C1] FS:  00007fe61cd93c80(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  710.006056][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  710.006068][    C1] CR2: 000055ba965a6048 CR3: 0000000030766000 CR4: 00000000003506e0
[  710.006084][    C1] Call Trace:
[  710.006090][    C1]  <TASK>
[  710.006103][    C1]  ? __unwind_start+0x2d2/0x7e0
[  710.006136][    C1]  __unwind_start+0x66a/0x7e0
[  710.006169][    C1]  ? stack_trace_save+0xe0/0xe0
[  710.006192][    C1]  arch_stack_walk+0xf8/0x190
[  710.006214][    C1]  ? __unwind_start+0x2d2/0x7e0
[  710.006246][    C1]  stack_trace_save+0x9c/0xe0
[  710.006268][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  710.006300][    C1]  kasan_set_track+0x4e/0x70
[  710.006347][    C1]  ? __kmem_cache_free+0xba/0x1f0
[  710.006370][    C1]  kasan_save_free_info+0x2e/0x50
[  710.006391][    C1]  ____kasan_slab_free+0x126/0x1e0
[  710.006410][    C1]  slab_free_freelist_hook+0x130/0x1b0
[  710.006438][    C1]  ? syslog_print+0x51e/0x590
[  710.006456][    C1]  __kmem_cache_free+0xba/0x1f0
[  710.006482][    C1]  syslog_print+0x51e/0x590
[  710.006502][    C1]  ? do_syslog+0x7f0/0x7f0
[  710.006530][    C1]  ? wake_bit_function+0x200/0x200
[  710.006548][    C1]  ? bpf_lsm_capable+0x9/0x10
[  710.006572][    C1]  ? security_capable+0x89/0xb0
[  710.006596][    C1]  do_syslog+0x576/0x7f0
[  710.006615][    C1]  ? log_buf_vmcoreinfo_setup+0x450/0x450
[  710.006640][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  710.006660][    C1]  ? lock_chain_count+0x20/0x20
[  710.006683][    C1]  __x64_sys_syslog+0x7c/0x90
[  710.006702][    C1]  do_syscall_64+0x55/0xb0
[  710.006723][    C1]  ? clear_bhb_loop+0x40/0x90
[  710.006740][    C1]  ? clear_bhb_loop+0x40/0x90
[  710.006758][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  710.006775][    C1] RIP: 0033:0x7fe61cf5da37
[  710.006788][    C1] Code: 73 01 c3 48 8b 0d c1 f3 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 67 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 91 f3 0c 00 f7 d8 64 89 01 48
[  710.006802][    C1] RSP: 002b:00007ffde0fdfe28 EFLAGS: 00000206 ORIG_RAX: 0000000000000067
[  710.006817][    C1] RAX: ffffffffffffffda RBX: 00007fe61d0fd490 RCX: 00007fe61cf5da37
[  710.006829][    C1] RDX: 00000000000003ff RSI: 00007fe61d0fd490 RDI: 0000000000000002
[  710.006839][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  710.006848][    C1] R10: 0000000000004000 R11: 0000000000000206 R12: 00007fe61d0fd490
[  710.006859][    C1] R13: 00007fe61d0dadfe R14: 00007fe61d0fd50e R15: 00007fe61d0fd50e
[  710.006879][    C1]  </TASK>
[  710.055047][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  710.055065][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  710.055087][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  710.055102][   T29] Call Trace:
[  710.055111][   T29]  <TASK>
[  710.055121][   T29]  dump_stack_lvl+0x16c/0x230
[  710.055165][   T29]  ? show_regs_print_info+0x20/0x20
[  710.055196][   T29]  ? load_image+0x3b0/0x3b0
[  710.055234][   T29]  panic+0x2c0/0x710
[  710.055254][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  710.055290][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  710.055311][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  710.055344][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  710.055385][   T29]  watchdog+0xf80/0xf80
[  710.055418][   T29]  ? watchdog+0x1e1/0xf80
[  710.055455][   T29]  kthread+0x2fa/0x390
[  710.055474][   T29]  ? hungtask_pm_notify+0x90/0x90
[  710.055503][   T29]  ? kthread_blkcg+0xd0/0xd0
[  710.055526][   T29]  ret_from_fork+0x48/0x80
[  710.055552][   T29]  ? kthread_blkcg+0xd0/0xd0
[  710.055573][   T29]  ret_from_fork_asm+0x11/0x20
[  710.055620][   T29]  </TASK>
[  710.060303][   T29] Kernel Offset: disabled
[  710.456130][   T29] Rebooting in 86400 seconds..