last executing test programs:

14.55167364s ago: executing program 1 (id=9602):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x180, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x11}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'vlan0\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)

14.360302189s ago: executing program 1 (id=9604):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb26fc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r0, 0xe0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[0x0, 0x0], <r7=>0x0, 0x32, &(0x7f0000000400), 0x0, 0x10, &(0x7f0000000440), &(0x7f0000000480), 0x8, 0xbe, 0x8, 0x8, &(0x7f00000004c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xa, 0x20000000000000e5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYRESOCT], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', 0x0)
umount2(&(0x7f0000000380)='./file0\x00', 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
setrlimit(0x3, &(0x7f0000000100)={0x1, 0xd05})
ioctl$sock_bt_hci(r2, 0x400448ca, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

3.799310585s ago: executing program 4 (id=9696):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f100"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8001}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, 0x0, &(0x7f00000003c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus/file0\x00', 0x0)
setxattr(&(0x7f0000000340)='./bus/file0\x00', &(0x7f0000000400)=@known='security.apparmor\x00', &(0x7f00000003c0)='overlay\x00', 0xe407, 0x0)
rmdir(&(0x7f0000000000)='./bus/file0\x00')
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

3.464239556s ago: executing program 0 (id=9699):
r0 = socket$packet(0x11, 0x0, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x2b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = open(0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r3, 0x40106614, &(0x7f0000000040))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000580)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r0, 0x0, 0x4000801)
open(&(0x7f00009e1000)='./file0\x00', 0x448c2, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x40c0, &(0x7f00000004c0)=ANY=[@ANYRES8=r3, @ANYBLOB="3bf0c60b5f6d1cdd35c2b99fc16bafabd4e5a634d6b8098ad05f199502c4e061275997b1f3b35df79a136ba8f169fd8d6c70944c2157e62d8dc5a9809e9da4f6aff396537b0da7fba3413acc93b340a882222e5459d9a2f7a4ba3bd05a3f51efef99e22bebfe7ca76453a3ee33d1749826de11f013e0c03149", @ANYRES64=0x0, @ANYRES64=r2, @ANYRES64=r8, @ANYRESHEX])
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x2808044, &(0x7f00000001c0)={[{@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp855'}}, {@shortname_lower}, {@fat=@codepage={'codepage', 0x3d, '857'}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@iocharset={'iocharset', 0x3d, 'cp855'}}, {@shortname_win95}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {@rodir}, {@uni_xlateno}]}, 0x1, 0x294, &(0x7f0000000500)="$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")

2.805858457s ago: executing program 3 (id=9700):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_allocate_blocks\x00', r1}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

2.78520949s ago: executing program 3 (id=9701):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
socket$packet(0x11, 0x0, 0x300)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

2.765106463s ago: executing program 4 (id=9702):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000077c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a10000000000000000000000000000000000000000000000000000000000000000000000000000000093160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f40000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff0000000000000000000000000000002000", 0x2000, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000009800)="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", 0x2000, &(0x7f0000000b00)={&(0x7f0000000280)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fsync(r2)

2.648267291s ago: executing program 3 (id=9704):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfd19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8001}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280))
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus/file0\x00', 0x0)
setxattr(&(0x7f0000000340)='./bus/file0\x00', &(0x7f0000000400)=@known='security.apparmor\x00', &(0x7f00000003c0)='overlay\x00', 0xe407, 0x0)
rmdir(&(0x7f0000000000)='./bus/file0\x00')
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

2.628398785s ago: executing program 0 (id=9705):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704400000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2}})

2.559075696s ago: executing program 0 (id=9706):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

2.478123178s ago: executing program 0 (id=9707):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000100"/15], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='ext4_fc_commit_start\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
r4 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0)
write$P9_RREAD(r5, 0x0, 0x2e)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r6, 0x0, 0x0)
io_setup(0x81, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
rename(&(0x7f00000002c0)='./file2\x00', 0x0)

2.041630975s ago: executing program 1 (id=9693):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x8001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd}, 0x14)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x8, [@var={0xc, 0x0, 0x0, 0xe, 0x3, 0x1}, @ptr={0x3, 0x0, 0x0, 0x2, 0x5}, @ptr={0x6, 0x0, 0x0, 0x2, 0x2}, @typedef={0xb, 0x0, 0x0, 0x8, 0x1}, @const={0x0, 0x0, 0x0, 0xa, 0x3}]}, {0x0, [0x61, 0x30, 0x61, 0x61, 0x0, 0x2e]}}, &(0x7f0000000580)=""/71, 0x60, 0x47}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800"/11], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x1, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r8, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)

1.912325755s ago: executing program 1 (id=9708):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

1.831887997s ago: executing program 4 (id=9710):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_allocate_blocks\x00', r1}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

1.831488587s ago: executing program 1 (id=9711):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f100"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8001}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, 0x0, &(0x7f00000003c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus/file0\x00', 0x0)
setxattr(&(0x7f0000000340)='./bus/file0\x00', &(0x7f0000000400)=@known='security.apparmor\x00', &(0x7f00000003c0)='overlay\x00', 0xe407, 0x0)
rmdir(&(0x7f0000000000)='./bus/file0\x00')
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.824850199s ago: executing program 3 (id=9712):
syz_open_dev$tty1(0xc, 0x4, 0x1)
io_uring_setup(0x0, &(0x7f00000004c0)={0x0, 0x7f15, 0x0, 0x2, 0x121})
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x1, &(0x7f0000000080), 0x8)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000008e80))
r1 = inotify_init1(0x0)
r2 = dup(r1)
r3 = gettid()
readv(r2, &(0x7f0000000040)=[{&(0x7f0000000bc0)=""/224, 0xe0}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.803572231s ago: executing program 4 (id=9713):
socket$inet6(0xa, 0x0, 0x87)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x28, 0x2b, 0x0, @private2, @local, {[@hopopts={0x87}, @srh={0x3b, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, [@local]}], {0x0, 0x0, 0x8}}}}}}, 0x0)

1.795447353s ago: executing program 4 (id=9714):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus/file0\x00', 0x0)
setxattr(&(0x7f0000000340)='./bus/file0\x00', &(0x7f0000000400)=@known='security.apparmor\x00', &(0x7f00000003c0)='overlay\x00', 0xe407, 0x0)
rmdir(&(0x7f0000000000)='./bus/file0\x00')
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.536265933s ago: executing program 0 (id=9715):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x13)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, 0x0)
ioctl$EXT4_IOC_SETFSUUID(0xffffffffffffffff, 0x4008662c, &(0x7f0000000080)={0x0, 0x0, "cb58861fcd82f8bdbb8ccb7b60fae1bd"})
r4 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x5, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x43}, [@call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
r6 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0)
sendfile(r6, r5, 0x0, 0x100800001)

967.53756ms ago: executing program 2 (id=9716):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

935.795505ms ago: executing program 1 (id=9717):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x8001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd}, 0x14)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x8, [@var={0xc, 0x0, 0x0, 0xe, 0x3, 0x1}, @ptr={0x3, 0x0, 0x0, 0x2, 0x5}, @ptr={0x6, 0x0, 0x0, 0x2, 0x2}, @struct={0xe, 0x4, 0x0, 0x4, 0x1, 0x3f, [{0x2, 0x3, 0xff}, {0x2, 0x0, 0x4}, {0x10, 0x0, 0x1}, {0x0, 0x4, 0xfffffff8}]}, @typedef={0xb, 0x0, 0x0, 0x8, 0x1}, @const={0x0, 0x0, 0x0, 0xa, 0x3}]}, {0x0, [0x61, 0x30, 0x61, 0x61, 0x0, 0x2e]}}, &(0x7f0000000580)=""/71, 0x9c, 0x47}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x1, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r8, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)

926.930487ms ago: executing program 3 (id=9718):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x8001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd}, 0x14)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x8, [@var={0xc, 0x0, 0x0, 0xe, 0x3, 0x1}, @ptr={0x3, 0x0, 0x0, 0x2, 0x5}, @ptr={0x6, 0x0, 0x0, 0x2, 0x2}, @typedef={0xb, 0x0, 0x0, 0x8, 0x1}, @const={0x0, 0x0, 0x0, 0xa, 0x3}]}, {0x0, [0x61, 0x30, 0x61, 0x61, 0x0, 0x2e]}}, &(0x7f0000000580)=""/71, 0x60, 0x47}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x1, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="0106002010ff"})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r8, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)

