last executing test programs:

4m57.215439213s ago: executing program 4 (id=74):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f00000005c0)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47b07c7d], [], [], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000]}, 0x45c)
r1 = dup(r0)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r1, 0x5501)
write$uinput_user_dev(r1, &(0x7f00000000c0)={'syz0\x00', {0xfff7, 0xc, 0x100, 0x81}, 0x1d, [0x7b, 0xb7e2, 0x3, 0x9, 0x100, 0x3, 0x1, 0x7, 0x9, 0x2, 0x7, 0xa, 0x3, 0x0, 0x7f, 0xd, 0x7fff, 0x6, 0x6, 0x5, 0x6, 0x6, 0x7, 0x6, 0xff, 0x2, 0xfffff5ee, 0x401, 0x0, 0xfc75, 0x8, 0x9, 0x4, 0x2, 0xffffffff, 0x81, 0xfffff765, 0x2, 0x3, 0xfffffff9, 0xa, 0x2, 0x5, 0x0, 0x3ff, 0x6, 0x7, 0x4c, 0xfffffffd, 0x80, 0x8, 0x8, 0x9, 0x7, 0x8000101, 0xc3c, 0x1733, 0x7fff, 0x7ffc, 0x1, 0x6, 0x5, 0x1, 0x4], [0x8, 0x3, 0x8, 0x8, 0x0, 0x8, 0x4, 0x0, 0x25, 0x10, 0x6, 0x7, 0x8, 0xe62, 0xffffff73, 0x1000, 0x6, 0x13e5, 0x3, 0x3, 0x1000, 0x7, 0x1, 0x3b40, 0x4, 0x1000, 0x5, 0x7fff, 0x8, 0x5a, 0xffff2503, 0x7fffffff, 0x6995, 0x1, 0x80000000, 0x8, 0xdaa, 0x5, 0x2, 0x76c4, 0xfffffffd, 0x5, 0x4, 0x10000, 0xd, 0x2, 0x9, 0x10, 0x4000e, 0x9, 0x7, 0xa, 0x9, 0x3, 0x8, 0x3, 0x2, 0x3a6, 0x27f8, 0xc0d, 0xfffffffd, 0x9, 0xc, 0xfffffffb], [0xa3, 0x6, 0x6, 0x9, 0x1000, 0x0, 0x80000000, 0x5, 0x7f, 0xa, 0x100, 0x1000, 0xf1, 0x6, 0xc, 0x10000, 0x72, 0xc, 0x633, 0xd, 0x7, 0x6, 0x80000000, 0x6, 0x0, 0x7, 0x8, 0x2ef3adcb, 0x10, 0x2, 0x8, 0x8, 0x74, 0x4, 0x7, 0x7ff, 0xfffffff2, 0x63, 0x7, 0x2, 0x3, 0x3, 0x20a7fd9e, 0xfffffffd, 0x2, 0xa1, 0x0, 0x9d, 0x7, 0xa8a, 0x2, 0x6, 0x77, 0x8, 0x1ff, 0x7, 0x7, 0x2, 0x0, 0x2, 0x8, 0x2, 0x3, 0x5], [0x4, 0x4, 0x5, 0x8000, 0x493e, 0x3, 0x35ff4447, 0x7, 0x5, 0x4, 0x7fff, 0x5, 0x5, 0x3ff, 0xb88f, 0xffff0000, 0x9, 0xf7df, 0x2, 0x10, 0x8, 0x2, 0xff, 0x6, 0x4, 0x4, 0x0, 0x0, 0x7, 0x4e6, 0x8, 0x6, 0x5ef, 0x8000, 0xc, 0x4, 0x401, 0x1, 0x5, 0x0, 0x9a8, 0x99f, 0x231, 0x3ff, 0x8, 0x1, 0xffff0001, 0x1, 0x1, 0x10, 0x8, 0x5396, 0x6161, 0x9, 0x101, 0x1ff, 0x8, 0x431, 0x6, 0x5, 0x4, 0x7b, 0x7fc, 0x9]}, 0x45c)

4m56.911328442s ago: executing program 4 (id=77):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
socket$inet6(0xa, 0x800000000000002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[], 0x14}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
sendmsg$nl_route(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1e, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
flistxattr(r8, 0x0, 0x0)
sendmsg$TIPC_NL_PUBL_GET(r5, &(0x7f0000000440)={&(0x7f0000000240), 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x80)
unshare(0x62040200)

4m55.304131696s ago: executing program 4 (id=80):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYBLOB="0000000000000000b7080000001000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a40)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c0000000800000000000000008b1d"], 0x0, 0x26, 0x0, 0x3, 0x8000, 0x0, @void, @value}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
faccessat2(r3, &(0x7f0000000000)='./file0\x00', 0x50, 0x800)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4m53.945242891s ago: executing program 4 (id=84):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@cache_strategy_disabled}]}, 0x1, 0x177, &(0x7f0000000240)="$eJzslL9KA0EQxr/diwkROztBLAwYi1zuLio2IsEXCPgPO6M5Q/RiQnKCiZXY+gC2tr5CGsEXUSsRUlpH9naTWyV/RNAgzq+Y+/Z2dm52Dj4QBPFveX56e7x+bV0YAKaQQEy9fzHCHK7ln+XiB9OpjbvWzcPVenW20q9mp/P170cA3GcN+L2zH08n1HMLvKe3wbGo9C4YTKX3wbGjtAuGPaWPNV0R+aZ5VPJc87DiFYSwRLBFcETIfO6vfclQ0Ppj2n690TzJe55b+0Exan7tLMea1p/+v7qzsbT52eCwlc6AYVPpVcS6s5Ej0e4/EwnrG798fxIkSPw1EfpT55ZhQfOniOYfab9cTdcbzVSpnC+6RffUcTIr1pJlLTvpwIhkHOJ/8cCfJrX6EwNyoyyK87zv12wZe2tHxn6OywP/40jOy7Xw/ujAbuQ+U+dYoJLGkHSCIIixMQcWeOYInNy4GyUIgiAIgiAIgiAI4tu8BwAA//9iEXZY")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_clone3(&(0x7f0000000200)={0x4000000, 0x0, 0x0, 0x0, {0x33}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = dup(r2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008e04"])

4m52.130883055s ago: executing program 4 (id=91):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x29c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x1000, 0x6, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xd, 0xd1}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000240)={0x0, 0x22, 0x7, {[@main=@item_4={0x3, 0x0, 0x9, "c2e83542"}, @global=@item_012={0x1, 0x1, 0x7, 'O'}]}}, 0x0}, 0x0)

4m51.333034201s ago: executing program 4 (id=95):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x800, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000940)='net/igmp6\x00')
lseek(r4, 0x2027da, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
setsockopt$packet_int(r5, 0x107, 0x14, &(0x7f0000000000)=0x930d, 0x4)
sendto$packet(r5, &(0x7f00000002c0)="05030500d3fc030000004788031c", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f00000000c0), &(0x7f0000000240)=0x30)

4m51.102560581s ago: executing program 32 (id=95):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000001c0)=0x800, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000940)='net/igmp6\x00')
lseek(r4, 0x2027da, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
setsockopt$packet_int(r5, 0x107, 0x14, &(0x7f0000000000)=0x930d, 0x4)
sendto$packet(r5, &(0x7f00000002c0)="05030500d3fc030000004788031c", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f00000000c0), &(0x7f0000000240)=0x30)

40.528989248s ago: executing program 2 (id=700):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRES32=0x0, @ANYRESHEX], 0x50)
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, 0x0, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x10000, 0x0, 0x3, 0x0, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(r2, 0x0, 0x7, 0x0, &(0x7f00000000c0))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff8500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd6374000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x2f)
futex(&(0x7f0000000100), 0xc, 0x0, &(0x7f0000000180)={0x0, 0x989680}, &(0x7f00000001c0)=0x1, 0x0)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0)
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r7, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='batadv_slave_0\x00', 0x10)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3800000010000305000008000002000000cf00", @ANYRES32=0x0, @ANYBLOB="03000000000000001800128008000100677265000c0002800800060064010100"], 0x38}}, 0xc0)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000140), 0x4)
r9 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
sendfile(r9, r6, 0x0, 0x6)

38.769071552s ago: executing program 2 (id=706):
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000009000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r6, 0x1)

34.701316426s ago: executing program 2 (id=713):
r0 = gettid()
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000000040)='./file0\x00', 0x208008de, &(0x7f0000000200)=ANY=[@ANYBLOB='namecase=1,discard,errors=continue,uid=', @ANYRESDEC=0x0, @ANYBLOB=',=', @ANYRESDEC, @ANYRESDEC, @ANYBLOB="f32be912e474ad5bd8cc0a19c9d7610b52abc6d5058fd8ecb25b45c12a91c16c105e53a45c82", @ANYRES64], 0x80, 0x1511, &(0x7f0000001ac0)="$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")
ioctl$EXT4_IOC_GETSTATE(0xffffffffffffffff, 0x40046629, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000500)='./bus\x00', 0x4, 0x0, 0x42, 0x0, &(0x7f0000000500))
renameat2(r6, &(0x7f0000000300)='./bus\x00', r6, &(0x7f00000001c0)='./file0\x00', 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
epoll_create1(0x80000)
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2000, 0xa3, 0x9}, 0x18)

31.486919934s ago: executing program 2 (id=718):
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0xc6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0xfffffffd, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x4)
ioctl$UI_DEV_CREATE(r2, 0x5501)
preadv(r1, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)

30.10404683s ago: executing program 2 (id=723):
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000009000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r6, 0x1)

26.465168086s ago: executing program 2 (id=729):
r0 = gettid()
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000000040)='./file0\x00', 0x208008de, &(0x7f0000000200)=ANY=[@ANYBLOB='namecase=1,discard,errors=continue,uid=', @ANYRESDEC=0x0, @ANYBLOB=',=', @ANYRESDEC, @ANYRESDEC, @ANYBLOB="f32be912e474ad5bd8cc0a19c9d7610b52abc6d5058fd8ecb25b45c12a91c16c105e53a45c82", @ANYRES64], 0x80, 0x1511, &(0x7f0000001ac0)="$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")
ioctl$EXT4_IOC_GETSTATE(0xffffffffffffffff, 0x40046629, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000500)='./bus\x00', 0x4, 0x0, 0x42, 0x0, &(0x7f0000000500))
renameat2(r6, &(0x7f0000000300)='./bus\x00', r6, &(0x7f00000001c0)='./file0\x00', 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
epoll_create1(0x80000)
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2000, 0xa3, 0x9}, 0x18)