918.509818ms ago: executing program 2 (id=9719):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000), 0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x198, 0x4c, 0x1a, 0x198, 0x63, 0x2f8, 0x258, 0x258, 0x2f8, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x73}, 0x0, 0x168, 0x198, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x2, 0x0, 0x7}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @dev}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0x0, 0xd0, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008ae05, &(0x7f0000000240)=""/94)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f0000000400)=@framed, &(0x7f0000000340)='syzkaller\x00', 0x1, 0xc5, &(0x7f0000000180)=""/197, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x64}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={0x0, r6}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000740)=@mangle={'mangle\x00', 0x64, 0x6, 0x6a0, 0x2e0, 0x2e0, 0x2e0, 0x538, 0x2e0, 0x620, 0x620, 0x620, 0x620, 0x620, 0x6, 0x0, {[{{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:devicekit_exec_t:s0\x00'}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@mcast1}}}, {{@ipv6={@mcast2, @loopback, [], [], 'ip6gretap0\x00', 'syzkaller0\x00'}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@local, @ipv6=@private1}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@empty, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x700)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
poll(&(0x7f0000b2c000)=[{}], 0x2c, 0xffffffffffbffff8)

905.153ms ago: executing program 4 (id=9720):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfd19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8001}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x24}}, 0x0)
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bind$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus/file0\x00', 0x0)
setxattr(&(0x7f0000000340)='./bus/file0\x00', &(0x7f0000000400)=@known='security.apparmor\x00', &(0x7f00000003c0)='overlay\x00', 0xe407, 0x0)
rmdir(&(0x7f0000000000)='./bus/file0\x00')
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

89.916935ms ago: executing program 0 (id=9721):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000077c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a10000000000000000000000000000000000000000000000000000000000000000000000000000000093160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f40000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff0000000000000000000000000000002000", 0x2000, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000009800)="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", 0x2000, &(0x7f0000000b00)={&(0x7f0000000280)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fsync(r2)

66.763179ms ago: executing program 2 (id=9722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

47.159652ms ago: executing program 2 (id=9723):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_allocate_blocks\x00', r1}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

44.605602ms ago: executing program 2 (id=9724):
socket$inet6(0xa, 0x0, 0x87)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x28, 0x2b, 0x0, @private2, @local, {[@hopopts={0x87}, @srh={0x3b, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, [@local]}], {0x0, 0x0, 0x8}}}}}}, 0x0)

12.266227ms ago: executing program 3 (id=9725):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000100"/15], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='ext4_fc_commit_start\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
r4 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0)
write$P9_RREAD(r5, 0x0, 0x2e)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r6, 0x0, 0x0)
io_setup(0x81, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
rename(&(0x7f00000002c0)='./file2\x00', 0x0)

0s ago: executing program 2 (id=9726):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000400)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xb, 0x8}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x41ce, 0x8001})
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)

kernel console output (not intermixed with test programs):