10.808507769s ago: executing program 33 (id=729):
r0 = gettid()
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000000040)='./file0\x00', 0x208008de, &(0x7f0000000200)=ANY=[@ANYBLOB='namecase=1,discard,errors=continue,uid=', @ANYRESDEC=0x0, @ANYBLOB=',=', @ANYRESDEC, @ANYRESDEC, @ANYBLOB="f32be912e474ad5bd8cc0a19c9d7610b52abc6d5058fd8ecb25b45c12a91c16c105e53a45c82", @ANYRES64], 0x80, 0x1511, &(0x7f0000001ac0)="$eJzs3AuYjtXXMPC19t43YxJPkxyGe+1186TBJklySMghSZIkySkhIUkSEkNOSUhCzknOITlMTHI+n3JOkiRJEpJT2N+lf+/n/9b/ffver77Pe72zfte1r9nruZ+1nr1nzTP3fT/XNfN9pyFV61erVJeZ4S/Bf3xJBYAEAOgPANkBIACAkkklk64cz6Ix9a+9iPh7PTL9Wq9AXEvS/4xN+p+xSf8zNul/xib9z9ik/xmb9D9jk/4LkZFtnZHnBhkZd8jn/xmZnP//BzlcdOzX64ve1Pm/kCL9z9ik/xmb9D9jk/5nZJmv9QLENSbv///5Kv4nx6T/GZv0X4iM7Fp//izj2o5r/fMnhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEECJjOOevMgDwb/NrvS4hhBBCCCGEEEL8fXzm3z2QcI0WIoQQQgghhBBCiP+HEBRoMBBAJsgMCZAFEuE6yArXQzbIDjG4AZLgRsgBN0FOyAW5IQ8kQ17IByEQWGCIID8UgDjcDAXhFkiBQlAYioCDolAMboXicBuUgNuhJNwBpeBOKA1loCyUg7ugPNwNFaAiVIJ7oDJUgapQDe6F6nAf1ID7oSY8ALXgQagND0EdeBjqwiNQDx6F+vAYNIDHoSE0gsbQBJr+X+W/BN3gZegOPSAVekIveAV6Qx/oC/2gP7wKA+A1GAivwyAYDEPgDRgKb8IweAuGwwgYCW/DKBgNY2AsjIPxMAHegYnwLkyC92AyTIGpMA2mwwyYCe/DLJgNc+ADmAsfwjyYDwtgIaTBR7AIFkM6fAxL4BNYCstgOayAlbAKVsMaWAvrYD1sgI2wCTbDFtgKn8I22A47YCfsgt2wBz6DvfA57IMvYD98+V/MP/u7/M4ICKhQoUGDmTATJmACJmIiZsWsmA2zYQxjmIRJmANzYE7MibkxNyZjMubDfEhIyMiYH/NjHONYEAtiCqZgYSyMDh0Ww2JYHG/DElgCS2JJLIWlsDSWwTJYDstheSyPFbACVsJKWBkrY1WsivfivXgf1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgW22I7bIftsT12wA7YETtiJ+yEnbELdsGX8CV8GV/GHlhZ9cRe2At7Y2/si/2wH76KA/A1fA1fx0E4GIfgG/gGvonD8AwOxxE4EkdieTUax+BY5AZX3j4TcCJOxEk4CSfjFJyC03A6zsCZOBNn4WycjR/gXPwQP8T5OB8XYhqm4SJcjOmYjkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8VPcjttxJ+7E3bgbP8PP8HP8HAfhftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcXsALeBFfSP623u5C6waBusIoozKpTCpBJahElaiyqqwqm8qmYiqmklSSyqFyqJwqp8qtcqtklazyqXyKFClWkcqv8icAgCqoCqoUlaIKq8LKKaeKqWKquCquSqgSqqS6Q5VSd6rSqoxq4cqpcqq8aukqqIqqkqqkKqsqqqqqpqqp6qq6qqFqqJqqpqqlaqna6iFVR/XEvviIutKZ+mowNlBDsKFqpBqrJupNfEI1U8OwuWqhWqqn1Agcjq1VM9dWPaPaqTHYXj2nxuLzqqMaj53Ui6qz6qK6qpdUN9XcdVc91GTsqXqpadhb9VF9VT81C6uoKx2rql5Xg9RgNUS9oRbim2qYeksNVyPUSPW2GqVGqzFqrBqnxqsJ6h01Ub2rJqn31GQ1RU1V09R0NUPNVO+rWWq2mqM+UHPVh2qemq8WqIUqTX2kFqnFKl19rJaoT9RStUwtVyvUSrVKrVZr1Fq1Tq1XG9RGtUltVlvUVvWp2qa2qx1qp9qldqs96jO1V32u9qkv1H71pTqgvlIH1dfqkPpGHVbfqiPqO3VUfa+OqR/UcfWjOqFOqlPqJ3Va/azOqLPqnDqvLqhf1EV1SV1WXoFGrbTWRgc6k86sE3QWnaiv01n19Tqbzq5j+gadpG/UOfRNOqfOpXPrPDpZ59X5dKhJW8060vl1AR3XN+uC+hadogvpwrqIdrqoLqZv1cX1bbqEvl2X1HfoUvpOXVqX0WV1OX2XLq/v1hV0RV1J36Mr6yq6qq6m79XV9X26hr5f19QP6Fr6QV1bP6Tr6Id1Xf2Irqcf1fX1Y7qBflw31I10Y91EN9VP6Gb6Sd1ct9At9VO6lX5at9ZtdFv9jG6nn9Xt9XO6g35ed9Qv6E76Rd1Zd9Fd9SV9WXvdXffQqbqn7qVf0b11H91X99P99at6gH5ND9Sv60F6sB6i39BD9Zt6mH5LD9cj9Ej9th6lR+sxeqwep8frCfodPVG/qyfp9/RkPUVP1dP0dD1D9/2t0pzf5ff87az7z/nv/ov8gb+++ha9VX+qt+nteofeqXfp3XqP3qP36r16n96n9+v9+oA+oA/qg/qQPqQP68P6iD6ij+qj+pg+po/r4/qEPqnP65/0af2zPqPP6rP6vL6gL+iLv30PwKBRRhtjApPJZDYJJotJNNeZrOZ6k81kNzFzg0kyN5oc5iaT0+QyuU0ek2zymnwmNGSsYROZ/KaAiZubTUFzi0kxhUxhU8Q4U9QUM7f+5fw/W19T09Q0M81Mc9PctDQtTSvTyrQ2rU1b09a0M+1Me9PedDAdTEfT0XQynUxn09l0NV1NN9PNdDfdTapJNb3MK6a36WP6mn6mv3nVDDADzEAz0Awyg8wQM8QMNUPNMDPMDDfDzUgz0owyo8wYM8aMM+PMBDPBTDQTzSQzyUw2k81UM9VMN9PNTDPTzDKzzBwzx8w1c808M88sMAtMmkkzi8wik27SzRKzxCw1y8wys8KsMKvMKrPGrDHrzDqzwWwwm8wms9RsNVvNNrPN7DA7zC6zy+wxe8xes9fsM/vMfrPfHDAHzEFz0Bwyh8xhc9gcMUfMUXPUHDPHeh43x80Jc8KcMqfMaXPanDFnzDlzzlwwF8xFc9FcNpevXPYFKlCBCUyQKcgUJAQJQWKQGGQNsgbZgmxBLIgFSUFSkCO4KcgZ5ApyB3mC5CBvkC8IAwpswEEU5A8KBPHg5qBgcEuQEhQKCgdFAhcUDYoFtwbFg9uCEsHtQcngjqBUcGdQOigTlA3KBXcF5YO7gwpBxaBScE9QOagSVA2qBfcG1YP7ghrB/UHN4IGgVvBgUDt4KKgTPBzUDR4J6gWPBvWDx4IGweNBw6BR0DhoEjT9W+t7fybXk6572CNMDXuGvcJXwt5hn7Bv2C/sH74aDghfCweGr4eDwsHhkPCNcGj4ZjgsfCscHo4IR4Zvh6PC0eGYcGw4LhwfTgjfCSeG74aTwvfCyeGUcGo4LZwezghnhu+Hs8LZ4Zzwg3Bu+GE4L5wfLggXhmnhR+GicHGYHn4cLgk/CZeGy8Ll4YpwZbjq/A0A4dpwXbg+3BBuDDeFm8Mt4dbw03BbuD3cEe4Md4W7wz3hZ+He8PNwX/hFuD/8MjwQfhUeDL8OD4XfhIfDb8Mj4Xfh0fD78Fj4Q3g8/DE8EZ4MT4U/hafDn8Mz4dnwXHg+vBD+El4ML4WXQ3/l4v7K6Z0MGcpEmSiBEiiREikrZaVslI1iFKMkSqIclINyUk7KTbkpmZIpH+WjK5iY8lN+ilOcClJBSqEUKkyFyZGjYlSMilNxKkElqCSVpFJUikpTaSpLZekuuovuprupIlWke+geqkJVqBpVo+pUnWpQDapJNakW1aLaVJvqUB2qS3WpHtWj+lSfGlADakgNqTE1pqbUlJpRM2pOzakltaRW1IpaU2tqS22pHbWj9tSeOlAH6kgdqRN1os7UmbpSV+pG3ag7dadUSqVe1It6U2/qS32pP/WnATSABtJAGkSDaAgNoaE0lIbRMBpOI2gkvU2jaDSNobE0jsbTBJpAE2kiTaJJNJkm01SaStNpOs2kmTSLZtEcmkNzaS7No3m0gBZQGqXRIlpE6ZROS2gJLaWltJyW00paSatpNa2ltbSe1tNG2kibaTNtpa20jbbRDtpBu2gX7aE9tJf20j7aR/tpPx2gA3SQDtIhOkSH6TAdoSN0lI7SMTpGx+k4naATdIpO0Wk6TWfoDJ2jc3SBfqGLdIkuk6cEqyDRXmez2uttNpvdJtgs9p/j3DaPTbZ5bT4b2pw217+LyVqbYgvZwraIdbaoLWZv/UNc2paxZW05e5ctb++2Ff4QV7f32Rr2flvTPmCr2Xt/izP/GteyD9ra9jFbxz5u69pGtp5tYuvbx2wD+7htaBvZxraJbWWftq1tG9vWPmPb2Wf/EC+yi+1au86utxvsXvu5PWfP26P2e3vB/mK72x62v33VDrCv2YH2dTvIDv5DPNK+bUfZ0XaMHWvH2fF/iKfaaXa6nWFn2vftLDv7D3Ga/cjOtel2np1vF9iFv8ZX1pRuP7ZL7Cd2qV1ml9sVdqVdZVfbNf97rSvsJrvZbrF77Gd2m91ud9iddpfd/Wt8ZR/77Bd2v/3SHrHf2YP2a3vIHrOH7be/xlf2d8z+YI/bH+0Je9Kesj/Z0/Zne8ae/XX/V/b+k71kL1tvgZEVazYccCbOzAmchRP5Os7K13M2zs4xvoGT+EbOwTdxTs7FuTkPJ3NezschE1tmjjg/F+A438wF+RZO4UJcmIuw46JcjG/l4nwbl+DbuSTfwaX4Ti7NZbgsl+O7uDzfzRW4Ilfie7gyV+GqXI3v5ep8H9fg+7kmP8C1+EGuzQ9xHX6Y6/IjXI8f5fr8GDfgx7khN+LG3ISb8hPcjJ/k5tyCW/JT3Iqf5tbchtvyM9yOn+X2/Bx34Oe5I7/AnfhF7sxduCu/xN34Ze7OPTiVe3IvfoV7cx/uy/24P7/KA/g1Hsiv8yAezEP4DR7Kb/IwfouH8wgeyW/zKB7NY3gsj+PxPIHf4bNpbXJfudabzFN4Kk/j6TyDZ/L7PItn8xz+gOfyhzyP5/MCXshp/BEv4sWczh/zEv6El/IyXs4reCWv4tW8htfyOl7PG3gjb+LNvIW38qe8jbfzDt7Ju3g37+HPeC9/zvv4C97PX/IB/ooP8td8iL/hw/wtH+Hv+Ch/z8f4Bz7OP/IJPsmn+Cc+zT/zGT7L5/g8X+Bf+CJf4svsGSKMVKQjEwVRpihzlBBliRKj66Ks0fVRtih7FItuiJKiG6Mc0U1RzihXlDvKEyVHeaN8URhRZCOOoih/VCCKRzdHBaNbopSoUFQ4KhK5qGhULLo1Kh7dFpWIbo9KRndEpaI7o9JRmeixB8pFd0Xlo7ujClHFqFJ0T1Q5qhJVjapF90bVo/uiGtH9Uc3ogahE9GBUO3ooqhM9HNWNHonqRY9G9aPHogbR41HDqFHUOGoSNY2eiJpFT0bNoxZRy+ipqFX0dNQ6ahO1jZ6J2kXP/unx1Khn1Ct6JXol8v5+vSC+MJ4W/yi+KL44nh7/OL4k/kl8aXxZfHl8RXxlfFV8dXxNfG18XXx9fEN8Y3xTfHN8S9z7apnBoVNOO+MCl8lldgkui0t017ms7nqXzWV3MXeDS3I3uhzuJpfT5XK5XR6X7PK6fC505KxjF7n8roCLu5tdQXeLS3GFXGFXxDlX1BVzTVxT19Q1CwDAtXAt3VPuKfe0e9q1cW3cM66de9a1d8+5Du5519G94F5wL7rOrovr6l5y3dzLrrvr4VJdquvlernerrfr6/q6/q6/G+AGuIFuoBvkBrkhbogb6oa6YW6YG+6Gu5FupBvlRrkxbowb58a5CW6Cm+gmuklukpvsJrupbqqb7qa7mW6mm+VmuTlujpubMtfNc/PcArfApbk0t8gtcuku3S1xS9xSt9Qtd8vdSrfSrXar3Vq31q13691Gt9FtdpvdVrfVbXPb3A63w+1yu9wet8ftdXvdPrfP7Xf73QF3wB10B90h94077L51R9x37qj73h1zP7jj7kd3wp10p9xP7rT72Z1xZ905d95dcL+4i+6Su+y8mxB7JzYx9m5sUuy92OTYlNjU2LTY9NiM2MzY+7FZsdmxObEPYnNjH8bmxebHFsQWxtJiH8UWxRbH0mMfx5bEPoktjS2LLY+tiK2MrYp5n3db5PP7Aj7ub/YF/S0+xRfyhX0R73xRX8zf6ov723wJf7sv6e/wpfydvrQv48v6x31D38g39k18U/+Eb+af9M19C9/SP+Vb+ad9a9/Gt/XP+Hb+Wd/eP+c7+Od9R/+C7+Rf9J19F9/Vv+S7+Zd9d9/Dp/qevpd/xff2fXxf38/396/6Af41P9C/7gf5wX6If8MP9W/6Yf4tP9yP8CP9236UH+3H+LF+nB/vJ/h3/ET/rp/k3/OT/RQ/1U/z0/0MP9O/72f52X6O/8DP9R/6eX6+X+AX+jT/kV/kF/t0/7Ff4j/xS/0yv9yv8Cv9Kr/ar/Fr/Tq/3m/wG/0mv9lv8Vv9p36b3+53+J1+l9/t9/jP/F7/ud/nv/D7/Zf+gP/KH/Rf+0P+G3/Yf+uP+O/8Uf+9P+Z/8Mf9j/6EP+lP+Z/8af+zP+PP+nP+vL/gf/EX/SV/Wf5mTQghhBDi/4j+k+M9/8Vj6rdxRS8AuH57nsO/r7kx5z/mfVRyqxgAPNOj0yP/NipXTk1N/e25SzUEBeYDQOxqfia4Gi+DlvA0tIUWUPxfrq+P6nKB/6R+/A6AxKuVf5UIv69/239Q/4mnRi4qFZ1L+k/qzwdIKXA1Jwtcja/WL/Ef1M/V7E/Wn+XrCQDN/yknK1yNr9YvBk/Cs9D23z1TCCGEEEIIIYT4hz6qbIc/u3++cn+ebK7mZIar8Z/dnwshhBBCCCGEEOLae75L1zZPtG3booNM/sKkwn+PZfxtk3vOAPy1Otnh2u9CJn9lcq1/MwkhhBBCCCH+blcv+q/1SoQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiIzr/8e/E7vWexRCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGutf8VAAD//+hhNEE=")
ioctl$EXT4_IOC_GETSTATE(0xffffffffffffffff, 0x40046629, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x3, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000500)='./bus\x00', 0x4, 0x0, 0x42, 0x0, &(0x7f0000000500))
renameat2(r6, &(0x7f0000000300)='./bus\x00', r6, &(0x7f00000001c0)='./file0\x00', 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
epoll_create1(0x80000)
openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2000, 0xa3, 0x9}, 0x18)

8.494675441s ago: executing program 0 (id=769):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
ioctl$PPPIOCATTACH(0xffffffffffffffff, 0x4004743d, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
sched_setscheduler(r1, 0x5, &(0x7f0000000000)=0xa9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff0000", @ANYBLOB, @ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000380)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)

8.28123549s ago: executing program 3 (id=770):
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0xc6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0xfffffffd, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x4)
ioctl$UI_DEV_CREATE(r1, 0x5501)
preadv(r0, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)

7.957506169s ago: executing program 3 (id=771):
socket$packet(0x11, 0xa, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000))
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})

7.848598589s ago: executing program 3 (id=772):
r0 = socket$inet6(0xa, 0x3, 0x38)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000040)=0xeffe, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4, 0x0, @remote, 0xb}, 0x1c)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xf338}], 0x1)

7.685011038s ago: executing program 3 (id=773):
r0 = syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800400, &(0x7f0000000b80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="1472d0c131718f298d48663914f365f1240d2b828355943a84edf92d3e153ed79fb953307a33a3db75dd14eed6765131924295ea8920925ded6754e0250c29991c470c325daad5ca1e63c32a59ab4a1f330fa984c9b723ef4a7186225694bc27a33fb9ae06dc4da9a1dc20ec9145570e6df55bcd7b2407ce5f913710bbdf664e0a672a95a8f1a03ea07cb58257eb390ccdcd44d97a1820ce284083fdbe7c1837e3e3d65d73b88ac453f9583397c02f42e23afe1837ce1f27b5", @ANYRESOCT], 0x1, 0x5514, &(0x7f0000005d80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1a37c1, 0x42)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000640)=ANY=[@ANYBLOB="0180c200000050a245d5cde0080045000028f10000000002907800000000ffffffff000100000000000000ec1004f54b9fb9e3442f89e17b54411555e1aa2b596aa1f543a6548498c8da4108e493fce16d58586feba89cebc1721b376ee80292d29e3424eaa80ecc39302327e07458c43b579334754f0eba77e3ab31a0b2c8d6d2f330deeeb0d672b000f9149b41322d06d5bc1856fb0539d84263d1991f905137e16596a66ad705c243208ba6a4cd46ecf1f3a85f"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYRES32, @ANYRES64=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x0, 0x80000004, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0xffffffffffffff4c, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x80, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=@flushsa={0x14, 0x1c, 0x1, 0x0, 0x0, {0xff}}, 0x14}}, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000780)={0x30, 0x5, 0x0, {0x0, 0x4, 0xf, 0x7fffffff}}, 0x30)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0), 0x4)

7.637085708s ago: executing program 0 (id=774):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000001000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a40)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c0000000800000000000000008b1d"], 0x0, 0x26, 0x0, 0x3, 0x8000, 0x0, @void, @value}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
faccessat2(r3, &(0x7f0000000000)='./file0\x00', 0x50, 0x800)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

6.869799095s ago: executing program 0 (id=776):
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000009000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r6, 0x1)

6.511005384s ago: executing program 5 (id=778):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getrusage(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r5 = creat(&(0x7f0000000140)='./file0\x00', 0x14)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
fallocate(r5, 0x0, 0xd2ba, 0x5)
fallocate(r4, 0x0, 0x0, 0x10fff9)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, r5, 0x0, 0x0, 0x0, 0x7e})

5.341281009s ago: executing program 5 (id=780):
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0xc6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0xfffffffd, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x4)
ioctl$UI_DEV_CREATE(r2, 0x5501)
preadv(r1, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)

5.170586339s ago: executing program 1 (id=781):
socket$packet(0x11, 0xa, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000))
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})

5.055746718s ago: executing program 5 (id=782):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000800)={[{@shortname_winnt}, {@shortname_mixed}, {@fat=@check_strict}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@shortname_lower}, {@fat=@nfs}, {@shortname_win95}, {@shortname_lower}, {@uni_xlate}]}, 0xfd, 0x2a0, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00fb00020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32=<r7=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1fffffff, @void, @value}, 0x94)
r8 = getpid()
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x6)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x17, 0xc, &(0x7f0000000180)=ANY=[@ANYRESDEC=r8, @ANYRES16=r7, @ANYRESDEC=r6], &(0x7f0000000200)='GPL\x00', 0x80000001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x10)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@noop, @timestamp={0x44, 0xc, 0x5, 0x3, 0x0, [0x0, 0x5]}]}}, {{0xfffd, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1d7)