 left promiscuous mode
[ 1674.159886][T31525] loop4: detected capacity change from 0 to 512
[ 1674.176362][T31527] loop0: detected capacity change from 0 to 512
[ 1674.232251][T31525] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1674.243403][T31525] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/34/bus supports timestamps until 2038 (0x7fffffff)
[ 1674.317001][T31527] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1674.332946][T31527] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/55/bus supports timestamps until 2038 (0x7fffffff)
[ 1674.481698][T31541] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1675.046477][T14779] usb 3-1: new high-speed USB device number 102 using dummy_hcd
[ 1675.094708][   T39] Bluetooth: hci1: command 0x1001 tx timeout
[ 1675.100610][  T321] Bluetooth: hci1: sending frame failed (-49)
[ 1675.154765][T31550] loop1: detected capacity change from 0 to 128
[ 1675.836502][T14779] usb 3-1: Using ep0 maxpacket: 32
[ 1676.676546][T14779] usb 3-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1676.685475][T14779] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1676.693535][T14779] usb 3-1: Product: syz
[ 1676.697640][T14779] usb 3-1: Manufacturer: syz
[ 1676.702068][T14779] usb 3-1: SerialNumber: syz
[ 1676.707299][T14779] usb 3-1: config 0 descriptor??
[ 1676.964472][T14779] usb 3-1: USB disconnect, device number 102
[ 1677.081102][T31572] loop1: detected capacity change from 0 to 512
[ 1677.158363][T31572] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1677.169421][T31572] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/186/bus supports timestamps until 2038 (0x7fffffff)
[ 1677.175792][T26089] Bluetooth: hci1: command 0x1009 tx timeout
[ 1678.430942][T31589] loop4: detected capacity change from 0 to 512
[ 1678.539832][T31596] fuse: Bad value for 'fd'
[ 1678.718313][T31589] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1678.729520][T31589] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/39/bus supports timestamps until 2038 (0x7fffffff)
[ 1678.845671][T31603] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1678.962528][T31605] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1679.888581][T31618] loop1: detected capacity change from 0 to 512
[ 1679.978290][T31618] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1679.989250][T31618] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/188/bus supports timestamps until 2038 (0x7fffffff)
[ 1680.323898][T31627] loop0: detected capacity change from 0 to 512
[ 1680.358460][T31627] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1680.369316][T31627] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/61/bus supports timestamps until 2038 (0x7fffffff)
[ 1680.560750][T31636] xt_SECMARK: invalid mode: 0
[ 1681.140890][T31644] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.147842][T31644] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.155049][T31644] device bridge_slave_0 entered promiscuous mode
[ 1681.162168][T31644] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.169208][T31644] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1681.176667][T31644] device bridge_slave_1 entered promiscuous mode
[ 1681.330707][T31633] loop4: detected capacity change from 0 to 40427
[ 1681.330873][T31644] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.343893][T31644] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1681.351048][T31644] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.353937][T31633] F2FS-fs (loop4): invalid crc value
[ 1681.357927][T31644] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1681.374357][T31633] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1681.398372][T26089] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.405758][T26089] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1681.422271][T31655] loop0: detected capacity change from 0 to 128
[ 1681.429458][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1681.435686][T31633] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[ 1681.437143][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1681.443292][T31633] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1681.462506][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1681.470841][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1681.473111][T31651] attempt to access beyond end of device
[ 1681.473111][T31651] loop4: rw=2049, want=45104, limit=40427
[ 1681.477704][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1681.478254][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1681.503833][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1681.510684][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1681.541970][T31644] device veth0_vlan entered promiscuous mode
[ 1681.554973][T31644] device veth1_macvtap entered promiscuous mode
[ 1681.561199][T14779] usb 2-1: new high-speed USB device number 99 using dummy_hcd
[ 1681.580137][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1681.588514][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1681.607819][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1681.616107][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1681.649159][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1681.657245][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1681.665457][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1681.733591][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1681.751189][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1681.879700][T31661] loop2: detected capacity change from 0 to 512
[ 1681.938234][T31661] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1681.949725][T31661] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/7/bus supports timestamps until 2038 (0x7fffffff)
[ 1681.976732][T14779] usb 2-1: Using ep0 maxpacket: 32
[ 1682.839052][T29570] device bridge_slave_1 left promiscuous mode
[ 1682.845621][T29570] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1682.872469][T31683] loop0: detected capacity change from 0 to 256
[ 1682.882743][T29570] device bridge_slave_0 left promiscuous mode
[ 1683.147392][T29570] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1683.159667][T29570] device veth1_macvtap left promiscuous mode
[ 1683.165753][T29570] device veth0_vlan left promiscuous mode
[ 1683.229712][T14779] usb 2-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1683.327359][T14779] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1683.336343][T14779] usb 2-1: Product: syz
[ 1683.342446][T14779] usb 2-1: Manufacturer: syz
[ 1683.348988][T14779] usb 2-1: SerialNumber: syz
[ 1683.541440][T14779] usb 2-1: config 0 descriptor??
[ 1683.789734][T31695] xt_SECMARK: invalid mode: 0
[ 1684.064174][T31696] loop3: detected capacity change from 0 to 512
[ 1684.202309][  T583] usb 2-1: USB disconnect, device number 99
[ 1684.249059][T31696] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1684.262758][T31696] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/2/bus supports timestamps until 2038 (0x7fffffff)
[ 1684.539336][T31710] loop0: detected capacity change from 0 to 512
[ 1684.630335][T31710] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1684.648434][T31710] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/65/bus supports timestamps until 2038 (0x7fffffff)
[ 1684.956895][T31722] loop1: detected capacity change from 0 to 512
[ 1685.025224][T31715] loop2: detected capacity change from 0 to 40427
[ 1685.096818][T31725] fuse: Bad value for 'fd'
[ 1685.118656][T31722] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1685.130648][T31715] F2FS-fs (loop2): invalid crc value
[ 1685.149441][T31727] loop4: detected capacity change from 0 to 128
[ 1685.156172][T31722] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/191/bus supports timestamps until 2038 (0x7fffffff)
[ 1685.169073][T31715] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1685.293558][T31715] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1
[ 1685.311970][T31715] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1686.341843][T31728] attempt to access beyond end of device
[ 1686.341843][T31728] loop2: rw=2049, want=45104, limit=40427
[ 1686.487595][T31747] loop4: detected capacity change from 0 to 256
[ 1686.634877][T31752] loop1: detected capacity change from 0 to 512
[ 1686.700276][T31752] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1686.750068][T31752] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/193/bus supports timestamps until 2038 (0x7fffffff)
[ 1687.008631][T31758] loop0: detected capacity change from 0 to 512
[ 1687.092195][T31758] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1687.103278][T31758] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/67/bus supports timestamps until 2038 (0x7fffffff)
[ 1687.230322][T31766] xt_SECMARK: invalid mode: 0
[ 1687.679758][T31769] loop4: detected capacity change from 0 to 512
[ 1687.902405][T31769] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1687.933089][T31769] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/46/bus supports timestamps until 2038 (0x7fffffff)
[ 1688.027038][T31779] loop2: detected capacity change from 0 to 512
[ 1688.041686][T31781] loop3: detected capacity change from 0 to 512
[ 1688.286069][T31779] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1688.319810][T31779] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/13/bus supports timestamps until 2038 (0x7fffffff)
[ 1688.335123][T31781] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1688.399535][T31781] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/5/bus supports timestamps until 2038 (0x7fffffff)
[ 1688.501958][T31795] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1689.374791][T31808] loop3: detected capacity change from 0 to 512
[ 1689.524867][T31812] fuse: Bad value for 'fd'
[ 1689.828135][T31808] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1689.839187][T31808] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/6/bus supports timestamps until 2038 (0x7fffffff)
[ 1690.404027][T31825] loop2: detected capacity change from 0 to 256
[ 1691.239215][T31833] fuse: Bad value for 'fd'
[ 1691.440257][T31835] loop0: detected capacity change from 0 to 512
[ 1691.459425][T31837] syz.3.8881[31837] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1691.459535][T31837] syz.3.8881[31837] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1691.567529][T31835] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1691.611173][T31845] loop1: detected capacity change from 0 to 512
[ 1691.629448][T31835] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/69/bus supports timestamps until 2038 (0x7fffffff)
[ 1691.668202][T31847] loop2: detected capacity change from 0 to 512
[ 1691.791822][T31854] loop3: detected capacity change from 0 to 256
[ 1691.947001][T31858] loop4: detected capacity change from 0 to 512
[ 1691.958365][T31845] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1691.969520][T31847] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1691.982917][T31845] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/198/bus supports timestamps until 2038 (0x7fffffff)
[ 1691.983246][T31847] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/17/bus supports timestamps until 2038 (0x7fffffff)
[ 1692.117924][T31858] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1692.480470][T31858] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/49/bus supports timestamps until 2038 (0x7fffffff)
[ 1692.945568][T31876] fuse: Bad value for 'fd'
[ 1693.711822][T29800] usb 1-1: new high-speed USB device number 94 using dummy_hcd
[ 1693.726027][T31883] syz.3.8888[31883] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1693.726097][T31883] syz.3.8888[31883] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1693.735880][T31882] loop1: detected capacity change from 0 to 512
[ 1693.776611][T31878] device veth0_vlan left promiscuous mode
[ 1693.782564][T31878] device veth0_vlan entered promiscuous mode