5.034084268s ago: executing program 1 (id=783):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
ioctl$PPPIOCATTACH(0xffffffffffffffff, 0x4004743d, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
sched_setscheduler(r1, 0x5, &(0x7f0000000000)=0xa9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff0000", @ANYBLOB, @ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000380)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)

4.962799358s ago: executing program 0 (id=784):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x800000000000002)
socket$inet6(0xa, 0x2, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x7, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x40)

3.719902473s ago: executing program 3 (id=785):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000001000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a40)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c0000000800000000000000008b1d"], 0x0, 0x26, 0x0, 0x3, 0x8000, 0x0, @void, @value}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
faccessat2(r3, &(0x7f0000000000)='./file0\x00', 0x50, 0x800)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.181132392s ago: executing program 5 (id=786):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001", @ANYRES32=0x0], 0x48)
ptrace$PTRACE_GETSIGMASK(0x420a, 0x0, 0x8, &(0x7f0000000000))
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r2, 0x0, 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000fd00000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
clock_gettime(0x7, &(0x7f0000000240)={<r4=>0x0, <r5=>0x0})
clock_settime(0x0, &(0x7f0000009ac0)={r4, r5+10000000})

2.85776293s ago: executing program 1 (id=787):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
io_setup(0x6, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b00)=ANY=[], 0x20}}, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}})

2.275343098s ago: executing program 1 (id=788):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000006b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x121342, 0x0)
write$tcp_mem(r2, &(0x7f0000000100)={0x0, 0x2d, 0x0, 0xa, 0x0, 0x2c}, 0x48)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x10, &(0x7f0000000100), 0xfe, 0x458, &(0x7f00000001c0)="$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")

1.701409056s ago: executing program 0 (id=789):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000300)=@base={0xd6c0d979def95d63, 0x52e, 0x9, 0x5, 0x201, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000380)={[{@fat=@errors_remount}, {@fat=@errors_continue}, {}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@fat=@tz_utc}, {@fat=@errors_continue}, {@nodots}, {@fat=@nfs_stale_rw}, {@fat=@quiet}, {@dots}]}, 0xfd, 0x1bf, &(0x7f0000000840)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
syz_emit_ethernet(0x7e, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaa82e3efec4f6186dd6000140000082c"], 0x0)

390.022762ms ago: executing program 0 (id=790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getrusage(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r5 = creat(&(0x7f0000000140)='./file0\x00', 0x14)
fallocate(r5, 0x0, 0xd2ba, 0x5)
fallocate(r4, 0x0, 0x0, 0x10fff9)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, r5, 0x0, 0x0, 0x0, 0x7e})

325.149351ms ago: executing program 1 (id=791):
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0xc6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0xfffffffd, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x4)
ioctl$UI_DEV_CREATE(r2, 0x5501)
preadv(r1, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)

139.23152ms ago: executing program 5 (id=792):
socket$packet(0x11, 0xa, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000))
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r5, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})

90.18816ms ago: executing program 1 (id=793):
r0 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000009000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
shutdown(r6, 0x1)

26.37116ms ago: executing program 3 (id=794):
r0 = syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800400, &(0x7f0000000b80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="1472d0c131718f298d48663914f365f1240d2b828355943a84edf92d3e153ed79fb953307a33a3db75dd14eed6765131924295ea8920925ded6754e0250c29991c470c325daad5ca1e63c32a59ab4a1f330fa984c9b723ef4a7186225694bc27a33fb9ae06dc4da9a1dc20ec9145570e6df55bcd7b2407ce5f913710bbdf664e0a672a95a8f1a03ea07cb58257eb390ccdcd44d97a1820ce284083fdbe7c1837e3e3d65d73b88ac453f9583397c02f42e23afe1837ce1f27b5", @ANYRESOCT], 0x1, 0x5514, &(0x7f0000005d80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1a37c1, 0x42)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000640)=ANY=[@ANYBLOB="0180c200000050a245d5cde0080045000028f10000000002907800000000ffffffff000100000000000000ec1004f54b9fb9e3442f89e17b54411555e1aa2b596aa1f543a6548498c8da4108e493fce16d58586feba89cebc1721b376ee80292d29e3424eaa80ecc39302327e07458c43b579334754f0eba77e3ab31a0b2c8d6d2f330deeeb0d672b000f9149b41322d06d5bc1856fb0539d84263d1991f905137e16596a66ad705c243208ba6a4cd46ecf1f3a85f"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYRES32, @ANYRES64=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x0, 0x80000004, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0xffffffffffffff4c, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x80, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=@flushsa={0x14, 0x1c, 0x1, 0x0, 0x0, {0xff}}, 0x14}}, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000780)={0x30, 0x5, 0x0, {0x0, 0x4, 0xf, 0x7fffffff}}, 0x30)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000004c0), 0x4)

0s ago: executing program 5 (id=795):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getrusage(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r5 = creat(&(0x7f0000000140)='./file0\x00', 0x14)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=ANY=[@ANYBLOB="3c000000100001040000000000000000060140008d6a7988bca9bbbcca67dc50e3ec6abd93ef442e8030a2c0cb96f7e884312d590e515c48602f53b9cb84597a908650fdd73d4bf7240551fb6ffc4a4d73ffb7ba7cc269ec776d2918f190d0678151e2c9cca362bda6c84469b757e341cf49bb000000000000", @ANYRES32=0x0, @ANYBLOB="000000002000000014001280090001007866726d00000000040002800800200087620000"], 0x3c}, 0x1, 0x0, 0x0, 0x404c040}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000087}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000002700)=""/102392, 0x18ff8)
fallocate(r5, 0x0, 0xd2ba, 0x5)
r8 = timerfd_create(0x0, 0x0)
timerfd_settime(r8, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, r5, 0x0, 0x0, 0x0, 0x7e})

kernel console output (not intermixed with test programs):

23281][ T4653] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  112.853954][ T4652] loop1: detected capacity change from 0 to 1024
[  112.941590][ T4652] EXT4-fs (loop1): Ignoring removed bh option
[  112.974230][ T4652] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  114.007124][    T9] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.124916][    T9] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.184661][ T4673] loop2: detected capacity change from 0 to 128
[  114.197683][ T4182] Bluetooth: hci1: command 0x040f tx timeout
[  114.217051][    T9] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.312286][    T9] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.585096][ T4681] netlink: 24 bytes leftover after parsing attributes in process `syz.0.111'.
[  115.389766][ T4673] EXT4-fs (loop2): Test dummy encryption mode enabled
[  115.419419][ T4673] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  115.822572][ T4615] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  115.887783][ T4615] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  115.966922][ T4615] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  116.183521][ T4615] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  116.237845][ T4671] loop3: detected capacity change from 0 to 40427
[  116.480053][ T4671] F2FS-fs (loop3): Found nat_bits in checkpoint
[  116.663474][ T4615] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.743497][ T4671] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  116.756205][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  116.771121][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  116.861276][ T4615] 8021q: adding VLAN 0 to HW filter on device team0
[  116.904828][ T4210] Bluetooth: hci1: command 0x0419 tx timeout
[  117.233444][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  117.246775][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  117.268939][ T4371] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.276077][ T4371] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.841489][ T4615] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  117.924517][ T4615] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  117.937979][ T4178] attempt to access beyond end of device
[  117.937979][ T4178] loop3: rw=2049, want=45104, limit=40427
[  117.949458][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  117.977879][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  118.026159][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  118.062578][ T4371] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.069739][ T4371] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.120500][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  118.144119][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  118.178440][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  118.210271][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  118.239189][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  118.258472][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  118.275369][ T4725] loop0: detected capacity change from 0 to 1024
[  118.278457][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  118.299059][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  118.314176][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  118.324399][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  118.345961][ T4725] EXT4-fs (loop0): Ignoring removed bh option
[  118.415400][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  118.428027][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  118.507498][ T4725] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  118.697396][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  118.761909][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  119.459645][ T4615] 8021q: adding VLAN 0 to HW filter on device batadv0
[  119.630501][ T4756] loop0: detected capacity change from 0 to 512
[  119.752123][ T4756] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  120.000525][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  120.011443][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  120.013263][ T4769] loop2: detected capacity change from 0 to 512
[  120.530667][ T4770] xt_CT: No such helper "snmp_trap"
[  120.620958][ T4769] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.124: casefold flag without casefold feature
[  120.660256][ T4615] device veth0_vlan entered promiscuous mode
[  120.737795][ T4769] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.124: couldn't read orphan inode 15 (err -117)
[  120.765431][ T4615] device veth1_vlan entered promiscuous mode
[  120.810123][ T4769] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  121.074199][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  121.754879][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  121.861273][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  121.871032][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  121.881081][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  121.890622][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  122.037016][ T4361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  122.049484][ T4361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  122.081658][ T4615] device veth0_macvtap entered promiscuous mode
[  122.180788][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  122.216420][ T4615] device veth1_macvtap entered promiscuous mode
[  122.345245][    T9] device hsr_slave_0 left promiscuous mode
[  122.363446][    T9] device hsr_slave_1 left promiscuous mode
[  122.396327][ T4796] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  122.408910][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.422099][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.455554][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.484493][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.537874][    T9] device bridge_slave_1 left promiscuous mode
[  122.549196][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.615178][    T9] device bridge_slave_0 left promiscuous mode
[  122.636677][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.744548][    T9] device veth1_macvtap left promiscuous mode
[  122.768675][    T9] device veth0_macvtap left promiscuous mode
[  122.785283][    T9] device veth1_vlan left promiscuous mode
[  122.815193][    T9] device veth0_vlan left promiscuous mode
[  122.856156][ T4803] loop0: detected capacity change from 0 to 2048
[  123.271780][ T4803] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  124.116609][    T9] team0 (unregistering): Port device team_slave_1 removed
[  124.166526][    T9] team0 (unregistering): Port device team_slave_0 removed
[  124.220280][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  124.246389][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.346106][ T4811] loop2: detected capacity change from 0 to 1024
[  124.465943][ T4811] EXT4-fs (loop2): Ignoring removed bh option
[  124.533095][ T4811] EXT4-fs (loop2): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  124.751035][ T4817] loop1: detected capacity change from 0 to 512
[  124.820953][    T9] bond0 (unregistering): Released all slaves
[  124.956997][ T4817] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  126.010350][ T4824] xt_CT: No such helper "snmp_trap"
[  126.139848][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  126.139867][   T26] audit: type=1800 audit(126.002:39): pid=4811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.132" name="file1" dev="loop2" ino=15 res=0 errno=0
[  126.331780][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.343302][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.353340][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.366586][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.396566][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.425039][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.441241][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.459513][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.490452][ T4615] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.534190][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  126.545696][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  126.561065][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.595202][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.615751][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.649028][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.728600][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.739241][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.749837][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.488224][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.532150][ T4615] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.545075][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  127.559436][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  127.604439][   T26] audit: type=1326 audit(127.562:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.660488][ T4615] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.689693][ T4615] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.699057][   T26] audit: type=1326 audit(127.562:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.734935][ T4615] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.754385][   T26] audit: type=1326 audit(127.562:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.785852][   T26] audit: type=1326 audit(127.562:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.808657][   T26] audit: type=1326 audit(127.562:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.847556][ T4615] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.876708][   T26] audit: type=1326 audit(127.582:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  127.938251][   T26] audit: type=1326 audit(127.582:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  128.797686][   T26] audit: type=1326 audit(127.582:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  128.938792][ T4242] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.002927][   T26] audit: type=1326 audit(127.582:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4846 comm="syz.3.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  129.037352][ T4242] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.099851][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  129.143649][ T4643] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.170783][ T4643] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.216967][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  129.505433][ T4873] loop0: detected capacity change from 0 to 1024
[  129.676545][ T4873] EXT4-fs (loop0): Test dummy encryption mode enabled
[  129.748053][ T4873] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  129.946574][ T4884] loop2: detected capacity change from 0 to 512
[  130.107708][ T4884] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  130.334440][ T4893] loop1: detected capacity change from 0 to 128
[  130.415330][ T4893] EXT4-fs (loop1): Test dummy encryption mode enabled
[  130.454749][ T4893] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  130.831012][ T4900] xt_CT: No such helper "snmp_trap"
[  131.124501][ T4873] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  131.148977][ T4893] EXT4-fs warning (device loop1): verify_group_input:147: Cannot add at group 4294967295 (only 1 groups)
[  132.406710][   T26] kauditd_printk_skb: 69 callbacks suppressed
[  132.406727][   T26] audit: type=1326 audit(132.362:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  132.535785][   T26] audit: type=1326 audit(132.422:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  132.687650][   T26] audit: type=1326 audit(132.452:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  132.761903][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.768416][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.847881][   T26] audit: type=1326 audit(132.452:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  132.948176][   T26] audit: type=1326 audit(132.452:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  133.059681][   T26] audit: type=1326 audit(132.462:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  133.095405][   T26] audit: type=1326 audit(132.462:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  133.198481][ T4937] netlink: 24 bytes leftover after parsing attributes in process `syz.2.154'.
[  133.384737][   T26] audit: type=1326 audit(132.462:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  133.877412][   T26] audit: type=1326 audit(132.462:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  134.027313][   T26] audit: type=1326 audit(132.462:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4918 comm="syz.2.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  134.455182][ T4956] loop1: detected capacity change from 0 to 512
[  134.494122][ T4916] loop5: detected capacity change from 0 to 40427
[  134.658801][ T4956] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  134.674050][ T4916] F2FS-fs (loop5): Found nat_bits in checkpoint
[  135.357894][ T4973] xt_CT: No such helper "snmp_trap"
[  135.991857][ T4983] loop0: detected capacity change from 0 to 1024
[  136.473534][ T4983] EXT4-fs (loop0): Test dummy encryption mode enabled
[  136.810725][ T4983] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  138.124319][ T5007] netlink: 24 bytes leftover after parsing attributes in process `syz.3.168'.
[  138.910337][ T5009] loop3: detected capacity change from 0 to 1024
[  139.045134][ T5017] loop5: detected capacity change from 0 to 512
[  139.081184][ T5009] EXT4-fs (loop3): Ignoring removed bh option
[  139.133462][ T5018] loop0: detected capacity change from 0 to 512
[  139.417546][ T5018] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.169: casefold flag without casefold feature
[  139.470298][ T5009] EXT4-fs (loop3): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  139.559203][ T5017] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  139.969142][ T5018] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.169: couldn't read orphan inode 15 (err -117)
[  140.033291][ T5018] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  140.978515][ T5038] bridge: RTM_NEWNEIGH with invalid ether address
[  142.340316][ T5029] loop2: detected capacity change from 0 to 40427
[  143.128132][ T5029] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-12)
[  143.491119][ T5068] loop0: detected capacity change from 0 to 128
[  143.649437][ T5068] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  143.688294][ T5068] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  144.357457][ T5074] netlink: 24 bytes leftover after parsing attributes in process `syz.1.181'.
[  144.401245][ T5080] loop3: detected capacity change from 0 to 256
[  144.505308][ T5080] exfat: Deprecated parameter 'namecase'
[  144.582127][ T5080] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  147.409985][ T5098] loop0: detected capacity change from 0 to 1024
[  147.622319][ T5105] loop2: detected capacity change from 0 to 512
[  148.260089][ T5098] EXT4-fs (loop0): Ignoring removed bh option
[  148.379045][ T5105] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.189: casefold flag without casefold feature
[  148.406151][ T5098] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  148.458001][ T5105] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.189: couldn't read orphan inode 15 (err -117)
[  148.592971][ T5105] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  149.343449][ T5134] loop3: detected capacity change from 0 to 512
[  149.412843][ T5134] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  149.422293][ T5110] loop1: detected capacity change from 0 to 40427
[  150.927931][ T5150] netlink: 12 bytes leftover after parsing attributes in process `syz.2.194'.
[  151.884230][ T5110] F2FS-fs (loop1): Failed to start F2FS issue_checkpoint_thread (-12)
[  152.160219][ T5161] loop3: detected capacity change from 0 to 1024
[  152.204158][ T5161] EXT4-fs (loop3): Test dummy encryption mode enabled
[  152.225920][   T26] kauditd_printk_skb: 9 callbacks suppressed
[  152.225934][   T26] audit: type=1326 audit(152.182:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.297054][ T5161] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  152.422814][   T26] audit: type=1326 audit(152.232:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.422859][   T26] audit: type=1326 audit(152.232:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.422913][   T26] audit: type=1326 audit(152.232:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.422962][   T26] audit: type=1326 audit(152.232:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.422999][   T26] audit: type=1326 audit(152.232:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.423036][   T26] audit: type=1326 audit(152.232:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.423073][   T26] audit: type=1326 audit(152.242:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.423109][   T26] audit: type=1326 audit(152.242:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  152.423146][   T26] audit: type=1326 audit(152.242:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5162 comm="syz.2.198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  153.539990][ T5185] loop3: detected capacity change from 0 to 1024
[  153.643092][ T5175] device bridge1 entered promiscuous mode
[  153.710771][ T5169] loop1: detected capacity change from 0 to 40427
[  153.789617][ T5185] EXT4-fs (loop3): Ignoring removed bh option
[  154.213617][ T5192] netlink: 12 bytes leftover after parsing attributes in process `syz.0.205'.
[  155.020259][ T5185] EXT4-fs (loop3): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  155.093691][ T5169] F2FS-fs (loop1): Found nat_bits in checkpoint
[  155.130761][ T5202] loop0: detected capacity change from 0 to 512
[  156.121981][ T5202] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  156.342468][ T4276] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  156.837738][ T4276] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  156.881745][ T4276] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.017247][ T4276] usb 3-1: config 0 descriptor??
[  157.557401][ T4276] usb 3-1: Cannot set MAC address
[  157.564202][ T4276] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[  157.617464][ T4276] usb 3-1: USB disconnect, device number 2
[  157.986342][ T5246] loop0: detected capacity change from 0 to 1024
[  158.122830][ T5246] EXT4-fs (loop0): Test dummy encryption mode enabled
[  158.237164][ T5216] loop3: detected capacity change from 0 to 40427
[  158.245161][ T5254] loop2: detected capacity change from 0 to 256
[  158.396070][ T5246] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  159.730639][ T5269] netlink: 12 bytes leftover after parsing attributes in process `syz.5.217'.
[  160.834938][ T5287] loop3: detected capacity change from 0 to 128
[  160.910515][ T5287] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  160.941840][ T5287] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  161.994831][ T5277] loop0: detected capacity change from 0 to 40427
[  162.089728][ T5277] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  162.121273][ T5277] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  162.169613][ T5277] F2FS-fs (loop0): invalid crc value
[  162.232942][ T5277] F2FS-fs (loop0): Found nat_bits in checkpoint
[  162.396429][ T5310] device bridge1 entered promiscuous mode
[  163.136098][ T5313] loop5: detected capacity change from 0 to 512
[  163.155817][ T5277] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  163.178663][ T5277] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  163.215360][ T5316] loop3: detected capacity change from 0 to 1024
[  163.286995][ T5313] EXT4-fs (loop5): Ignoring removed orlov option
[  163.287589][ T5316] EXT4-fs (loop3): Test dummy encryption mode enabled
[  163.359196][ T5313] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  163.373849][ T5316] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  163.435394][ T5313] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[  163.487042][ T5313] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.227: Corrupt directory, running e2fsck is recommended
[  163.524500][   T26] kauditd_printk_skb: 50 callbacks suppressed
[  163.524514][   T26] audit: type=1326 audit(163.489:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  163.535559][ T5313] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  163.565697][ T5313] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2219: inode #15: comm syz.5.227: corrupted in-inode xattr
[  163.579493][ T5313] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.227: couldn't read orphan inode 15 (err -117)
[  163.592356][ T5313] EXT4-fs (loop5): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,nogrpid,orlov,bsddf,grpjquota=.nodioread_nolock,init_itable,jqfmt=vfsold,stripe=0x0000000000000800,,,errors=continue. Quota mode: writeback.