[ 1693.789755][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1693.807105][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1693.814600][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1694.102545][T31882] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1694.119572][T31882] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/200/bus supports timestamps until 2038 (0x7fffffff)
[ 1694.211416][T29800] usb 1-1: Using ep0 maxpacket: 32
[ 1694.816841][T31908] device veth0_vlan left promiscuous mode
[ 1694.822767][T31908] device veth0_vlan entered promiscuous mode
[ 1694.830813][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1694.840967][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1694.848145][T29800] usb 1-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1694.860158][T29800] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1694.873569][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1694.883900][T29800] usb 1-1: Product: syz
[ 1694.892423][T29800] usb 1-1: Manufacturer: syz
[ 1694.897643][T29570] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1694.902013][T29800] usb 1-1: SerialNumber: syz
[ 1694.915669][T29800] usb 1-1: config 0 descriptor??
[ 1695.122246][T29800] usb 1-1: USB disconnect, device number 94
[ 1695.143219][T31917] loop3: detected capacity change from 0 to 512
[ 1695.218991][T31921] fuse: Bad value for 'fd'
[ 1695.447137][T31919] xt_SECMARK: invalid mode: 0
[ 1695.507653][T31917] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1695.531963][T31917] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/11/bus supports timestamps until 2038 (0x7fffffff)
[ 1695.539700][T31926] loop4: detected capacity change from 0 to 512
[ 1695.574987][T31910] loop1: detected capacity change from 0 to 40427
[ 1695.619943][T31910] F2FS-fs (loop1): invalid crc value
[ 1695.630519][T31926] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1695.644569][T31926] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/52/bus supports timestamps until 2038 (0x7fffffff)
[ 1695.662187][T31910] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1696.414345][T31939] loop2: detected capacity change from 0 to 128
[ 1696.464988][T31941] device veth0_vlan left promiscuous mode
[ 1696.481072][T31941] device veth0_vlan entered promiscuous mode
[ 1696.491909][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1696.503892][T31910] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[ 1696.510727][T31910] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1696.539944][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1696.560100][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1696.866587][T31948] fuse: Bad value for 'fd'
[ 1698.037275][T31962] loop2: detected capacity change from 0 to 256
[ 1698.046868][T28346] attempt to access beyond end of device
[ 1698.046868][T28346] loop1: rw=2049, want=45104, limit=40427
[ 1698.286627][T31967] loop0: detected capacity change from 0 to 512
[ 1698.398368][T31967] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1698.458715][T31967] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/72/bus supports timestamps until 2038 (0x7fffffff)
[ 1698.689256][T31980] loop1: detected capacity change from 0 to 512
[ 1698.819837][T31980] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1698.868868][T29800] usb 3-1: new high-speed USB device number 103 using dummy_hcd
[ 1698.904111][T31980] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/202/bus supports timestamps until 2038 (0x7fffffff)
[ 1699.396969][T31991] loop4: detected capacity change from 0 to 512
[ 1699.455672][T31993] loop0: detected capacity change from 0 to 512
[ 1699.479829][T31993] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1699.508586][T31993] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/73/bus supports timestamps until 2038 (0x7fffffff)
[ 1699.522423][T31991] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1699.536619][T31991] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/55/bus supports timestamps until 2038 (0x7fffffff)
[ 1700.196016][T29800] usb 3-1: Using ep0 maxpacket: 32
[ 1700.345491][T32001] loop1: detected capacity change from 0 to 512
[ 1700.356807][T32010] syz.3.8915[32010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1700.356881][T32010] syz.3.8915[32010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1700.440411][T32015] loop4: detected capacity change from 0 to 512
[ 1700.463183][T32014] device veth0_vlan left promiscuous mode
[ 1700.469735][T32014] device veth0_vlan entered promiscuous mode
[ 1700.479241][  T391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1700.488635][  T391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1700.496619][  T391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1700.520102][T32019] loop3: detected capacity change from 0 to 256
[ 1700.556393][T32001] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1700.596621][T29800] usb 3-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1700.619256][T29800] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1700.628387][T32015] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1700.628685][T32001] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/203/bus supports timestamps until 2038 (0x7fffffff)
[ 1700.650801][T29800] usb 3-1: Product: syz
[ 1700.654904][T29800] usb 3-1: Manufacturer: syz
[ 1700.659063][T32015] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/56/bus supports timestamps until 2038 (0x7fffffff)
[ 1700.659519][T29800] usb 3-1: SerialNumber: syz
[ 1700.692462][T29800] usb 3-1: config 0 descriptor??
[ 1702.189854][T29800] usb 3-1: USB disconnect, device number 103
[ 1702.298691][T32037] loop4: detected capacity change from 0 to 512
[ 1702.324121][T32041] loop3: detected capacity change from 0 to 512
[ 1702.412740][T32044] loop1: detected capacity change from 0 to 256
[ 1702.668996][T32041] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1702.745061][T32041] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/18/bus supports timestamps until 2038 (0x7fffffff)
[ 1702.751742][T32037] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1702.767779][T32037] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/57/bus supports timestamps until 2038 (0x7fffffff)
[ 1702.802903][T32031] loop2: detected capacity change from 0 to 512
[ 1702.868345][T32031] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1702.879285][T32031] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/24/bus supports timestamps until 2038 (0x7fffffff)
[ 1703.244775][T32059] loop0: detected capacity change from 0 to 512
[ 1703.250581][T32061] loop1: detected capacity change from 0 to 512
[ 1703.288470][T32065] loop4: detected capacity change from 0 to 512
[ 1703.636269][T32061] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1703.636346][T32059] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1703.647564][T32059] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/76/bus supports timestamps until 2038 (0x7fffffff)
[ 1703.658492][T32061] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/205/bus supports timestamps until 2038 (0x7fffffff)
[ 1703.685756][T32065] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1703.739060][T32065] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/58/bus supports timestamps until 2038 (0x7fffffff)
[ 1704.394293][T32082] loop3: detected capacity change from 0 to 128
[ 1704.514265][T32086] syz.0.8928[32086] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1704.514340][T32086] syz.0.8928[32086] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1705.051922][T32088] loop0: detected capacity change from 0 to 256
[ 1705.136546][T26089] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[ 1705.189222][T32095] loop4: detected capacity change from 0 to 512
[ 1705.190992][T32096] loop2: detected capacity change from 0 to 512
[ 1705.212540][T32095] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1705.224192][T32095] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/59/bus supports timestamps until 2038 (0x7fffffff)
[ 1705.465851][T32096] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1705.477071][T32096] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/25/bus supports timestamps until 2038 (0x7fffffff)
[ 1705.495308][T26089] usb 2-1: Using ep0 maxpacket: 32
[ 1706.697034][   T39] usb 4-1: new high-speed USB device number 100 using dummy_hcd
[ 1706.741588][T32125] loop0: detected capacity change from 0 to 256
[ 1706.772277][T32124] loop2: detected capacity change from 0 to 512
[ 1706.786026][T32122] loop4: detected capacity change from 0 to 512
[ 1706.806904][T26089] usb 2-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1706.833275][T26089] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1706.843683][T26089] usb 2-1: Product: syz
[ 1706.847846][T26089] usb 2-1: Manufacturer: syz
[ 1706.852345][T26089] usb 2-1: SerialNumber: syz
[ 1706.867028][T26089] usb 2-1: config 0 descriptor??
[ 1706.873558][T32122] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1706.873558][T32124] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1706.873641][T32124] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/26/bus supports timestamps until 2038 (0x7fffffff)
[ 1706.884596][T32122] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/60/bus supports timestamps until 2038 (0x7fffffff)
[ 1706.976576][   T39] usb 4-1: Using ep0 maxpacket: 32
[ 1707.205740][T14779] usb 2-1: USB disconnect, device number 100
[ 1707.276542][   T39] usb 4-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1707.285515][   T39] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1707.293323][   T39] usb 4-1: Product: syz
[ 1707.297417][   T39] usb 4-1: Manufacturer: syz
[ 1707.301803][   T39] usb 4-1: SerialNumber: syz
[ 1707.306909][   T39] usb 4-1: config 0 descriptor??
[ 1707.445174][T32134] device veth0_vlan left promiscuous mode
[ 1707.450991][T32134] device veth0_vlan entered promiscuous mode
[ 1707.457830][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1707.465948][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1707.473440][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1707.560240][T14779] usb 4-1: USB disconnect, device number 100
[ 1707.696749][T32143] loop0: detected capacity change from 0 to 512
[ 1708.238759][T32147] loop2: detected capacity change from 0 to 256
[ 1708.509868][T32143] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1708.525269][T32143] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/82/bus supports timestamps until 2038 (0x7fffffff)
[ 1708.526786][T32153] syz.2.8942[32153] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1708.536731][T32153] syz.2.8942[32153] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1708.946775][T32164] loop2: detected capacity change from 0 to 256
[ 1709.653288][  T583] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[ 1709.820650][T32175] xt_SECMARK: invalid mode: 0
[ 1709.950247][T32171] device veth0_vlan left promiscuous mode
[ 1709.956809][T32171] device veth0_vlan entered promiscuous mode
[ 1709.963898][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1709.972691][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1710.038204][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1710.046571][  T583] usb 5-1: Using ep0 maxpacket: 32
[ 1710.432807][T32184] loop2: detected capacity change from 0 to 512
[ 1710.476517][  T583] usb 5-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1710.491634][  T583] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1710.499591][  T583] usb 5-1: Product: syz
[ 1710.503615][  T583] usb 5-1: Manufacturer: syz
[ 1710.506532][T32184] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1710.508058][  T583] usb 5-1: SerialNumber: syz
[ 1710.541884][T32184] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/30/bus supports timestamps until 2038 (0x7fffffff)
[ 1710.553787][  T583] usb 5-1: config 0 descriptor??
[ 1710.580400][T32188] loop1: detected capacity change from 0 to 512
[ 1710.694350][T32188] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1710.895560][T32188] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/210/bus supports timestamps until 2038 (0x7fffffff)
[ 1711.023797][T29800] usb 5-1: USB disconnect, device number 106