[  163.618800][   T26] audit: type=1326 audit(163.529:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  163.823428][   T26] audit: type=1326 audit(163.529:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  163.854096][ T5313] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  163.894411][ T5277] overlayfs: failed to resolve './file0': -2
[  163.926960][   T26] audit: type=1326 audit(163.529:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  163.951439][ T5313] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[  163.962690][   T26] audit: type=1326 audit(163.529:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  163.997271][ T5313] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.227: Corrupt directory, running e2fsck is recommended
[  164.013778][   T26] audit: type=1326 audit(163.529:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  164.058422][ T5313] EXT4-fs error (device loop5): ext4_readdir:260: inode #2: block 3: comm syz.5.227: path /13/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  164.100104][  T154] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  164.106269][   T26] audit: type=1326 audit(163.529:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  164.115129][  T154] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  164.264325][   T26] audit: type=1326 audit(163.549:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5270 comm="syz.0.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795eaedda9 code=0x7ffc0000
[  164.505226][ T5330] loop3: detected capacity change from 0 to 512
[  164.974354][ T5330] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  165.045014][ T5330] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  165.812209][ T5320] loop1: detected capacity change from 0 to 40427
[  166.223503][ T5329] loop2: detected capacity change from 0 to 40427
[  166.319042][ T5320] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-4)
[  166.327302][ T5329] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  166.335036][ T5329] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  166.454219][ T5329] F2FS-fs (loop2): invalid crc value
[  166.550443][ T5329] F2FS-fs (loop2): Found nat_bits in checkpoint
[  166.564613][ T5362] loop3: detected capacity change from 0 to 128
[  166.654378][ T5362] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  166.697758][ T5362] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  166.958631][ T5329] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  166.965810][ T5329] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  167.046380][ T5373] overlayfs: missing 'lowerdir'
[  168.086696][ T5388] loop1: detected capacity change from 0 to 512
[  168.799860][ T5391] loop0: detected capacity change from 0 to 512
[  170.204818][ T4242] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  170.226646][ T4242] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  170.382750][ T5391] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  170.526665][ T5388] EXT4-fs (loop1): orphan cleanup on readonly fs
[  170.558295][ T5388] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.237: bg 0: block 248: padding at end of block bitmap is not set
[  170.583749][ T5388] Quota error (device loop1): write_blk: dquota write failed
[  170.591993][ T5388] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  170.602264][ T5388] EXT4-fs error (device loop1): ext4_acquire_dquot:6197: comm syz.1.237: Failed to acquire dquot type 1
[  170.636349][ T5388] EXT4-fs (loop1): 1 truncate cleaned up
[  170.645779][ T5388] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  170.934372][ T5388] syz.1.237 (5388) used greatest stack depth: 19200 bytes left
[  171.825582][ T5408] loop1: detected capacity change from 0 to 1024
[  171.958180][ T5408] EXT4-fs (loop1): Test dummy encryption mode enabled
[  172.041573][ T5408] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  172.082925][ T5395] loop3: detected capacity change from 0 to 40427
[  172.444411][ T5395] F2FS-fs (loop3): Found nat_bits in checkpoint
[  173.156177][ T5426] loop2: detected capacity change from 0 to 512
[  173.294604][ T5426] EXT4-fs (loop2): 1 orphan inode deleted
[  173.331505][ T5426] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  174.271833][ T5455] loop2: detected capacity change from 0 to 2048
[  174.548552][ T5455] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  174.572922][ T5455] EXT4-fs error (device loop2): ext4_find_extent:929: inode #2: comm syz.2.244: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  175.344078][ T5474] loop3: detected capacity change from 0 to 128
[  175.486511][ T5454] loop1: detected capacity change from 0 to 40427
[  175.525356][ T5477] loop5: detected capacity change from 0 to 128
[  175.537536][ T5474] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  175.603227][ T5474] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  175.651887][ T5477] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  175.788766][ T5477] netlink: 28 bytes leftover after parsing attributes in process `syz.5.251'.
[  175.817102][ T5488] loop2: detected capacity change from 0 to 1024
[  176.712241][ T5495] overlayfs: missing 'lowerdir'
[  176.932449][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #18a!!!
[  176.941831][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.951253][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.960562][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.969989][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.979256][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.988523][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  176.997663][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  177.006931][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  177.015936][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!!
[  177.207564][ T5488] EXT4-fs (loop2): Test dummy encryption mode enabled
[  177.948069][ T5488] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  178.064707][ T5501] loop0: detected capacity change from 0 to 2048
[  178.450911][ T5501]  loop0: unable to read partition table
[  178.556749][ T5501] loop0: partition table beyond EOD, truncated
[  178.631501][ T5501] loop_reread_partitions: partition scan of loop0 () failed (rc=-5)
[  179.945140][ T3545]  loop0: unable to read partition table
[  179.968713][ T3545] loop0: partition table beyond EOD, truncated
[  180.241992][ T5518] loop2: detected capacity change from 0 to 40427
[  180.355022][ T5518] F2FS-fs (loop2): Found nat_bits in checkpoint
[  180.361708][ T1110] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  180.676434][ T5551] loop5: detected capacity change from 0 to 512
[  180.687513][ T1110] usb 1-1: Using ep0 maxpacket: 16
[  180.694661][ T5518] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  180.705762][ T5554] loop1: detected capacity change from 0 to 128
[  180.780298][ T5554] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  180.798573][ T5554] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  180.820405][ T5551] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.264: casefold flag without casefold feature
[  180.837279][ T1110] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.863151][ T1110] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  180.879363][ T5551] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.264: couldn't read orphan inode 15 (err -117)
[  180.906850][ T5551] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  181.655716][ T4173] attempt to access beyond end of device
[  181.655716][ T4173] loop2: rw=2049, want=45104, limit=40427
[  181.687614][ T1110] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  181.707066][ T1110] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.726758][ T1110] usb 1-1: Product: syz
[  181.737906][ T1110] usb 1-1: Manufacturer: syz
[  181.752500][ T1110] usb 1-1: SerialNumber: syz
[  182.117591][ T1110] usb 1-1: 0:2 : does not exist
[  182.173634][ T1110] usb 1-1: USB disconnect, device number 3
[  182.312972][ T5554] overlayfs: missing 'lowerdir'
[  182.881269][ T5575] loop2: detected capacity change from 0 to 1024
[  182.956351][ T5579] loop0: detected capacity change from 0 to 512
[  182.987216][ T5575] EXT4-fs (loop2): Test dummy encryption mode enabled
[  183.035323][ T5575] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  183.176185][ T5579] EXT4-fs (loop0): 1 orphan inode deleted
[  183.184401][ T5579] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  183.334928][ T5586] netlink: 8 bytes leftover after parsing attributes in process `syz.3.273'.
[  183.566202][ T5586] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.582056][ T5605] loop5: detected capacity change from 0 to 256
[  185.861075][ T5605] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  185.950205][ T5612] loop1: detected capacity change from 0 to 1024
[  186.132698][ T4210] Bluetooth: hci2: command 0x0406 tx timeout
[  186.146686][ T4210] Bluetooth: hci3: command 0x0406 tx timeout
[  186.154368][ T4210] Bluetooth: hci4: command 0x0406 tx timeout
[  187.530820][ T5605] attempt to access beyond end of device
[  187.530820][ T5605] loop5: rw=524288, want=408, limit=256
[  187.550310][ T5605] attempt to access beyond end of device
[  187.550310][ T5605] loop5: rw=524288, want=664, limit=256
[  187.566674][ T5605] attempt to access beyond end of device
[  187.566674][ T5605] loop5: rw=0, want=288, limit=256
[  187.673863][   T26] audit: type=1800 audit(187.569:205): pid=5605 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.278" name="file1" dev="loop5" ino=1048596 res=0 errno=0
[  188.268910][ T5612] EXT4-fs (loop1): Ignoring removed bh option
[  188.364243][ T5628] loop0: detected capacity change from 0 to 1024
[  188.437665][   T26] audit: type=1326 audit(188.409:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.487643][ T5612] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  188.530157][   T26] audit: type=1326 audit(188.429:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.602459][   T26] audit: type=1326 audit(188.429:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.749798][   T26] audit: type=1326 audit(188.439:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.786332][   T26] audit: type=1326 audit(188.439:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.822564][   T26] audit: type=1326 audit(188.439:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.852510][   T26] audit: type=1326 audit(188.439:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.887782][   T26] audit: type=1326 audit(188.439:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  188.942366][ T5628] EXT4-fs (loop0): Test dummy encryption mode enabled
[  188.977309][   T26] audit: type=1326 audit(188.439:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5630 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  189.079759][ T5628] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  189.138816][ T5644] loop5: detected capacity change from 0 to 512
[  189.203477][ T5644] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.285: casefold flag without casefold feature
[  189.261232][ T5644] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.285: couldn't read orphan inode 15 (err -117)
[  189.290235][ T5644] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  189.821910][ T5658] loop2: detected capacity change from 0 to 128
[  190.039282][ T5658] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  190.370887][ T5658] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  191.141488][ T5667] overlayfs: missing 'lowerdir'
[  191.452497][ T5666] loop0: detected capacity change from 0 to 128
[  191.629619][ T5669] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  192.258149][ T4242] Bluetooth: hci5: Frame reassembly failed (-84)
[  192.265645][  T144] Bluetooth: hci5: Frame reassembly failed (-84)
[  192.281236][ T5666] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  192.365935][ T5666] EXT4-fs warning (device loop0): __ext4_ioctl:881: Setting inode version is not supported with metadata_csum enabled.
[  192.653501][ T5682] loop1: detected capacity change from 0 to 512
[  192.665889][ T5683] loop0: detected capacity change from 0 to 1024
[  192.726993][ T5682] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  192.748944][ T5683] EXT4-fs (loop0): Ignoring removed bh option
[  192.932003][ T5689] loop3: detected capacity change from 0 to 1024
[  192.961634][ T5683] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  193.020923][ T5689] EXT4-fs (loop3): Test dummy encryption mode enabled
[  193.899264][ T5689] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  194.206522][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.212891][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.277498][ T4210] Bluetooth: hci5: command 0x1003 tx timeout
[  194.290689][ T4168] Bluetooth: hci5: sending frame failed (-49)
[  196.450526][ T5712] loop1: detected capacity change from 0 to 512
[  197.209895][ T4210] Bluetooth: hci5: command 0x1001 tx timeout
[  197.217790][ T4168] Bluetooth: hci5: sending frame failed (-49)
[  197.652415][ T5718] device bridge2 entered promiscuous mode
[  198.431424][ T5712] EXT4-fs (loop1): orphan cleanup on readonly fs
[  198.453324][ T5712] Quota error (device loop1): find_tree_dqentry: Getting block too big (196613 >= 6)
[  198.463791][ T5712] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  198.473916][ T5712] EXT4-fs error (device loop1): ext4_acquire_dquot:6197: comm syz.1.307: Failed to acquire dquot type 1
[  198.505882][ T5712] EXT4-fs (loop1): 1 truncate cleaned up
[  198.517472][ T5712] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  199.237996][ T4442] Bluetooth: hci5: command 0x1009 tx timeout
[  200.486068][ T5729] loop5: detected capacity change from 0 to 512
[  200.653267][ T5729] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.312: casefold flag without casefold feature
[  200.666673][ T5729] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.312: couldn't read orphan inode 15 (err -117)
[  200.682618][ T5729] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  201.806132][ T5746] loop5: detected capacity change from 0 to 1024
[  202.060462][ T5748] loop1: detected capacity change from 0 to 2048
[  202.170363][ T5746] EXT4-fs (loop5): Test dummy encryption mode enabled
[  202.201045][ T5748] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[  202.201045][ T5748] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  202.201045][ T5748] 
[  202.493353][ T5748] EXT4-fs (loop1): mounted filesystem without journal. Opts: noacl,,errors=continue. Quota mode: none.
[  203.051552][ T5746] EXT4-fs (loop5): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  203.479172][ T5752] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  203.786717][ T5758] process 'syz.2.318' launched './file0' with NULL argv: empty string added
[  204.965077][    T9] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  205.157495][    T9] EXT4-fs (loop1): This should not happen!! Data will be lost
[  205.157495][    T9] 
[  206.001991][ T5764] loop3: detected capacity change from 0 to 512
[  206.203932][    T9] EXT4-fs (loop1): Total free blocks count 0
[  206.326326][    T9] EXT4-fs (loop1): Free/Dirty block details
[  206.462930][    T9] EXT4-fs (loop1): free_blocks=66060288
[  206.564847][    T9] EXT4-fs (loop1): dirty_blocks=16
[  206.660028][    T9] EXT4-fs (loop1): Block reservation details
[  206.779165][    T9] EXT4-fs (loop1): i_reserved_data_blocks=1
[  207.319039][ T5764] EXT4-fs (loop3): Test dummy encryption mode enabled
[  207.326510][ T5764] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  208.840381][ T5764] EXT4-fs: failed to create workqueue
[  208.845935][ T5764] EXT4-fs (loop3): mount failed
[  208.930151][   T26] audit: type=1326 audit(208.899:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5766 comm="syz.5.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ccbc54da9 code=0x7ffc0000
[  209.026526][   T26] audit: type=1326 audit(208.919:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5766 comm="syz.5.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ccbc54da9 code=0x7ffc0000
[  209.157490][   T26] audit: type=1326 audit(208.919:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5766 comm="syz.5.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f2ccbc54da9 code=0x7ffc0000
[  209.267408][   T26] audit: type=1326 audit(208.929:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5766 comm="syz.5.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ccbc54da9 code=0x7ffc0000
[  209.445705][   T26] audit: type=1326 audit(208.929:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5766 comm="syz.5.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ccbc54da9 code=0x7ffc0000
[  209.515881][ T5780] loop5: detected capacity change from 0 to 512
[  209.536338][ T5784] loop0: detected capacity change from 0 to 512
[  209.635676][ T5781] loop1: detected capacity change from 0 to 512
[  209.676715][ T5784] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  209.831745][ T5780] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.326: casefold flag without casefold feature
[  209.855921][ T5784] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=.,nolazytime,,errors=continue. Quota mode: writeback.
[  209.899060][ T5780] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.326: couldn't read orphan inode 15 (err -117)
[  209.915187][   T26] audit: type=1800 audit(209.879:220): pid=5784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.325" name="file1" dev="loop0" ino=15 res=0 errno=0
[  209.953383][   T26] audit: type=1800 audit(209.899:221): pid=5784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.325" name="file2" dev="loop0" ino=16 res=0 errno=0
[  209.985574][ T5780] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  211.392911][ T5804] loop1: detected capacity change from 0 to 1024
[  211.504701][ T5804] EXT4-fs (loop1): Test dummy encryption mode enabled
[  211.607165][ T5804] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  212.312275][ T5820] loop5: detected capacity change from 0 to 512
[  212.980969][ T5820] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  213.360530][ T5827] loop1: detected capacity change from 0 to 256
[  214.212865][ T5831] loop2: detected capacity change from 0 to 128
[  214.821410][ T5831] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  215.079873][ T5831] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  215.131049][ T5827] FAT-fs (loop1): Unrecognized mount option "errors=remounTéŲԙ:ŒúĐügt-ro" or missing value
[  215.856342][ T5845] loop5: detected capacity change from 0 to 1024
[  216.038856][ T5850] overlayfs: missing 'lowerdir'
[  216.329637][ T5845] EXT4-fs (loop5): Ignoring removed bh option
[  216.380991][ T5845] EXT4-fs (loop5): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  216.801635][ T5856] loop2: detected capacity change from 0 to 1024
[  216.889450][ T5856] EXT4-fs (loop2): Test dummy encryption mode enabled
[  217.090486][ T5842] loop0: detected capacity change from 0 to 40427
[  217.111261][ T5856] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  218.415672][ T5842] F2FS-fs (loop0): Found nat_bits in checkpoint
[  218.624770][ T5876] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  218.676481][ T5876] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  220.731731][ T5901] loop2: detected capacity change from 0 to 128
[  220.760279][ T5903] loop3: detected capacity change from 0 to 1024
[  220.968318][ T5908] loop0: detected capacity change from 0 to 1024
[  221.013370][ T5901] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  221.013704][ T5908] EXT4-fs (loop0): Test dummy encryption mode enabled
[  221.023671][ T5903] EXT4-fs (loop3): Ignoring removed bh option
[  221.043592][ T5901] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  221.073333][ T5908] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  221.342272][ T5903] EXT4-fs (loop3): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  221.912414][ T5921] overlayfs: missing 'lowerdir'
[  222.225769][   T26] audit: type=1800 audit(222.099:222): pid=5903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.357" name="file1" dev="loop3" ino=15 res=0 errno=0
[  225.991894][ T5955] loop2: detected capacity change from 0 to 1024
[  226.212638][ T5955] EXT4-fs (loop2): Test dummy encryption mode enabled
[  226.446454][ T5955] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  226.865637][ T5978] loop2: detected capacity change from 0 to 128
[  226.954291][ T5978] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  226.991727][ T5978] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  227.405203][ T5987] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  227.414166][ T5987] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  227.422671][ T5987] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  228.195469][ T5994] syz.2.379[5994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.195654][ T5994] syz.2.379[5994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.349794][ T6011] tipc: Started in network mode
[  229.366849][ T6011] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  229.391326][ T6011] tipc: Enabled bearer <udp:syz0>, priority 10
[  230.164971][ T6015] loop2: detected capacity change from 0 to 512
[  230.383409][ T6015] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.383: casefold flag without casefold feature
[  230.438009][ T6015] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.383: couldn't read orphan inode 15 (err -117)
[  230.452811][ T1108] tipc: Node number set to 4269801488
[  230.511156][ T6021] loop1: detected capacity change from 0 to 256
[  230.521668][ T6015] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  231.671039][ T6019] loop0: detected capacity change from 0 to 40427
[  231.804429][ T6019] F2FS-fs (loop0): Found nat_bits in checkpoint
[  231.965720][ T6019] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  232.231216][ T4442] Bluetooth: hci1: command 0x0406 tx timeout
[  232.745703][ T6027] loop3: detected capacity change from 0 to 40427
[  232.756721][ T4176] attempt to access beyond end of device
[  232.756721][ T4176] loop0: rw=2049, want=45104, limit=40427
[  232.972155][ T6027] F2FS-fs (loop3): Found nat_bits in checkpoint
[  233.114875][ T6027] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  235.131590][ T6056] loop2: detected capacity change from 0 to 1024
[  235.198028][ T4178] attempt to access beyond end of device
[  235.198028][ T4178] loop3: rw=2049, want=45104, limit=40427
[  235.260342][ T6056] EXT4-fs (loop2): Test dummy encryption mode enabled
[  235.386717][ T6056] EXT4-fs (loop2): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  235.674571][ T6062] loop0: detected capacity change from 0 to 128
[  235.740663][ T6062] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  235.760134][ T6062] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  235.827656][ T6066] loop2: detected capacity change from 0 to 128
[  235.954612][ T6066] EXT4-fs (loop2): Test dummy encryption mode enabled
[  236.013915][ T6066] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  236.115890][ T6067] netlink: 4 bytes leftover after parsing attributes in process `syz.1.395'.
[  236.206640][ T6070] loop5: detected capacity change from 0 to 512
[  236.292543][ T6070] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.397: casefold flag without casefold feature
[  236.292810][ T6070] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.397: couldn't read orphan inode 15 (err -117)
[  236.293092][ T6070] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  236.345325][ T6074] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  236.511645][ T6074] loop3: detected capacity change from 0 to 1024
[  236.689054][ T6074] EXT4-fs (loop3): Invalid want_extra_isize 5
[  237.857320][ T4276] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  237.888115][ T6090] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  238.093346][ T6090] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  238.247360][ T4276] usb 4-1: Using ep0 maxpacket: 16
[  238.301488][ T6090] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  238.399842][ T4276] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.499509][ T4276] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  238.691934][ T4276] usb 4-1: config 0 interface 0 has no altsetting 0
[  238.874239][ T6080] loop1: detected capacity change from 0 to 40427
[  238.883396][ T4276] usb 4-1: New USB device found, idVendor=060b, idProduct=430a, bcdDevice= 0.00
[  238.963575][ T4276] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.012790][ T4276] usb 4-1: config 0 descriptor??
[  239.042691][ T6080] F2FS-fs (loop1): Found nat_bits in checkpoint
[  239.223381][ T6080] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  239.285140][ T6088] udc-core: couldn't find an available UDC or it's busy
[  239.314172][ T6088] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  239.801267][ T4276] hid (null): unknown global tag 0xd
[  239.806630][ T4276] hid (null): global environment stack underflow
[  239.853830][ T4276] hid (null): unknown global tag 0xd
[  239.887755][ T4276] hid (null): global environment stack underflow
[  239.927415][ T4276] hid (null): invalid report_size 10106
[  239.968478][ T4276] hid-generic 0003:060B:430A.0002: unexpected long global item
[  240.027961][ T4276] hid-generic: probe of 0003:060B:430A.0002 failed with error -22
[  240.138311][ T4167] attempt to access beyond end of device
[  240.138311][ T4167] loop1: rw=2049, want=45104, limit=40427
[  240.256198][ T6100] loop2: detected capacity change from 0 to 40427
[  240.379599][ T6100] F2FS-fs (loop2): Found nat_bits in checkpoint
[  240.506804][ T6100] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  240.849708][ T1108] usb 4-1: USB disconnect, device number 2
[  240.965202][ T6117] loop1: detected capacity change from 0 to 256
[  241.034821][ T4173] attempt to access beyond end of device
[  241.034821][ T4173] loop2: rw=2049, want=45104, limit=40427
[  241.734345][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.5.409'.
[  242.550361][ T6127] loop0: detected capacity change from 0 to 512
[  242.789558][ T6127] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.410: casefold flag without casefold feature
[  242.956911][ T6127] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.410: couldn't read orphan inode 15 (err -117)
[  243.249320][ T6127] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  243.663625][ T6141] loop2: detected capacity change from 0 to 128
[  243.746087][ T6145] loop5: detected capacity change from 0 to 128
[  243.763046][ T6141] EXT4-fs (loop2): Test dummy encryption mode enabled
[  243.899608][ T6141] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  243.984841][ T6145] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  244.097509][ T1108] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  244.286244][ T6145] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  244.518176][ T1108] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 10
[  244.713568][ T1108] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  244.897784][ T1108] usb 4-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  244.906862][ T1108] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.953799][ T1108] usb 4-1: Product: syz
[  244.958679][ T1108] usb 4-1: Manufacturer: syz
[  244.964904][ T1108] usb 4-1: SerialNumber: syz
[  244.974513][ T6155] loop2: detected capacity change from 0 to 1024
[  245.092058][ T6155] EXT4-fs (loop2): Ignoring removed bh option
[  245.162058][ T6155] EXT4-fs (loop2): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  245.177471][ T1108] usb 4-1: config 0 descriptor??
[  245.295473][ T1108] hub 4-1:0.0: bad descriptor, ignoring hub
[  245.319341][ T6159] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  245.328213][ T6159] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  245.336743][ T6159] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  245.721221][ T1108] hub: probe of 4-1:0.0 failed with error -5
[  246.011640][ T1108] snd-usb-audio: probe of 4-1:0.0 failed with error -12
[  246.063539][ T4546] udevd[4546]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  246.145450][ T1108] usb 4-1: USB disconnect, device number 3
[  246.788755][ T6153] loop0: detected capacity change from 0 to 40427
[  247.006307][ T6153] F2FS-fs (loop0): Found nat_bits in checkpoint
[  247.255735][ T6153] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  248.306832][ T6190] loop1: detected capacity change from 0 to 512
[  248.458675][ T4176] attempt to access beyond end of device
[  248.458675][ T4176] loop0: rw=2049, want=45104, limit=40427
[  248.555978][ T6190] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.424: casefold flag without casefold feature
[  248.593689][ T6190] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.424: couldn't read orphan inode 15 (err -117)
[  248.648660][ T6190] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  248.690224][ T6195] loop5: detected capacity change from 0 to 128
[  248.772414][ T6195] EXT4-fs (loop5): Test dummy encryption mode enabled
[  248.865856][ T6195] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  249.932996][ T6204] loop5: detected capacity change from 0 to 128
[  250.076248][ T6204] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  250.127056][ T6204] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  250.136047][ T6206] netlink: 68 bytes leftover after parsing attributes in process `syz.0.426'.
[  250.351918][ T6200] loop2: detected capacity change from 0 to 40427
[  250.583589][ T6200] F2FS-fs (loop2): Found nat_bits in checkpoint
[  251.924739][ T6200] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  253.241635][ T6240] loop0: detected capacity change from 0 to 512
[  253.277583][ T4173] attempt to access beyond end of device
[  253.277583][ T4173] loop2: rw=2049, want=45104, limit=40427
[  253.337636][ T6242] loop3: detected capacity change from 0 to 1024
[  253.378294][ T6240] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.438: casefold flag without casefold feature
[  253.436993][ T6240] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.438: couldn't read orphan inode 15 (err -117)
[  253.495977][ T6240] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  253.521071][ T6242] EXT4-fs (loop3): Ignoring removed bh option
[  253.612295][ T6242] EXT4-fs (loop3): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  255.644050][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.650906][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  256.765374][   T26] audit: type=1326 audit(256.729:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6272 comm="syz.2.448" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x0
[  256.949145][ T6282] overlayfs: failed to resolve './file0': -2
[  257.557653][ T6291] loop2: detected capacity change from 0 to 512
[  257.676846][ T6291] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.451: casefold flag without casefold feature
[  257.767597][ T6291] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.451: couldn't read orphan inode 15 (err -117)
[  257.792569][ T6291] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  260.166276][ T6310] input: syz0 as /devices/virtual/input/input9
[  262.025783][ T6331] loop2: detected capacity change from 0 to 1024
[  262.341451][ T6331] EXT4-fs (loop2): Ignoring removed bh option
[  263.229788][ T6331] EXT4-fs (loop2): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  264.899065][ T6353] loop0: detected capacity change from 0 to 512
[  266.791892][ T6380] loop1: detected capacity change from 0 to 1024
[  267.705663][ T6380] EXT4-fs (loop1): Ignoring removed bh option
[  267.773083][ T6380] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  269.403382][ T6391] loop5: detected capacity change from 0 to 512
[  269.809480][ T6401] loop1: detected capacity change from 0 to 128
[  269.923927][ T6391] Quota error (device loop5): v2_read_file_info: Can't read info structure
[  269.971858][ T6391] EXT4-fs warning (device loop5): ext4_enable_quotas:6432: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  270.061311][ T6391] EXT4-fs (loop5): mount failed
[  270.077585][ T6401] EXT4-fs (loop1): Test dummy encryption mode enabled
[  270.122420][ T6404] loop2: detected capacity change from 0 to 512
[  270.157073][ T6401] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  270.303634][ T6391] loop5: detected capacity change from 0 to 2048
[  270.350078][ T6409] loop2: detected capacity change from 0 to 128
[  270.382102][ T6409] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  270.395207][ T6391]  loop5: p1 < > p2 p3 < p5 >
[  270.413063][ T6391] loop5: partition table partially beyond EOD, truncated
[  270.428493][ T6391] loop5: p1 start 4278190080 is beyond EOD, truncated
[  270.456228][ T6409] netlink: 28 bytes leftover after parsing attributes in process `syz.2.485'.
[  270.482947][ T6391] loop5: p2 start 16908288 is beyond EOD, truncated
[  270.862907][ T6391] loop5: p5 start 16908288 is beyond EOD, truncated
[  271.429549][ T6419] loop1: detected capacity change from 0 to 1024
[  272.627746][ T6419] EXT4-fs (loop1): Test dummy encryption mode enabled
[  272.835028][ T3545]  loop5: p1 < > p2 p3 < p5 >
[  272.907960][ T6419] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  272.926691][ T3545] loop5: partition table partially beyond EOD, truncated
[  272.944412][ T3545] loop5: p1 start 4278190080 is beyond EOD, truncated
[  272.953485][ T3545] loop5: p2 start 16908288 is beyond EOD, truncated
[  272.964868][ T3545] loop5: p5 start 16908288 is beyond EOD, truncated
[  273.259096][ T6427] loop5: detected capacity change from 0 to 256
[  273.328324][ T6427] exfat: Deprecated parameter 'namecase'
[  273.406750][ T6427] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  273.561140][ T4160] udevd[4160]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  275.437519][ T6450] loop1: detected capacity change from 0 to 512
[  275.802447][ T6454] loop5: detected capacity change from 0 to 128
[  275.915600][ T6454] EXT4-fs (loop5): Test dummy encryption mode enabled
[  276.029801][ T6454] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  276.475595][ T6465] loop5: detected capacity change from 0 to 4096
[  277.588107][ T6469] loop1: detected capacity change from 0 to 1024
[  277.623789][ T6465] EXT4-fs (loop5): Test dummy encryption mode enabled
[  277.685431][ T6469] EXT4-fs (loop1): Test dummy encryption mode enabled
[  277.728680][ T6465] EXT4-fs (loop5): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[  277.881626][ T6469] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  277.956825][ T6465] netlink: 'syz.5.498': attribute type 12 has an invalid length.
[  278.875434][ T6489] loop5: detected capacity change from 0 to 4096
[  278.890109][ T6491] loop3: detected capacity change from 0 to 256
[  278.933972][ T6493] loop0: detected capacity change from 0 to 128
[  278.946939][ T6491] exfat: Deprecated parameter 'namecase'
[  279.000907][ T6489] EXT4-fs (loop5): Ignoring removed orlov option
[  279.011019][ T6489] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled
[  279.030408][ T6493] EXT4-fs (loop0): Test dummy encryption mode enabled
[  279.063940][ T6491] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  279.125708][ T6493] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  279.145584][ T6489] EXT4-fs (loop5): mounted filesystem without journal. Opts: bsdgroups,noauto_da_alloc,nolazytime,orlov,data_err=abort,nojournal_checksum,nobarrier,jqfmt=vfsold,,errors=continue. Quota mode: writeback.
[  279.822488][ T6516] loop5: detected capacity change from 0 to 1024
[  279.991579][ T6516] EXT4-fs (loop5): Test dummy encryption mode enabled
[  280.036870][ T6516] EXT4-fs (loop5): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  280.410086][ T6510] loop0: detected capacity change from 0 to 40427
[  280.503362][ T6510] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  280.537208][ T6510] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  280.599464][ T6510] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  280.729867][ T1108] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  280.755857][ T6510] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  280.767295][ T6510] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  281.116879][ T6519] loop1: detected capacity change from 0 to 40427
[  281.536633][ T6531] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  281.557512][ T1108] usb 6-1: Using ep0 maxpacket: 32
[  281.569711][ T6519] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  281.727991][ T1108] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  281.748393][ T6519] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  281.955371][ T1108] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  281.988453][ T6519] F2FS-fs (loop1): Found nat_bits in checkpoint
[  282.016181][ T1108] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  282.076637][ T1108] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.125085][ T1108] usb 6-1: config 0 descriptor??
[  282.136222][ T6541] loop2: detected capacity change from 0 to 128
[  282.192103][ T1108] hub 6-1:0.0: USB hub found
[  282.201770][ T4176] attempt to access beyond end of device
[  282.201770][ T4176] loop0: rw=2049, want=45104, limit=40427
[  282.203067][ T6519] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  282.221800][ T6541] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  282.240025][ T6541] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  282.261686][ T6519] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  282.333351][   T26] audit: type=1800 audit(282.295:224): pid=6519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.516" name="bus" dev="loop1" ino=10 res=0 errno=0
[  282.373489][    C0] blk_update_request: operation not supported error, dev loop1, sector 0 op 0x9:(WRITE_ZEROES) flags 0x800800 phys_seg 0 prio class 0
[  282.458220][ T1108] hub 6-1:0.0: 1 port detected
[  282.483464][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.483540][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.503356][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.513230][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.523510][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.531541][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.731463][ T4167] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  282.817801][ T1108] hub 6-1:0.0: hub_hub_status failed (err = -71)
[  283.046927][ T1108] hub 6-1:0.0: config failed, can't get hub status (err -71)
[  283.187399][ T1108] usbhid 6-1:0.0: can't add hid device: -71
[  283.193620][ T1108] usbhid: probe of 6-1:0.0 failed with error -71
[  283.308270][ T1108] usb 6-1: USB disconnect, device number 2
[  283.642282][ T6563] loop2: detected capacity change from 0 to 256
[  283.856171][ T6568] loop3: detected capacity change from 0 to 512
[  286.423625][ T6572] loop5: detected capacity change from 0 to 1024
[  286.488553][ T6568] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #15: comm syz.3.531: casefold flag without casefold feature
[  286.526853][ T6568] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.531: couldn't read orphan inode 15 (err -117)
[  286.552039][ T6572] EXT4-fs (loop5): Ignoring removed bh option
[  286.558482][ T6568] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  286.637361][ T6572] EXT4-fs (loop5): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  286.825602][ T6583] binder_alloc: 6582: pid 6582 spamming oneway? 1 buffers allocated for a total size of 4096
[  287.643971][ T6594] loop3: detected capacity change from 0 to 128
[  287.856555][ T6594] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  288.243331][ T6594] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  289.404847][ T6606] loop1: detected capacity change from 0 to 512
[  290.648748][ T6621] loop5: detected capacity change from 0 to 256
[  291.962310][   T26] audit: type=1326 audit(291.925:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.005770][ T6633] loop0: detected capacity change from 0 to 512
[  292.008735][   T26] audit: type=1326 audit(291.965:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.085577][   T26] audit: type=1326 audit(291.995:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.162844][ T6635] loop1: detected capacity change from 0 to 1024
[  292.169824][   T26] audit: type=1326 audit(291.995:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.247270][   T26] audit: type=1326 audit(291.995:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.277853][ T6635] EXT4-fs (loop1): Ignoring removed bh option
[  292.312233][ T6633] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.546: casefold flag without casefold feature
[  292.335733][ T6633] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.546: couldn't read orphan inode 15 (err -117)
[  292.339662][   T26] audit: type=1326 audit(291.995:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.372248][   T26] audit: type=1326 audit(291.995:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.394323][   T26] audit: type=1326 audit(291.995:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.396398][ T6635] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  292.476314][ T6633] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  292.508823][   T26] audit: type=1326 audit(292.005:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  292.530764][   T26] audit: type=1326 audit(292.005:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d0d40fda9 code=0x7ffc0000
[  296.632093][ T6668] loop0: detected capacity change from 0 to 256
[  297.766402][ T6684] loop3: detected capacity change from 0 to 128
[  297.837365][ T6684] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  297.868379][ T6684] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  298.605872][ T6689] loop5: detected capacity change from 0 to 256
[  298.780930][ T6691] loop2: detected capacity change from 0 to 128
[  298.810485][ T6689] exfat: Unknown parameter 'nameŠ}t'
[  298.865306][ T6694] loop0: detected capacity change from 0 to 512
[  298.876491][ T6691] EXT4-fs (loop2): Test dummy encryption mode enabled
[  299.548778][ T6691] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  299.567346][ T6694] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.562: casefold flag without casefold feature