[ 1711.551599][T32202] loop0: detected capacity change from 0 to 256
[ 1712.272344][T32212] loop3: detected capacity change from 0 to 512
[ 1712.315112][T32213] device veth0_vlan left promiscuous mode
[ 1712.321350][T32213] device veth0_vlan entered promiscuous mode
[ 1712.328326][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1712.336341][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1712.357823][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1712.378476][T32220] loop4: detected capacity change from 0 to 128
[ 1712.649308][T32212] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1712.692557][T32212] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/24/bus supports timestamps until 2038 (0x7fffffff)
[ 1713.562035][T32233] xt_SECMARK: invalid mode: 0
[ 1714.288241][T32239] loop0: detected capacity change from 0 to 512
[ 1715.383791][T32247] loop2: detected capacity change from 0 to 512
[ 1715.434941][T32239] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1715.446081][T32239] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/87/bus supports timestamps until 2038 (0x7fffffff)
[ 1715.539885][T32247] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1715.550783][T32247] ext4 filesystem being mounted at /root/syzkaller.Bn97Qk/32/bus supports timestamps until 2038 (0x7fffffff)
[ 1716.451893][T14779] usb 2-1: new high-speed USB device number 101 using dummy_hcd
[ 1716.590086][T32263] loop4: detected capacity change from 0 to 40427
[ 1716.669754][T32273] loop3: detected capacity change from 0 to 256
[ 1716.758013][T32263] F2FS-fs (loop4): invalid crc value
[ 1716.836913][T32274] loop0: detected capacity change from 0 to 512
[ 1716.846888][T32263] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1716.876953][T14779] usb 2-1: Using ep0 maxpacket: 32
[ 1716.884870][T32263] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[ 1716.903445][T32263] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1716.943297][T32274] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1716.950990][T32276] attempt to access beyond end of device
[ 1716.950990][T32276] loop4: rw=2049, want=45104, limit=40427
[ 1716.954489][T32274] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/88/bus supports timestamps until 2038 (0x7fffffff)
[ 1717.476604][T14779] usb 2-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1717.489649][T14779] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1717.510048][T32290] device veth0_vlan left promiscuous mode
[ 1717.519525][T14779] usb 2-1: Product: syz
[ 1717.523286][T32290] device veth0_vlan entered promiscuous mode
[ 1717.536506][T14779] usb 2-1: Manufacturer: syz
[ 1717.546108][T14779] usb 2-1: SerialNumber: syz
[ 1717.556955][T14779] usb 2-1: config 0 descriptor??
[ 1717.580374][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1718.218323][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1718.225809][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1718.275690][T32299] loop0: detected capacity change from 0 to 512
[ 1718.454116][T32308] xt_SECMARK: invalid mode: 0
[ 1718.575925][ T2496] usb 2-1: USB disconnect, device number 101
[ 1718.605446][T32299] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1718.633865][T32299] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/89/bus supports timestamps until 2038 (0x7fffffff)
[ 1718.648298][T32314] syz.1.8979[32314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1718.648375][T32314] syz.1.8979[32314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1718.753503][T32312] loop3: detected capacity change from 0 to 512
[ 1718.783217][T32315] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1718.888580][T32321] loop1: detected capacity change from 0 to 256
[ 1719.242267][T32315] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1719.250032][T32315] device bridge_slave_0 entered promiscuous mode
[ 1719.256997][T32315] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1719.263832][T32315] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1719.276684][T32315] device bridge_slave_1 entered promiscuous mode
[ 1719.288607][T32312] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1719.306593][T32312] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/30/bus supports timestamps until 2038 (0x7fffffff)
[ 1720.110697][T32332] loop0: detected capacity change from 0 to 512
[ 1720.184596][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1720.212409][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1720.237383][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1720.245678][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1720.254352][T29800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1720.261246][T29800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1720.268952][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1720.859972][T32343] loop4: detected capacity change from 0 to 256
[ 1721.153117][T32332] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1721.169498][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1721.183443][T32332] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/90/bus supports timestamps until 2038 (0x7fffffff)
[ 1721.195341][T29800] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1721.202210][T29800] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1721.290106][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1721.299003][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1721.307234][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1721.315109][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1721.532166][T32315] device veth0_vlan entered promiscuous mode
[ 1721.562927][T32315] device veth1_macvtap entered promiscuous mode
[ 1721.653497][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1721.659795][T32359] loop3: detected capacity change from 0 to 512
[ 1721.665138][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1721.686984][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1721.687900][T32361] loop2: detected capacity change from 0 to 512
[ 1721.695082][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1721.707221][T32359] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1721.720255][T32359] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/31/bus supports timestamps until 2038 (0x7fffffff)
[ 1722.028721][T32361] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1722.142910][T32361] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/0/bus supports timestamps until 2038 (0x7fffffff)
[ 1722.170994][T32370] loop1: detected capacity change from 0 to 512
[ 1722.172289][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1722.184755][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1722.192927][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1722.201218][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1722.209920][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1722.218519][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1722.225849][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1722.252500][T32370] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1722.264097][T32370] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/219/bus supports timestamps until 2038 (0x7fffffff)
[ 1722.278307][T29570] device bridge_slave_1 left promiscuous mode
[ 1722.284374][T29570] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1722.292404][T29570] device bridge_slave_0 left promiscuous mode
[ 1722.298561][T29570] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1722.307047][T29570] device veth1_macvtap left promiscuous mode
[ 1722.312978][T29570] device veth0_vlan left promiscuous mode
[ 1722.966491][ T2496] usb 1-1: new high-speed USB device number 95 using dummy_hcd
[ 1723.730883][T32395] loop1: detected capacity change from 0 to 512
[ 1723.756625][ T2496] usb 1-1: Using ep0 maxpacket: 32
[ 1723.770978][T32395] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1723.782199][T32395] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/220/bus supports timestamps until 2038 (0x7fffffff)
[ 1723.826570][T29800] usb 3-1: new high-speed USB device number 104 using dummy_hcd
[ 1724.000570][T32404] loop4: detected capacity change from 0 to 256
[ 1724.682786][ T3020] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1724.696622][T29800] usb 3-1: Using ep0 maxpacket: 32
[ 1724.706623][ T2496] usb 1-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1724.715592][T32410] loop1: detected capacity change from 0 to 512
[ 1724.724544][ T2496] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1724.732942][ T2496] usb 1-1: Product: syz
[ 1724.737251][ T2496] usb 1-1: Manufacturer: syz
[ 1724.741772][ T2496] usb 1-1: SerialNumber: syz
[ 1724.747526][ T2496] usb 1-1: config 0 descriptor??
[ 1724.762548][T32410] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1724.774539][T32410] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/221/bus supports timestamps until 2038 (0x7fffffff)
[ 1724.796302][T32411] device veth0_vlan left promiscuous mode
[ 1724.815571][T32411] device veth0_vlan entered promiscuous mode
[ 1724.828692][  T583] usb 1-1: USB disconnect, device number 95
[ 1725.430660][T32426] xt_SECMARK: invalid mode: 0
[ 1725.919453][T32433] loop3: detected capacity change from 0 to 512
[ 1725.986825][T29800] usb 3-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1725.996672][T29800] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1726.004527][T29800] usb 3-1: Product: syz
[ 1726.008960][T29800] usb 3-1: Manufacturer: syz
[ 1726.046510][T29800] usb 3-1: SerialNumber: syz
[ 1726.053364][T29800] usb 3-1: config 0 descriptor??
[ 1726.076599][T29800] usb 3-1: can't set config #0, error -71
[ 1726.083086][T29800] usb 3-1: USB disconnect, device number 104
[ 1726.149142][T32433] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1726.167026][T32433] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/35/bus supports timestamps until 2038 (0x7fffffff)
[ 1726.425420][T32448] loop4: detected capacity change from 0 to 128
[ 1726.979324][T32456] loop2: detected capacity change from 0 to 512
[ 1727.084666][T32456] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1727.097357][T32456] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/3/bus supports timestamps until 2038 (0x7fffffff)
[ 1727.158019][T32463] loop3: detected capacity change from 0 to 256
[ 1728.433132][T29570] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1728.449259][T32459] loop1: detected capacity change from 0 to 40427
[ 1728.510505][T32459] F2FS-fs (loop1): invalid crc value
[ 1728.518647][T32459] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1729.167666][T32486] xt_SECMARK: invalid mode: 0
[ 1729.252263][T32459] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[ 1729.463156][T32490] loop0: detected capacity change from 0 to 512
[ 1729.479820][T32494] loop2: detected capacity change from 0 to 512
[ 1729.610437][T32501] loop3: detected capacity change from 0 to 128
[ 1729.610825][T32490] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1729.621602][T32494] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1729.638580][T32490] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/97/bus supports timestamps until 2038 (0x7fffffff)
[ 1729.710044][T32494] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/5/bus supports timestamps until 2038 (0x7fffffff)
[ 1729.754834][T32506] loop1: detected capacity change from 0 to 512
[ 1730.418462][T32506] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1730.429544][T32506] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/223/bus supports timestamps until 2038 (0x7fffffff)
[ 1730.496966][T20341] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[ 1731.176684][T20341] usb 5-1: Using ep0 maxpacket: 32
[ 1731.407516][T32531] loop1: detected capacity change from 0 to 256
[ 1731.882551][T32539] xt_SECMARK: invalid mode: 0
[ 1732.316562][T20341] usb 5-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 1732.325571][T20341] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1732.333741][T20341] usb 5-1: Product: syz
[ 1732.338017][T20341] usb 5-1: Manufacturer: syz
[ 1732.342452][T20341] usb 5-1: SerialNumber: syz
[ 1732.351126][T20341] usb 5-1: config 0 descriptor??
[ 1732.616141][   T39] usb 5-1: USB disconnect, device number 107
[ 1732.769916][T32556] xt_SECMARK: invalid mode: 0
[ 1732.983158][T32560] loop4: detected capacity change from 0 to 512
[ 1733.022982][   T45] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1733.078073][T32560] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1733.089057][T32560] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/79/bus supports timestamps until 2038 (0x7fffffff)
[ 1733.186951][T32565] loop1: detected capacity change from 0 to 128
[ 1734.385410][T32576] loop0: detected capacity change from 0 to 512
[ 1734.446075][T32576] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1734.461566][T32576] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/101/bus supports timestamps until 2038 (0x7fffffff)
[ 1735.368908][T32586] loop3: detected capacity change from 0 to 256
[ 1736.016796][T32595] loop2: detected capacity change from 0 to 512
[ 1736.048260][T32595] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1736.063616][T32595] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/9/bus supports timestamps until 2038 (0x7fffffff)
[ 1736.116022][T32601] loop4: detected capacity change from 0 to 256
[ 1736.357184][T32605] xt_SECMARK: invalid mode: 0
[ 1736.811126][T32610] syz.0.9041[32610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1736.811204][T32610] syz.0.9041[32610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1737.024004][T32615] loop0: detected capacity change from 0 to 256
[ 1737.379756][T32620] loop3: detected capacity change from 0 to 512
[ 1737.458237][T32620] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1737.469380][T32620] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/45/bus supports timestamps until 2038 (0x7fffffff)
[ 1737.527532][T32624] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1738.585567][T32634] loop0: detected capacity change from 0 to 512
[ 1738.645234][T32640] loop3: detected capacity change from 0 to 128
[ 1738.879501][T32634] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1738.930952][T32634] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/103/bus supports timestamps until 2038 (0x7fffffff)
[ 1739.030746][   T45] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1739.847413][T32652] loop2: detected capacity change from 0 to 256
[ 1740.963781][T32657] device veth0_vlan left promiscuous mode
[ 1741.060205][T32657] device veth0_vlan entered promiscuous mode
[ 1741.209720][T32664] loop0: detected capacity change from 0 to 512
[ 1741.213989][T32668] syz.2.9054[32668] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1741.215870][T32668] syz.2.9054[32668] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1741.418650][T32671] xt_SECMARK: invalid mode: 0
[ 1741.673092][T32673] loop2: detected capacity change from 0 to 256
[ 1741.804936][T32664] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1741.856116][T32664] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/104/bus supports timestamps until 2038 (0x7fffffff)
[ 1741.953071][T32678] loop3: detected capacity change from 0 to 512
[ 1741.998122][T32678] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1742.009145][T32678] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/48/bus supports timestamps until 2038 (0x7fffffff)
[ 1742.628220][T32688] syz.1.9058[32688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1742.628321][T32688] syz.1.9058[32688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1742.706003][T32690] syz.4.9057[32690] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1742.717792][T32690] syz.4.9057[32690] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1742.772621][T32694] loop2: detected capacity change from 0 to 128
[ 1743.985547][T32704] loop1: detected capacity change from 0 to 256
[ 1743.995059][T32703] loop4: detected capacity change from 0 to 256
[ 1744.275538][T32708] loop3: detected capacity change from 0 to 512
[ 1744.523080][T32708] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1744.534120][T32708] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/50/bus supports timestamps until 2038 (0x7fffffff)
[ 1744.642352][T32720] loop4: detected capacity change from 0 to 256
[ 1745.062226][   T45] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1745.274818][T32732] loop3: detected capacity change from 0 to 256
[ 1745.559898][T32734] loop2: detected capacity change from 0 to 512
[ 1745.638099][T32737] loop1: detected capacity change from 0 to 512
[ 1745.647827][T32734] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1745.666556][T32734] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/16/bus supports timestamps until 2038 (0x7fffffff)
[ 1745.780147][T32737] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1745.787791][T32728] loop0: detected capacity change from 0 to 40427
[ 1745.792036][T32737] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/233/bus supports timestamps until 2038 (0x7fffffff)
[ 1746.007711][T32745] syz.4.9070[32745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1746.007786][T32745] syz.4.9070[32745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1746.311792][T32748] loop4: detected capacity change from 0 to 256
[ 1746.951992][T32728] F2FS-fs (loop0): invalid crc value
[ 1746.958692][T32728] F2FS-fs (loop0): Failed to start F2FS issue_checkpoint_thread (-12)
[ 1746.971585][T32754] loop3: detected capacity change from 0 to 512
[ 1747.034805][T32762] loop2: detected capacity change from 0 to 128
[ 1747.058232][T32754] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1747.087407][T32754] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/52/bus supports timestamps until 2038 (0x7fffffff)
[ 1748.442172][  T304] syz.0.9075[304] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1748.442249][  T304] syz.0.9075[304] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1748.771456][  T309] loop0: detected capacity change from 0 to 256
[ 1749.788504][T29570] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1750.480617][  T330] loop3: detected capacity change from 0 to 256
[ 1750.583631][  T332] loop4: detected capacity change from 0 to 512
[ 1750.684275][  T337] loop0: detected capacity change from 0 to 512
[ 1750.690580][  T341] loop1: detected capacity change from 0 to 512
[ 1750.704680][  T339] loop2: detected capacity change from 0 to 512
[ 1750.714947][  T332] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1750.728542][  T332] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/89/bus supports timestamps until 2038 (0x7fffffff)
[ 1750.815230][  T337] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1750.818743][  T339] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1750.826287][  T341] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1750.837142][  T337] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/108/bus supports timestamps until 2038 (0x7fffffff)
[ 1750.848189][  T341] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/236/bus supports timestamps until 2038 (0x7fffffff)
[ 1750.926678][  T356] loop3: detected capacity change from 0 to 256
[ 1751.194112][  T339] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/20/bus supports timestamps until 2038 (0x7fffffff)
[ 1752.108961][  T368] loop4: detected capacity change from 0 to 512
[ 1752.134802][  T376] loop3: detected capacity change from 0 to 128
[ 1752.142628][  T370] device veth0_vlan left promiscuous mode
[ 1752.148580][  T370] device veth0_vlan entered promiscuous mode
[ 1752.218751][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1752.295299][  T368] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1752.308805][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1752.321729][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1752.674936][  T368] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/90/bus supports timestamps until 2038 (0x7fffffff)
[ 1752.816761][  T389] loop1: detected capacity change from 0 to 512
[ 1753.522101][  T389] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1753.533171][  T389] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/237/bus supports timestamps until 2038 (0x7fffffff)
[ 1753.620159][  T414] loop2: detected capacity change from 0 to 256
[ 1754.539040][  T418] loop0: detected capacity change from 0 to 256
[ 1755.616212][  T419] loop4: detected capacity change from 0 to 512
[ 1755.668366][  T419] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1755.680373][  T419] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/91/bus supports timestamps until 2038 (0x7fffffff)
[ 1756.180681][  T432] loop3: detected capacity change from 0 to 128
[ 1756.202163][  T434] loop1: detected capacity change from 0 to 512
[ 1756.276180][  T435] loop2: detected capacity change from 0 to 512
[ 1757.144293][  T434] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1757.185139][  T434] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/238/bus supports timestamps until 2038 (0x7fffffff)
[ 1757.230710][  T435] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1757.247898][  T435] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/23/bus supports timestamps until 2038 (0x7fffffff)
[ 1758.090009][  T461] loop0: detected capacity change from 0 to 512
[ 1758.399742][  T467] loop3: detected capacity change from 0 to 256
[ 1758.726227][  T461] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1758.745771][  T461] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/117/bus supports timestamps until 2038 (0x7fffffff)
[ 1759.177354][  T476] loop2: detected capacity change from 0 to 512
[ 1759.189446][  T475] loop4: detected capacity change from 0 to 512
[ 1759.257922][  T476] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1759.286659][  T476] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/24/bus supports timestamps until 2038 (0x7fffffff)
[ 1759.287503][  T475] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1759.339895][  T475] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/93/bus supports timestamps until 2038 (0x7fffffff)
[ 1759.405737][  T491] loop0: detected capacity change from 0 to 512
[ 1759.913353][ T6694] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1759.947439][  T497] device veth0_vlan left promiscuous mode
[ 1759.953245][  T497] device veth0_vlan entered promiscuous mode
[ 1759.970097][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1759.983248][  T500] loop2: detected capacity change from 0 to 128
[ 1759.990044][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1759.998475][  T491] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1760.010732][  T491] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/119/bus supports timestamps until 2038 (0x7fffffff)
[ 1760.039602][T15573] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1762.274857][  T534] loop1: detected capacity change from 0 to 512
[ 1762.297786][  T535] loop3: detected capacity change from 0 to 512
[ 1762.318233][  T535] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1762.329217][  T535] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/63/bus supports timestamps until 2038 (0x7fffffff)
[ 1762.335061][  T541] loop2: detected capacity change from 0 to 256
[ 1763.154196][  T544] xt_SECMARK: invalid mode: 0
[ 1763.159821][  T543] xt_SECMARK: invalid mode: 0
[ 1763.836657][  T534] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1763.837846][  T547] loop4: detected capacity change from 0 to 512
[ 1763.848084][  T534] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/242/bus supports timestamps until 2038 (0x7fffffff)
[ 1764.752094][  T555] loop0: detected capacity change from 0 to 512
[ 1764.784171][  T547] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1764.814445][  T547] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/97/bus supports timestamps until 2038 (0x7fffffff)
[ 1764.930390][  T570] loop1: detected capacity change from 0 to 512
[ 1764.944534][  T555] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1764.955906][  T555] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/123/bus supports timestamps until 2038 (0x7fffffff)