[  299.990037][ T6694] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.562: couldn't read orphan inode 15 (err -117)
[  300.072515][ T6694] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  300.340212][ T6708] loop1: detected capacity change from 0 to 1024
[  300.415647][ T6708] EXT4-fs (loop1): Ignoring removed bh option
[  300.630225][ T6708] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  300.663114][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  300.663131][   T26] audit: type=1326 audit(300.625:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.2.565" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x0
[  301.854809][ T6726] loop0: detected capacity change from 0 to 256
[  301.882029][ T6732] loop5: detected capacity change from 0 to 16
[  302.010128][ T6732] erofs: (device loop5): mounted with root inode @ nid 36.
[  303.276593][ T6745] loop3: detected capacity change from 0 to 256
[  303.338186][ T6745] exfat: Deprecated parameter 'namecase'
[  303.828504][ T6737] erofs: (device loop5): z_erofs_map_blocks_iter: unknown type 3 @ offset 45055 of nid 36
[  304.177099][ T6737] erofs: (device loop5): z_erofs_readahead: readahead error at page 10 @ nid 36
[  304.186713][ T6737] erofs: (device loop5): z_erofs_map_blocks_iter: invalid logical cluster 0 at nid 36
[  304.196400][ T6737] erofs: (device loop5): z_erofs_readahead: readahead error at page 0 @ nid 36
[  304.240069][ T6745] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  304.257534][ T6737] attempt to access beyond end of device
[  304.257534][ T6737] loop5: rw=524288, want=312, limit=16
[  304.307968][ T6737] attempt to access beyond end of device
[  304.307968][ T6737] loop5: rw=524288, want=1049280, limit=16
[  304.351555][ T6737] attempt to access beyond end of device
[  304.351555][ T6737] loop5: rw=524288, want=6536, limit=16
[  304.382128][ T6737] attempt to access beyond end of device
[  304.382128][ T6737] loop5: rw=524288, want=34359736344, limit=16
[  304.403211][ T6737] attempt to access beyond end of device
[  304.403211][ T6737] loop5: rw=524288, want=24, limit=16
[  304.420955][ T6737] attempt to access beyond end of device
[  304.420955][ T6737] loop5: rw=524288, want=736, limit=16
[  304.435283][ T6737] attempt to access beyond end of device
[  304.435283][ T6737] loop5: rw=524288, want=536576872, limit=16
[  304.835043][ T6754] netlink: 24 bytes leftover after parsing attributes in process `syz.3.579'.
[  306.081526][ T6743] loop0: detected capacity change from 0 to 40427
[  306.097600][ T4212] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  306.193037][ T6743] F2FS-fs (loop0): Found nat_bits in checkpoint
[  306.348350][ T6774] loop5: detected capacity change from 0 to 128
[  306.373395][ T4212] usb 3-1: Using ep0 maxpacket: 32
[  306.392800][ T6774] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  306.444310][ T6774] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  306.537318][ T4212] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  306.558727][ T4212] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  306.594763][ T4212] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  306.614624][ T4212] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.656615][ T4212] usb 3-1: config 0 descriptor??
[  306.709453][ T4212] hub 3-1:0.0: bad descriptor, ignoring hub
[  306.715408][ T4212] hub: probe of 3-1:0.0 failed with error -5
[  306.774494][ T4212] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  307.573793][ T4212] usb 3-1: USB disconnect, device number 3
[  307.602031][ T6779] loop5: detected capacity change from 0 to 256
[  308.819543][ T6788] loop2: detected capacity change from 0 to 128
[  308.995278][ T6788] EXT4-fs (loop2): Test dummy encryption mode enabled
[  309.034564][ T6788] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  310.953453][   T26] audit: type=1326 audit(310.915:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.050647][   T26] audit: type=1326 audit(310.965:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.110064][ T6817] loop3: detected capacity change from 0 to 256
[  311.115455][   T26] audit: type=1326 audit(310.965:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.168095][ T6817] exfat: Deprecated parameter 'namecase'
[  311.201824][   T26] audit: type=1326 audit(310.975:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.264236][   T26] audit: type=1326 audit(310.975:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.277629][ T6817] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  311.312045][   T26] audit: type=1326 audit(310.975:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.396874][   T26] audit: type=1326 audit(310.975:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  311.455321][ T6821] loop2: detected capacity change from 0 to 128
[  311.618316][ T6821] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  311.645254][ T6821] netlink: 28 bytes leftover after parsing attributes in process `syz.2.597'.
[  313.776519][ T6828] loop3: detected capacity change from 0 to 512
[  313.842018][ T6831] input: syz0 as /devices/virtual/input/input10
[  314.396658][ T6844] netlink: 24 bytes leftover after parsing attributes in process `syz.1.603'.
[  315.398115][ T6854] loop0: detected capacity change from 0 to 512
[  315.456073][   T26] audit: type=1326 audit(315.415:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  315.769145][ T6854] EXT4-fs (loop0): 1 orphan inode deleted
[  315.775096][ T6854] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  316.008923][   T26] audit: type=1326 audit(315.445:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.311759][   T26] audit: type=1326 audit(315.445:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.427088][   T26] audit: type=1326 audit(315.455:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.460761][   T26] audit: type=1326 audit(315.465:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.482745][   T26] audit: type=1326 audit(315.475:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.504645][   T26] audit: type=1326 audit(315.485:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.528754][   T26] audit: type=1326 audit(315.485:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6851 comm="syz.2.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c7c97fda9 code=0x7ffc0000
[  316.576816][ T6862] loop2: detected capacity change from 0 to 128
[  316.592826][ T6864] loop1: detected capacity change from 0 to 256
[  317.257698][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  317.264141][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.295037][ T6864] exfat: Deprecated parameter 'namecase'
[  317.331617][ T6862] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  317.367995][ T6864] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  317.461077][ T6862] netlink: 28 bytes leftover after parsing attributes in process `syz.2.609'.
[  318.594188][ T6877] input: syz0 as /devices/virtual/input/input11
[  318.670736][ T4160] udevd[4160]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  318.973035][ T6885] loop2: detected capacity change from 0 to 512
[  319.524383][ T6894] netlink: 24 bytes leftover after parsing attributes in process `syz.2.616'.
[  320.234736][ T6880] loop3: detected capacity change from 0 to 40427
[  320.363358][ T6880] F2FS-fs (loop3): Found nat_bits in checkpoint
[  320.549765][ T6880] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  320.641610][ T6888] loop0: detected capacity change from 0 to 40427
[  320.909026][ T6888] F2FS-fs (loop0): Found nat_bits in checkpoint
[  320.936553][ T4178] attempt to access beyond end of device
[  320.936553][ T4178] loop3: rw=2049, want=45104, limit=40427
[  321.085590][ T6888] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  321.695625][   T26] audit: type=1326 audit(321.655:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  321.750997][   T26] audit: type=1326 audit(321.655:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  321.831723][   T26] audit: type=1326 audit(321.655:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  321.964464][ T6923] loop3: detected capacity change from 0 to 512
[  322.119931][ T6923] EXT4-fs (loop3): 1 orphan inode deleted
[  322.125840][ T6923] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  322.187408][ T6923] EXT4-fs error (device loop3): ext4_lookup:1862: inode #2: comm syz.3.621: deleted inode referenced: 16
[  322.205595][ T6923] EXT4-fs (loop3): Remounting filesystem read-only
[  322.234970][   T26] audit: type=1326 audit(321.665:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  322.783803][   T26] audit: type=1326 audit(321.665:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  322.917387][   T26] audit: type=1326 audit(321.665:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  323.019273][   T26] audit: type=1326 audit(321.665:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff3e02da9 code=0x7ffc0000
[  324.144318][ T6931] input: syz0 as /devices/virtual/input/input12
[  324.356683][ T4176] attempt to access beyond end of device
[  324.356683][ T4176] loop0: rw=2049, want=45104, limit=40427
[  324.366987][ T6937] loop2: detected capacity change from 0 to 128
[  324.480412][ T6937] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  324.555902][ T6937] netlink: 28 bytes leftover after parsing attributes in process `syz.2.626'.
[  325.940255][ T6952] netlink: 24 bytes leftover after parsing attributes in process `syz.0.627'.
[  327.545878][ T6963] loop2: detected capacity change from 0 to 128
[  327.723266][ T6963] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  327.763988][ T6963] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  328.833679][ T6971] loop1: detected capacity change from 0 to 512
[  330.234623][ T6974] input: syz0 as /devices/virtual/input/input13
[  330.450329][ T6971] EXT4-fs (loop1): 1 orphan inode deleted
[  330.456240][ T6971] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  330.530089][ T6971] EXT4-fs error (device loop1): ext4_lookup:1862: inode #2: comm syz.1.634: deleted inode referenced: 16
[  330.546813][ T6971] EXT4-fs (loop1): Remounting filesystem read-only
[  332.367010][ T6987] loop5: detected capacity change from 0 to 128
[  332.448064][ T6987] EXT4-fs (loop5): Test dummy encryption mode enabled
[  333.360870][ T6999] netlink: 24 bytes leftover after parsing attributes in process `syz.2.642'.
[  333.818135][ T6987] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  333.932930][ T7003] loop2: detected capacity change from 0 to 128
[  334.054052][ T7006] loop1: detected capacity change from 0 to 256
[  334.068436][ T7007] loop3: detected capacity change from 0 to 256
[  334.105071][ T7006] exfat: Deprecated parameter 'namecase'
[  334.147689][ T7003] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  334.205903][ T7006] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  334.274478][ T7003] netlink: 28 bytes leftover after parsing attributes in process `syz.2.644'.
[  334.312349][ T7011] loop5: detected capacity change from 0 to 128
[  336.228015][ T7011] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  337.218244][ T7011] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  337.434070][ T7022] input: syz0 as /devices/virtual/input/input14
[  337.606108][ T7028] loop0: detected capacity change from 0 to 1024
[  337.693241][ T7028] EXT4-fs (loop0): Ignoring removed bh option
[  337.788140][ T7028] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  337.981329][ T7039] loop3: detected capacity change from 0 to 128
[  338.073619][ T7041] netlink: 24 bytes leftover after parsing attributes in process `syz.5.654'.
[  338.133213][ T7039] EXT4-fs (loop3): Test dummy encryption mode enabled
[  338.528040][ T7039] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  338.898496][ T7045] loop2: detected capacity change from 0 to 256
[  340.923734][ T7053] loop5: detected capacity change from 0 to 128
[  341.125468][ T7053] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  341.174673][ T7064] loop1: detected capacity change from 0 to 256
[  341.206398][ T7053] netlink: 28 bytes leftover after parsing attributes in process `syz.5.660'.
[  341.228141][ T7064] exfat: Deprecated parameter 'namecase'
[  341.235920][ T7066] loop3: detected capacity change from 0 to 128
[  341.279062][ T7064] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  341.449056][ T7066] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  341.511429][ T7066] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  341.595769][ T7068] binder: BINDER_SET_CONTEXT_MGR already set
[  341.602486][ T7068] binder: 7067:7068 ioctl 4018620d 200001c0 returned -16
[  344.778162][ T7074] input: syz0 as /devices/virtual/input/input15
[  344.966768][ T7078] loop0: detected capacity change from 0 to 128
[  345.146359][ T7078] EXT4-fs (loop0): Test dummy encryption mode enabled
[  346.128101][ T7078] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  346.130127][ T7093] loop2: detected capacity change from 0 to 128
[  346.149454][ T7091] loop3: detected capacity change from 0 to 256
[  346.323027][ T7093] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  346.336435][ T7094] netlink: 24 bytes leftover after parsing attributes in process `syz.5.667'.
[  346.382246][ T7093] netlink: 28 bytes leftover after parsing attributes in process `syz.2.672'.
[  347.781887][ T7101] loop0: detected capacity change from 0 to 1024
[  347.846552][ T7101] EXT4-fs (loop0): Ignoring removed bh option
[  347.914799][ T7101] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  348.036065][ T7111] loop2: detected capacity change from 0 to 256
[  348.137869][ T7111] exfat: Deprecated parameter 'namecase'
[  348.220011][ T7111] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  349.285909][ T7118] loop1: detected capacity change from 0 to 128
[  349.428984][ T7118] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  349.519484][ T7118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.677'.
[  350.162830][ T7123] loop5: detected capacity change from 0 to 128
[  350.244504][ T7123] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  350.311734][ T7123] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  351.165360][ T7136] binder: 7122:7136 ioctl 4018620d 0 returned -22
[  351.426852][ T7133] input: syz0 as /devices/virtual/input/input16
[  351.500237][ T7138] loop3: detected capacity change from 0 to 128
[  351.617539][ T7138] EXT4-fs (loop3): Test dummy encryption mode enabled
[  351.724550][ T7141] loop1: detected capacity change from 0 to 256
[  351.729801][ T7138] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  353.434947][ T7155] netlink: 24 bytes leftover after parsing attributes in process `syz.5.688'.
[  353.927799][ T7164] loop5: detected capacity change from 0 to 256
[  354.037847][ T7164] exfat: Deprecated parameter 'namecase'
[  354.101096][ T7168] input: syz0 as /devices/virtual/input/input17
[  354.223090][ T7164] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  354.277562][ T7171] loop3: detected capacity change from 0 to 128
[  355.422219][ T7173] loop0: detected capacity change from 0 to 128
[  355.773136][ T7171] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  356.031003][ T7171] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  356.120598][ T7186] loop2: detected capacity change from 0 to 128
[  356.660923][ T7189] loop1: detected capacity change from 0 to 2048
[  357.192811][ T7186] EXT4-fs (loop2): Test dummy encryption mode enabled
[  357.229250][ T7173] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  357.242984][ T7195] loop5: detected capacity change from 0 to 256
[  357.254992][ T7186] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  357.290995][ T7189] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none.
[  357.320969][ T7173] netlink: 28 bytes leftover after parsing attributes in process `syz.0.692'.
[  357.920987][   T26] audit: type=1800 audit(357.880:259): pid=7205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.697" name="file0" dev="loop1" ino=13 res=0 errno=0
[  357.921668][ T7210] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.697: bg 0: block 345: padding at end of block bitmap is not set
[  358.308036][ T7216] netlink: 24 bytes leftover after parsing attributes in process `syz.2.700'.
[  358.950347][ T7215] loop1: detected capacity change from 0 to 1024
[  358.994999][ T7218] input: syz0 as /devices/virtual/input/input18
[  359.023956][ T7215] EXT4-fs (loop1): Ignoring removed bh option
[  359.280430][ T7215] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,nombcache,barrier,norecovery,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,init_itable,,errors=continue. Quota mode: writeback.
[  360.310876][ T7230] loop3: detected capacity change from 0 to 40427
[  360.415582][ T7235] loop5: detected capacity change from 0 to 128
[  360.423586][ T7226] loop0: detected capacity change from 0 to 40427
[  360.457334][ T7235] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  360.482954][ T7230] F2FS-fs (loop3): Found nat_bits in checkpoint
[  360.547542][ T7235] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal
[  360.590354][ T7226] F2FS-fs (loop0): Found nat_bits in checkpoint
[  360.629221][ T7230] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  362.450835][ T7243] binder: 7234:7243 ioctl 4018620d 0 returned -22
[  362.742956][ T4178] attempt to access beyond end of device
[  362.742956][ T4178] loop3: rw=2049, want=45104, limit=40427
[  363.222437][ T7253] loop2: detected capacity change from 0 to 256
[  363.330479][ T7253] exfat: Deprecated parameter 'namecase'
[  363.354860][ T7255] loop0: detected capacity change from 0 to 128
[  363.396977][ T7253] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  363.437908][ T7255] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  363.561150][ T7259] loop3: detected capacity change from 0 to 128
[  363.582101][ T7255] netlink: 28 bytes leftover after parsing attributes in process `syz.0.714'.
[  363.671082][ T7259] EXT4-fs (loop3): Test dummy encryption mode enabled
[  365.245277][ T7259] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  366.703239][ T7275] netlink: 24 bytes leftover after parsing attributes in process `syz.1.716'.
[  367.380832][ T7274] loop3: detected capacity change from 0 to 256
[  367.506728][ T7278] input: syz0 as /devices/virtual/input/input19
[  367.630791][ T7279] loop0: detected capacity change from 0 to 128
[  368.507693][ T7279] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  368.724418][ T7279] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  368.988604][ T7291] loop1: detected capacity change from 0 to 512
[  369.223562][ T7291] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.725: casefold flag without casefold feature
[  369.267633][ T7291] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.725: couldn't read orphan inode 15 (err -117)
[  369.287197][ T7291] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  369.449483][ T7299] binder: 7277:7299 ioctl c0306201 0 returned -14
[  370.098577][ T7303] loop1: detected capacity change from 0 to 128
[  370.276252][ T7282] loop5: detected capacity change from 0 to 40427
[  370.366521][ T7303] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  370.435007][ T7303] netlink: 28 bytes leftover after parsing attributes in process `syz.1.727'.
[  370.495647][ T7282] F2FS-fs (loop5): Found nat_bits in checkpoint
[  370.821879][ T7293] loop3: detected capacity change from 0 to 40427
[  371.327261][ T7293] F2FS-fs (loop3): Found nat_bits in checkpoint
[  371.345916][ T7317] loop2: detected capacity change from 0 to 256
[  371.409325][ T7317] exfat: Deprecated parameter 'namecase'
[  371.550908][ T7317] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  371.563457][ T7293] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  371.826780][ T7324] loop5: detected capacity change from 0 to 128
[  371.936549][ T7324] EXT4-fs (loop5): Test dummy encryption mode enabled
[  371.989446][ T7324] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  372.657345][ T7334] netlink: 24 bytes leftover after parsing attributes in process `syz.5.731'.
[  373.572669][ T7339] input: syz0 as /devices/virtual/input/input20
[  374.529035][ T7344] loop5: detected capacity change from 0 to 256
[  375.229082][ T7351] loop0: detected capacity change from 0 to 128
[  375.615295][ T7351] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  375.737423][ T7351] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  375.814349][ T4178] attempt to access beyond end of device
[  375.814349][ T4178] loop3: rw=2049, want=45104, limit=40427
[  376.237824][ T7360] binder: 7350:7360 ioctl c0306201 0 returned -14
[  376.283274][ T7359] loop5: detected capacity change from 0 to 512
[  377.017927][ T7359] EXT4-fs (loop5): 1 orphan inode deleted
[  377.023847][ T7359] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  377.443821][ T7365] loop0: detected capacity change from 0 to 128
[  377.586925][ T7365] EXT4-fs (loop0): Test dummy encryption mode enabled