[ 1764.981229][  T574] loop2: detected capacity change from 0 to 128
[ 1765.182635][  T570] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1765.248839][  T570] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/243/bus supports timestamps until 2038 (0x7fffffff)
[ 1766.041093][  T581] loop4: detected capacity change from 0 to 512
[ 1766.810530][  T581] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1766.821602][  T581] ext4 filesystem being mounted at /root/syzkaller.ieZ1c5/98/bus supports timestamps until 2038 (0x7fffffff)
[ 1767.220410][  T605] xt_SECMARK: invalid mode: 0
[ 1768.279657][  T613] loop0: detected capacity change from 0 to 512
[ 1768.337781][  T615] loop2: detected capacity change from 0 to 512
[ 1768.347843][  T619] loop1: detected capacity change from 0 to 512
[ 1768.362765][  T617] device veth0_vlan left promiscuous mode
[ 1768.374766][  T617] device veth0_vlan entered promiscuous mode
[ 1768.385812][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1768.464181][  T613] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1768.475265][  T615] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1768.486179][  T619] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1768.491620][  T613] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/124/bus supports timestamps until 2038 (0x7fffffff)
[ 1768.499960][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1768.508676][  T615] ext4 filesystem being mounted at /root/syzkaller.jX1L2F/30/bus supports timestamps until 2038 (0x7fffffff)
[ 1768.516120][  T619] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/245/bus supports timestamps until 2038 (0x7fffffff)
[ 1768.658645][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1768.668342][  T631] loop4: detected capacity change from 0 to 256
[ 1769.485131][  T643] loop3: detected capacity change from 0 to 128
[ 1769.578094][  T649] loop1: detected capacity change from 0 to 512
[ 1769.927905][  T649] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1769.945037][  T649] ext4 filesystem being mounted at /root/syzkaller.dwzVxT/246/bus supports timestamps until 2038 (0x7fffffff)
[ 1770.013057][   T45] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1770.294275][  T658] device veth0_vlan left promiscuous mode
[ 1770.301347][  T658] device veth0_vlan entered promiscuous mode
[ 1770.310120][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1770.326954][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1770.343637][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1770.516496][  T670] loop1: detected capacity change from 0 to 128
[ 1770.518397][  T672] loop3: detected capacity change from 0 to 128
[ 1772.101268][T15573] Bluetooth: hci0: command 0x1003 tx timeout
[ 1772.107184][  T321] Bluetooth: hci0: sending frame failed (-49)
[ 1772.141995][  T681] loop0: detected capacity change from 0 to 512
[ 1772.198309][  T688] loop3: detected capacity change from 0 to 512
[ 1772.349947][  T681] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1772.384830][  T688] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1772.396238][  T681] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/127/bus supports timestamps until 2038 (0x7fffffff)
[ 1772.409405][  T688] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/71/bus supports timestamps until 2038 (0x7fffffff)
[ 1772.892817][  T702] loop4: detected capacity change from 0 to 256
[ 1773.837918][  T711] loop4: detected capacity change from 0 to 128
[ 1773.947427][  T712] loop1: detected capacity change from 0 to 256
[ 1774.243162][T15573] Bluetooth: hci0: command 0x1001 tx timeout
[ 1774.252471][  T716] loop0: detected capacity change from 0 to 256
[ 1774.331267][  T321] Bluetooth: hci0: sending frame failed (-49)
[ 1774.349650][  T718] loop3: detected capacity change from 0 to 128
[ 1774.644329][  T724] loop0: detected capacity change from 0 to 512
[ 1774.799381][  T724] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1774.816784][  T724] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/129/bus supports timestamps until 2038 (0x7fffffff)
[ 1775.535436][  T740] device veth0_vlan left promiscuous mode
[ 1775.541441][  T740] device veth0_vlan entered promiscuous mode
[ 1775.548259][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1775.614737][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1775.622694][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1775.916728][  T751] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1776.174000][    T8] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1776.259950][  T762] loop3: detected capacity change from 0 to 256
[ 1776.366597][T19334] Bluetooth: hci0: command 0x1009 tx timeout
[ 1776.658433][  T770] loop4: detected capacity change from 0 to 256
[ 1777.161005][  T775] loop3: detected capacity change from 0 to 256
[ 1777.414710][  T779] loop4: detected capacity change from 0 to 128
[ 1777.909965][  T786] loop3: detected capacity change from 0 to 512
[ 1777.948414][  T786] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1777.959430][  T786] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/76/bus supports timestamps until 2038 (0x7fffffff)
[ 1778.323647][T20341] Bluetooth: hci1: command 0x1003 tx timeout
[ 1778.329520][  T322] Bluetooth: hci1: sending frame failed (-49)
[ 1778.677124][  T803] loop0: detected capacity change from 0 to 128
[ 1779.430413][  T821] loop4: detected capacity change from 0 to 256
[ 1779.701853][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.708847][  T826] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1779.716161][  T826] device bridge_slave_0 entered promiscuous mode
[ 1779.723550][  T826] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.731181][  T826] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1779.734718][   T30] audit: type=1400 audit(1719655313.909:1033): avc:  denied  { lock } for  pid=831 comm="syz.3.9189" path="socket:[164696]" dev="sockfs" ino=164696 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[ 1779.739021][  T826] device bridge_slave_1 entered promiscuous mode
[ 1779.826041][  T826] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.832917][  T826] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1779.840046][  T826] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.846790][  T826] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1779.866399][T19334] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1779.873539][T19334] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1779.881092][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1779.897251][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1779.906898][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1779.915321][T14779] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.922191][T14779] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1779.939075][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1779.947361][T20341] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.954198][T20341] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1779.961517][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1779.969392][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1779.987316][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1779.998329][  T826] device veth0_vlan entered promiscuous mode
[ 1780.006610][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1780.014613][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1780.022320][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1780.033285][  T826] device veth1_macvtap entered promiscuous mode
[ 1780.039962][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1780.052897][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1780.061111][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1780.144174][  T841] loop2: detected capacity change from 0 to 128
[ 1780.366538][T20341] Bluetooth: hci1: command 0x1001 tx timeout
[ 1780.372419][  T322] Bluetooth: hci1: sending frame failed (-49)
[ 1780.937417][    T8] device bridge_slave_1 left promiscuous mode
[ 1780.943440][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1780.950874][    T8] device bridge_slave_0 left promiscuous mode
[ 1780.956937][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1780.964663][    T8] device veth1_macvtap left promiscuous mode
[ 1780.970849][    T8] device veth0_vlan left promiscuous mode
[ 1781.184080][  T864] loop2: detected capacity change from 0 to 256
[ 1781.332620][  T866] loop4: detected capacity change from 0 to 128
[ 1781.734165][  T875] loop3: detected capacity change from 0 to 128
[ 1782.198306][  T884] loop0: detected capacity change from 0 to 256
[ 1782.446477][T29135] Bluetooth: hci1: command 0x1009 tx timeout
[ 1782.886472][T29135] usb 4-1: new high-speed USB device number 101 using dummy_hcd
[ 1783.126653][T29135] usb 4-1: Using ep0 maxpacket: 8
[ 1783.436609][T29135] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[ 1783.446054][T29135] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1783.454027][T29135] usb 4-1: Product: syz
[ 1783.458079][T29135] usb 4-1: Manufacturer: syz
[ 1783.462527][T29135] usb 4-1: SerialNumber: syz
[ 1783.470836][T29135] usb 4-1: config 0 descriptor??
[ 1783.780411][  T909] loop0: detected capacity change from 0 to 256
[ 1783.879255][  T919] loop0: detected capacity change from 0 to 128
[ 1783.939317][  T924] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9219'.
[ 1783.964041][  T924] netlink: 120 bytes leftover after parsing attributes in process `syz.4.9219'.
[ 1784.781557][T29800] usb 4-1: USB disconnect, device number 101
[ 1784.802807][  T942] loop3: detected capacity change from 0 to 256
[ 1784.851091][   T30] audit: type=1400 audit(1719655319.029:1034): avc:  denied  { getopt } for  pid=940 comm="syz.2.9223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1784.933651][   T30] audit: type=1400 audit(1719655319.109:1035): avc:  denied  { read } for  pid=946 comm="syz.4.9224" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=165691 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1784.967895][   T30] audit: type=1400 audit(1719655319.149:1036): avc:  denied  { read } for  pid=951 comm="syz.2.9227" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1784.991807][   T30] audit: type=1400 audit(1719655319.149:1037): avc:  denied  { open } for  pid=951 comm="syz.2.9227" path="/dev/vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1785.466501][T29800] usb 3-1: new high-speed USB device number 105 using dummy_hcd
[ 1785.686146][  T964] /dev/sr0: Can't open blockdev
[ 1785.700155][  T966] loop3: detected capacity change from 0 to 128
[ 1785.736755][T29800] usb 3-1: Using ep0 maxpacket: 16
[ 1785.866551][T29800] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1786.216545][T29800] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1786.220139][   T30] audit: type=1400 audit(1719655320.399:1038): avc:  denied  { mounton } for  pid=978 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 1786.225500][T29800] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1786.255478][T29800] usb 3-1: Product: syz
[ 1786.260206][T29800] usb 3-1: Manufacturer: syz
[ 1786.264599][T29800] usb 3-1: SerialNumber: syz
[ 1786.272849][T29800] usb 3-1: config 0 descriptor??
[ 1786.306333][  T978] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1786.313421][  T978] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1786.320842][  T978] device bridge_slave_0 entered promiscuous mode
[ 1786.329247][  T978] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1786.336307][  T978] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1786.343923][  T978] device bridge_slave_1 entered promiscuous mode