[  377.637004][ T7365] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  378.675936][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  378.682407][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  379.007525][ T7380] input: syz0 as /devices/virtual/input/input21
[  380.590472][ T7399] loop1: detected capacity change from 0 to 256
[  382.054546][ T7407] loop1: detected capacity change from 0 to 128
[  382.165928][ T7407] EXT4-fs (loop1): Test dummy encryption mode enabled
[  382.238283][ T7407] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  383.353927][ T7421] loop5: detected capacity change from 0 to 512
[  384.440968][ T7421] EXT4-fs (loop5): 1 orphan inode deleted
[  384.446836][ T7421] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  385.933567][ T7425] input: syz0 as /devices/virtual/input/input22
[  385.961273][ T7419] loop3: detected capacity change from 0 to 40427
[  386.190442][ T7419] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-4)
[  387.339350][ T7446] loop0: detected capacity change from 0 to 256
[  388.631428][ T7457] loop3: detected capacity change from 0 to 128
[  388.707522][ T7457] EXT4-fs (loop3): Test dummy encryption mode enabled
[  388.978250][ T7457] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  389.316878][ T7449] chnl_net:caif_netlink_parms(): no params data found
[  389.597944][ T7479] input: syz0 as /devices/virtual/input/input23
[  389.699857][ T7449] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.706958][ T7449] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.729623][ T7449] device bridge_slave_0 entered promiscuous mode
[  389.743089][ T4209] Bluetooth: hci5: command 0x0409 tx timeout
[  389.748902][ T7449] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.767863][ T7449] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.776519][ T7449] device bridge_slave_1 entered promiscuous mode
[  389.871623][ T7449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  389.917869][ T7449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  390.042082][ T7449] team0: Port device team_slave_0 added
[  390.090069][ T7449] team0: Port device team_slave_1 added
[  390.297647][ T7449] batman_adv: batadv0: Adding interface: batadv_slave_0
[  390.304709][ T7449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.395068][ T7449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  390.453278][ T7449] batman_adv: batadv0: Adding interface: batadv_slave_1
[  390.467163][ T7449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  390.567194][ T7449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  390.681708][ T7449] device hsr_slave_0 entered promiscuous mode
[  390.728278][ T7449] device hsr_slave_1 entered promiscuous mode
[  390.769286][ T7449] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  390.814733][ T7449] Cannot create hsr debugfs directory
[  391.181990][ T7500] loop1: detected capacity change from 0 to 256
[  391.472972][ T7503] loop5: detected capacity change from 0 to 128
[  391.588102][ T7503] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  391.787378][ T7488] loop3: detected capacity change from 0 to 40427
[  392.257788][ T4209] Bluetooth: hci5: command 0x041b tx timeout
[  392.291761][ T7449] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  392.334195][ T7449] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  392.403893][ T7449] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  392.430407][ T7488] F2FS-fs (loop3): Found nat_bits in checkpoint
[  392.450391][ T7449] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  392.596302][ T7488] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  392.609083][ T7515] input: syz0 as /devices/virtual/input/input24
[  392.742573][ T7449] 8021q: adding VLAN 0 to HW filter on device bond0
[  392.820986][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  392.845351][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  392.873421][ T7522] loop5: detected capacity change from 0 to 128
[  392.882609][ T7449] 8021q: adding VLAN 0 to HW filter on device team0
[  392.902569][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  392.921717][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  392.933030][ T4260] bridge0: port 1(bridge_slave_0) entered blocking state
[  392.940178][ T4260] bridge0: port 1(bridge_slave_0) entered forwarding state
[  392.989486][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  392.998669][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  393.008160][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  393.016752][ T4260] bridge0: port 2(bridge_slave_1) entered blocking state
[  393.023903][ T4260] bridge0: port 2(bridge_slave_1) entered forwarding state
[  393.036362][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  393.046581][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  393.056978][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  393.071105][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  393.081164][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  393.091377][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  393.126542][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  393.136270][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  393.185991][ T7522] FAT-fs (loop5): Directory bread(block 162) failed
[  393.196192][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  393.214786][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  393.214956][ T7522] FAT-fs (loop5): Directory bread(block 163) failed
[  393.227724][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  393.249241][ T7449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  393.284633][ T7522] FAT-fs (loop5): Directory bread(block 164) failed
[  393.328597][ T7522] FAT-fs (loop5): Directory bread(block 165) failed
[  393.335269][ T7522] FAT-fs (loop5): Directory bread(block 166) failed
[  393.393305][ T7522] FAT-fs (loop5): Directory bread(block 167) failed
[  393.405298][ T7522] FAT-fs (loop5): Directory bread(block 168) failed
[  393.427052][ T7522] FAT-fs (loop5): Directory bread(block 169) failed
[  393.476166][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  393.502694][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  393.536623][ T7522] FAT-fs (loop5): Directory bread(block 162) failed
[  393.552674][ T7522] FAT-fs (loop5): Directory bread(block 163) failed
[  393.585588][ T7449] 8021q: adding VLAN 0 to HW filter on device batadv0
[  394.313936][ T4178] attempt to access beyond end of device
[  394.313936][ T4178] loop3: rw=2049, want=45104, limit=40427
[  394.601421][ T4157] Bluetooth: hci5: command 0x040f tx timeout
[  394.825552][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  394.876823][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  395.007146][ T7449] device veth0_vlan entered promiscuous mode
[  395.030750][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  395.076272][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  395.270784][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  395.326102][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  395.563184][ T7449] device veth1_vlan entered promiscuous mode
[  395.690583][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  395.722650][ T7550] loop1: detected capacity change from 0 to 512
[  395.731889][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  395.751273][ T7449] device veth0_macvtap entered promiscuous mode
[  395.779535][ T7449] device veth1_macvtap entered promiscuous mode
[  395.815022][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.840671][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.862955][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.883336][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.897084][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.897958][ T7550] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.788: bg 0: block 288: padding at end of block bitmap is not set
[  395.930900][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.943470][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.947735][ T7550] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  395.956735][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.973957][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.985226][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.997083][ T7449] batman_adv: batadv0: Interface activated: batadv_slave_0
[  396.009823][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.020704][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.035544][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.046718][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.056875][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.069993][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.080160][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.082270][ T7550] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.788: attempt to clear invalid blocks 1024 len 1
[  396.117226][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.138447][ T7449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.172866][ T7449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.177048][ T7550] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.788: invalid indirect mapped block 1819239214 (level 0)
[  396.210126][ T7559] loop0: detected capacity change from 0 to 256
[  396.227951][ T7449] batman_adv: batadv0: Interface activated: batadv_slave_1
[  396.235371][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  396.257493][ T7550] EXT4-fs (loop1): 1 truncate cleaned up
[  396.263175][ T7550] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  396.275020][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  396.528410][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  396.548310][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  396.564057][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  396.674322][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  397.329241][ T7449] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.347528][ T4157] Bluetooth: hci5: command 0x0419 tx timeout
[  397.364847][ T7449] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.407313][ T7449] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.456493][ T7449] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  397.525085][ T7563] input: syz0 as /devices/virtual/input/input25
[  397.701728][ T7565] loop0: detected capacity change from 0 to 128
[  397.758117][ T1237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.797428][ T1237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  397.833696][ T7565] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  397.846662][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  397.869303][ T7573] loop5: detected capacity change from 0 to 128
[  397.917910][ T7565] 
[  397.920271][ T7565] ======================================================
[  397.927289][ T7565] WARNING: possible circular locking dependency detected
[  397.934329][ T7565] 5.15.178-syzkaller #0 Not tainted
[  397.939527][ T7565] ------------------------------------------------------
[  397.946545][ T7565] syz.0.790/7565 is trying to acquire lock:
[  397.952441][ T7565] ffff88805fea5c30 (&ei->i_data_sem/1){+.+.}-{3:3}, at: ext4_move_extents+0x3a1/0xe50
[  397.962077][ T7565] 
[  397.962077][ T7565] but task is already holding lock:
[  397.969449][ T7565] ffff88805fea2060 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_double_down_write_data_sem+0x28/0x40
[  397.980114][ T7565] 
[  397.980114][ T7565] which lock already depends on the new lock.
[  397.980114][ T7565] 
[  397.990522][ T7565] 
[  397.990522][ T7565] the existing dependency chain (in reverse order) is:
[  397.999542][ T7565] 
[  397.999542][ T7565] -> #3 (&ei->i_data_sem/2){++++}-{3:3}:
[  398.007396][ T7565]        lock_acquire+0x1db/0x4f0
[  398.012445][ T7565]        down_read+0x45/0x2e0
[  398.017174][ T7565]        ext4_map_blocks+0x391/0x1c70
[  398.022562][ T7565]        ext4_getblk+0x19f/0x710
[  398.027600][ T7565]        ext4_bread+0x2a/0x170
[  398.032384][ T7565]        ext4_quota_write+0x21e/0x580
[  398.037774][ T7565]        get_free_dqblk+0x3a9/0x800
[  398.042991][ T7565]        do_insert_tree+0xa2c/0x1c20
[  398.048313][ T7565]        do_insert_tree+0x6d0/0x1c20
[  398.053617][ T7565]        do_insert_tree+0x6d0/0x1c20
[  398.058927][ T7565]        do_insert_tree+0x6d0/0x1c20
[  398.064232][ T7565]        qtree_write_dquot+0x3b9/0x530
[  398.069709][ T7565]        v2_write_dquot+0x11c/0x190
[  398.074922][ T7565]        dquot_acquire+0x34d/0x680
[  398.080066][ T7565]        ext4_acquire_dquot+0x2eb/0x4a0
[  398.085635][ T7565]        dqget+0x762/0xe90
[  398.090150][ T7565]        __dquot_initialize+0x45e/0xea0
[  398.095706][ T7565]        ext4_create+0xb1/0x550
[  398.100662][ T7565]        path_openat+0x130a/0x2f20
[  398.105786][ T7565]        do_filp_open+0x21c/0x460
[  398.110835][ T7565]        do_sys_openat2+0x13b/0x4f0
[  398.116070][ T7565]        __x64_sys_openat+0x243/0x290
[  398.121476][ T7565]        do_syscall_64+0x3b/0xb0
[  398.126432][ T7565]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  398.132864][ T7565] 
[  398.132864][ T7565] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  398.140971][ T7565]        lock_acquire+0x1db/0x4f0
[  398.146031][ T7565]        down_read+0x45/0x2e0
[  398.150731][ T7565]        v2_read_dquot+0x4a/0x100
[  398.155775][ T7565]        dquot_acquire+0x188/0x680
[  398.160904][ T7565]        ext4_acquire_dquot+0x2eb/0x4a0
[  398.166471][ T7565]        dqget+0x762/0xe90
[  398.170989][ T7565]        __dquot_initialize+0x2d9/0xea0
[  398.176563][ T7565]        ext4_process_orphan+0x57/0x2d0
[  398.182170][ T7565]        ext4_orphan_cleanup+0x9d9/0x1240
[  398.187918][ T7565]        ext4_fill_super+0x98de/0xa110
[  398.187944][ T7565]        mount_bdev+0x2c9/0x3f0
[  398.198245][ T7565]        legacy_get_tree+0xeb/0x180
[  398.200539][ T4260] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.203458][ T7565]        vfs_get_tree+0x88/0x270
[  398.203484][ T7565]        do_new_mount+0x2ba/0xb40
[  398.221225][ T7565]        __se_sys_mount+0x2d5/0x3c0
[  398.226450][ T7565]        do_syscall_64+0x3b/0xb0
[  398.231423][ T7565]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  398.237864][ T7565] 
[  398.237864][ T7565] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  398.244202][ T4260] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.245540][ T7565]        lock_acquire+0x1db/0x4f0
[  398.245565][ T7565]        __mutex_lock_common+0x1da/0x25a0
[  398.263552][ T7565]        mutex_lock_nested+0x17/0x20
[  398.268854][ T7565]        dquot_commit+0x57/0x510
[  398.273806][ T7565]        ext4_write_dquot+0x1fd/0x360
[  398.279189][ T7565]        mark_all_dquot_dirty+0xf7/0x400
[  398.282686][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  398.284831][ T7565]        __dquot_alloc_space+0xdd8/0x1090
[  398.284856][ T7565]        ext4_ioctl+0x4d2f/0x5b80
[  398.302751][ T7565]        __se_sys_ioctl+0xf1/0x160
[  398.307983][ T7565]        do_syscall_64+0x3b/0xb0
[  398.312947][ T7565]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  398.319393][ T7565] 
[  398.319393][ T7565] -> #0 (&ei->i_data_sem/1){+.+.}-{3:3}:
[  398.327234][ T7565]        validate_chain+0x1649/0x5930
[  398.332620][ T7565]        __lock_acquire+0x1295/0x1ff0
[  398.338016][ T7565]        lock_acquire+0x1db/0x4f0
[  398.343056][ T7565]        down_write_nested+0x3b/0x60
[  398.348362][ T7565]        ext4_move_extents+0x3a1/0xe50
[  398.353853][ T7565]        ext4_ioctl+0x2fcb/0x5b80
[  398.358893][ T7565]        __se_sys_ioctl+0xf1/0x160
[  398.364022][ T7565]        do_syscall_64+0x3b/0xb0
[  398.368975][ T7565]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  398.375414][ T7565] 
[  398.375414][ T7565] other info that might help us debug this:
[  398.375414][ T7565] 
[  398.385649][ T7565] Chain exists of:
[  398.385649][ T7565]   &ei->i_data_sem/1 --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2
[  398.385649][ T7565] 
[  398.399513][ T7565]  Possible unsafe locking scenario:
[  398.399513][ T7565] 
[  398.407021][ T7565]        CPU0                    CPU1
[  398.412392][ T7565]        ----                    ----
[  398.417758][ T7565]   lock(&ei->i_data_sem/2);
[  398.422368][ T7565]                                lock(&s->s_dquot.dqio_sem);
[  398.429749][ T7565]                                lock(&ei->i_data_sem/2);
[  398.433552][ T7574] loop3: detected capacity change from 0 to 40427
[  398.436873][ T7565]   lock(&ei->i_data_sem/1);
[  398.436897][ T7565] 
[  398.436897][ T7565]  *** DEADLOCK ***
[  398.436897][ T7565] 
[  398.436901][ T7565] 4 locks held by syz.0.790/7565:
[  398.461144][ T7565]  #0: ffff888079868460 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0
[  398.468293][ T7573] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  398.471096][ T7565]  #1: ffff88805fea21d8 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: lock_two_nondirectories+0xde/0x130
[  398.492802][ T7565]  #2: ffff88805fea5da8 (&sb->s_type->i_mutex_key#9/4){+.+.}-{3:3}, at: ext4_move_extents+0x386/0xe50
[  398.503804][ T7565]  #3: 
[  398.503810][ T7573] netlink: 28 bytes leftover after parsing attributes in process `syz.5.795'.
[  398.503816][ T7565] ffff88805fea2060 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_double_down_write_data_sem+0x28/0x40
[  398.526040][ T7565] 
[  398.526040][ T7565] stack backtrace:
[  398.531942][ T7565] CPU: 0 PID: 7565 Comm: syz.0.790 Not tainted 5.15.178-syzkaller #0
[  398.540008][ T7565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  398.550075][ T7565] Call Trace:
[  398.553358][ T7565]  <TASK>
[  398.556280][ T7565]  dump_stack_lvl+0x1e3/0x2d0
[  398.560957][ T7565]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  398.566584][ T7565]  ? print_circular_bug+0x12b/0x1a0
[  398.571773][ T7565]  check_noncircular+0x2f8/0x3b0
[  398.576706][ T7565]  ? add_chain_block+0x850/0x850
[  398.581638][ T7565]  ? lockdep_lock+0x11f/0x2a0
[  398.586318][ T7565]  validate_chain+0x1649/0x5930
[  398.591170][ T7565]  ? reacquire_held_locks+0x660/0x660
[  398.596531][ T7565]  ? __lock_acquire+0x1295/0x1ff0
[  398.601543][ T7565]  ? reacquire_held_locks+0x660/0x660
[  398.606909][ T7565]  ? validate_chain+0x112/0x5930
[  398.611873][ T7565]  ? look_up_lock_class+0x77/0x120
[  398.616982][ T7565]  ? register_lock_class+0x100/0x9a0
[  398.622258][ T7565]  ? is_dynamic_key+0x1f0/0x1f0
[  398.627104][ T7565]  ? mark_lock+0x98/0x340
[  398.631427][ T7565]  __lock_acquire+0x1295/0x1ff0
[  398.636274][ T7565]  lock_acquire+0x1db/0x4f0
[  398.640769][ T7565]  ? ext4_move_extents+0x3a1/0xe50
[  398.645990][ T7565]  ? read_lock_is_recursive+0x10/0x10
[  398.651444][ T7565]  ? __might_sleep+0xc0/0xc0
[  398.656022][ T7565]  ? rwsem_write_trylock+0x166/0x210
[  398.661321][ T7565]  ? inode_owner_or_capable+0x210/0x210
[  398.666857][ T7565]  ? clear_nonspinnable+0x60/0x60
[  398.671879][ T7565]  down_write_nested+0x3b/0x60
[  398.676642][ T7565]  ? ext4_move_extents+0x3a1/0xe50
[  398.681746][ T7565]  ext4_move_extents+0x3a1/0xe50
[  398.686683][ T7565]  ? rcu_read_lock_any_held+0xb3/0x160
[  398.692141][ T7565]  ? ext4_double_up_write_data_sem+0x30/0x30
[  398.698114][ T7565]  ? __fget_files+0x413/0x480
[  398.702787][ T7565]  ext4_ioctl+0x2fcb/0x5b80
[  398.707288][ T7565]  ? do_vfs_ioctl+0x1b66/0x2b70
[  398.712132][ T7565]  ? ext4_fileattr_set+0x1750/0x1750
[  398.717408][ T7565]  ? __x64_compat_sys_ioctl+0x80/0x80
[  398.722770][ T7565]  ? __lock_acquire+0x1ff0/0x1ff0
[  398.727785][ T7565]  ? slab_free_freelist_hook+0xdd/0x160
[  398.733325][ T7565]  ? tomoyo_path_number_perm+0x648/0x810
[  398.738963][ T7565]  ? kfree+0xf1/0x270
[  398.742941][ T7565]  ? tomoyo_path_number_perm+0x6ab/0x810
[  398.748568][ T7565]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  398.754053][ T7565]  ? __fget_files+0x413/0x480
[  398.758728][ T7565]  ? bpf_lsm_file_ioctl+0x5/0x10
[  398.763659][ T7565]  ? security_file_ioctl+0x7d/0xa0
[  398.768771][ T7565]  ? ext4_fileattr_set+0x1750/0x1750
[  398.774050][ T7565]  __se_sys_ioctl+0xf1/0x160
[  398.778632][ T7565]  do_syscall_64+0x3b/0xb0
[  398.783038][ T7565]  ? clear_bhb_loop+0x15/0x70
[  398.787701][ T7565]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  398.793587][ T7565] RIP: 0033:0x7f795eaedda9
[  398.797995][ T7565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.817592][ T7565] RSP: 002b:00007f795c957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  398.825998][ T7565] RAX: ffffffffffffffda RBX: 00007f795ed06fa0 RCX: 00007f795eaedda9
[  398.833960][ T7565] RDX: 0000000020000040 RSI: 00000000c028660f RDI: 000000000000000b
[  398.841922][ T7565] RBP: 00007f795eb6f2a0 R08: 0000000000000000 R09: 0000000000000000
[  398.849883][ T7565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  398.857850][ T7565] R13: 0000000000000000 R14: 00007f795ed06fa0 R15: 00007ffe043a2958
[  398.865828][ T7565]  </TASK>
[  399.184341][ T7574] F2FS-fs (loop3): Found nat_bits in checkpoint
[  399.267040][ T7574] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  400.045364][ T4178] attempt to access beyond end of device
[  400.045364][ T4178] loop3: rw=2049, want=45104, limit=40427