[ 1786.391304][  T978] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1786.398181][  T978] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1786.405242][  T978] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1786.412054][  T978] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1786.431715][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1786.439442][T29800] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1786.446764][T29800] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1786.446958][T26089] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[ 1786.478517][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1786.486626][T32750] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1786.493460][T32750] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1786.500890][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1786.508873][T32750] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1786.515722][T32750] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1786.552372][  T978] device veth0_vlan entered promiscuous mode
[ 1786.565022][  T978] device veth1_macvtap entered promiscuous mode
[ 1786.586748][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1786.595030][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1786.620791][   T30] audit: type=1400 audit(1719655320.799:1039): avc:  denied  { write } for  pid=990 comm="syz.3.9240" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[ 1786.651317][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1786.659073][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1786.668640][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1786.676936][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1786.684698][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1786.697164][  T989] netlink: 'syz.0.9239': attribute type 6 has an invalid length.
[ 1786.725434][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1786.735482][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1786.856666][T26089] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[ 1786.869917][T26089] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1786.878822][T26089] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1786.888278][T26089] usb 5-1: config 0 descriptor??
[ 1786.966733][ T1008] loop3: detected capacity change from 0 to 16
[ 1786.978943][T26089] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[ 1787.002341][ T1008] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1787.167259][    T8] device bridge_slave_1 left promiscuous mode
[ 1787.173473][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1787.180894][    T8] device bridge_slave_0 left promiscuous mode
[ 1787.186929][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1787.194772][    T8] device veth1_macvtap left promiscuous mode
[ 1787.200766][    T8] device veth0_vlan left promiscuous mode
[ 1787.401511][ T1023] loop1: detected capacity change from 0 to 128
[ 1788.200731][T14779] usb 3-1: USB disconnect, device number 105
[ 1788.291623][ T1041] 9pnet: Insufficient options for proto=fd
[ 1788.486545][T26089] usb 4-1: new high-speed USB device number 102 using dummy_hcd
[ 1788.511869][ T1047] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1788.518856][ T1047] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1788.526128][ T1047] device bridge_slave_0 entered promiscuous mode
[ 1788.533685][ T1047] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1788.541144][ T1047] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1788.548411][ T1047] device bridge_slave_1 entered promiscuous mode
[ 1788.592346][ T1047] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1788.599300][ T1047] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1788.606375][ T1047] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1788.613186][ T1047] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1788.626498][T32750] usb 1-1: new high-speed USB device number 96 using dummy_hcd
[ 1788.637157][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1788.644570][T19334] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1788.652230][T19334] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1788.661052][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1788.669236][T29800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1788.676091][T29800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1788.687345][  T391] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1788.695259][  T391] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1788.702011][  T391] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1788.717025][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1788.724772][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1788.736034][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1788.736470][T26089] usb 4-1: Using ep0 maxpacket: 16
[ 1788.750039][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1788.758107][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1788.765317][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1788.775940][ T1047] device veth0_vlan entered promiscuous mode
[ 1788.786122][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1788.794948][ T1047] device veth1_macvtap entered promiscuous mode
[ 1788.804252][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1788.815735][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1788.887465][T32750] usb 1-1: Using ep0 maxpacket: 32
[ 1788.996503][   T30] audit: type=1400 audit(1719655323.169:1040): avc:  denied  { setopt } for  pid=1055 comm="syz.1.9258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 1789.016181][T32750] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[ 1789.026352][   T10] device bridge_slave_1 left promiscuous mode
[ 1789.028471][T32750] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1789.032680][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1789.042844][T32750] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x95, skipping
[ 1789.059853][T26089] usb 4-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[ 1789.068895][T26089] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.076716][T32750] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[ 1789.079681][   T10] device bridge_slave_0 left promiscuous mode
[ 1789.086384][T26089] usb 4-1: Product: syz
[ 1789.099227][T32750] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1789.109724][T26089] usb 4-1: Manufacturer: syz
[ 1789.114172][T26089] usb 4-1: SerialNumber: syz
[ 1789.121771][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1789.129791][T26089] usb 4-1: config 0 descriptor??
[ 1789.134680][T32750] usb 1-1: config 0 interface 0 altsetting 0 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[ 1789.147665][   T10] device veth1_macvtap left promiscuous mode
[ 1789.153543][   T10] device veth0_vlan left promiscuous mode
[ 1789.227265][T20341] usb 5-1: USB disconnect, device number 108
[ 1789.306576][T32750] usb 1-1: New USB device found, idVendor=0694, idProduct=0001, bcdDevice=51.44
[ 1789.315498][T32750] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.323315][T32750] usb 1-1: Product: syz
[ 1789.327374][T32750] usb 1-1: Manufacturer: syz
[ 1789.331806][T32750] usb 1-1: SerialNumber: syz
[ 1789.337217][T32750] usb 1-1: config 0 descriptor??
[ 1789.356558][ T1045] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 1789.403237][ T1068] netlink: 5 bytes leftover after parsing attributes in process `syz.4.9261'.
[ 1789.668700][ T1041] UDC core: couldn't find an available UDC or it's busy: -16
[ 1789.675983][ T1041] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1789.700054][T19334] usb 1-1: USB disconnect, device number 96
[ 1790.016492][T32750] usb 3-1: new high-speed USB device number 106 using dummy_hcd
[ 1790.256499][T32750] usb 3-1: Using ep0 maxpacket: 16
[ 1790.280992][ T1080] loop4: detected capacity change from 0 to 16
[ 1790.320115][ T1080] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1790.436580][T32750] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1790.453184][T32750] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1790.466102][T32750] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1790.468968][T20341] usb 4-1: USB disconnect, device number 102
[ 1790.475231][T32750] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1790.508416][T32750] usb 3-1: config 0 descriptor??
[ 1790.632784][ T1098] loop3: detected capacity change from 0 to 512
[ 1790.848738][ T1070] kvm [1069]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0xa00000000
[ 1790.884073][ T1070] kvm [1069]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x250000f7ff
[ 1791.133299][T32750] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.00C0/input/input30
[ 1791.172040][T32750] microsoft 0003:045E:07DA.00C0: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[ 1791.439052][   T30] audit: type=1400 audit(1719655325.619:1041): avc:  denied  { connect } for  pid=1140 comm="syz.4.9288" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1791.831055][   T30] audit: type=1400 audit(1719655326.009:1042): avc:  denied  { unmount } for  pid=30868 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 1791.859113][   T30] audit: type=1400 audit(1719655326.039:1043): avc:  denied  { create } for  pid=1166 comm="syz.4.9298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1792.023601][ T1178] loop4: detected capacity change from 0 to 512
[ 1792.199040][ T1193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9309'.
[ 1792.295551][ T1204] loop3: detected capacity change from 0 to 256
[ 1792.341940][ T1209] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9313'.
[ 1792.595584][ T1220] loop3: detected capacity change from 0 to 256
[ 1792.617204][ T1220] exfat: Unknown parameter '184467440737095516150x0000000000000003'
[ 1792.735979][ T1220] loop3: detected capacity change from 0 to 512
[ 1792.768750][T32750] usb 3-1: USB disconnect, device number 106
[ 1792.844236][ T1227] IPv6: NLM_F_REPLACE set, but no existing node found!
[ 1792.948322][   T30] audit: type=1400 audit(1719655327.129:1044): avc:  denied  { read } for  pid=1230 comm="syz.1.9323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1792.997348][ T1233] device wg2 entered promiscuous mode
[ 1793.108133][   T30] audit: type=1326 audit(1719655327.289:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.131541][   T30] audit: type=1326 audit(1719655327.289:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.165849][   T30] audit: type=1326 audit(1719655327.289:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.190558][   T30] audit: type=1326 audit(1719655327.289:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.225853][   T30] audit: type=1326 audit(1719655327.289:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.278272][ T1254] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9333'.
[ 1793.288173][   T30] audit: type=1326 audit(1719655327.289:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1237 comm="syz.4.9326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87cb7d8b99 code=0x7ffc0000
[ 1793.312641][ T1252] IPv6: NLM_F_REPLACE set, but no existing node found!
[ 1793.363330][ T1263] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9337'.
[ 1793.387145][ T1266] loop0: detected capacity change from 0 to 512
[ 1793.544731][ T1286] loop2: detected capacity change from 0 to 512
[ 1793.560025][ T1266] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.9338: casefold flag without casefold feature
[ 1793.573439][ T1266] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.9338: missing EA_INODE flag
[ 1793.585742][ T1266] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.9338: error while reading EA inode 2 err=-117
[ 1793.606053][ T1266] EXT4-fs (loop0): 1 orphan inode deleted
[ 1793.611843][ T1266] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1793.628280][ T1286] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[ 1793.631495][ T1266] EXT4-fs error (device loop0): dx_make_map:1327: inode #2: block 255: comm syz.0.9338: bad entry in directory: inode out of bounds - offset=0, inode=1633771873, rec_len=1024, size=1024 fake=0
[ 1793.636127][ T1286] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[ 1793.658888][ T1266] EXT4-fs error (device loop0) in do_split:2092: Corrupt filesystem
[ 1793.664086][ T1286] EXT4-fs (loop2): 1 truncate cleaned up
[ 1793.673920][ T1266] EXT4-fs error (device loop0): ext4_find_dest_de:2112: inode #2: block 255: comm syz.0.9338: bad entry in directory: inode out of bounds - offset=0, inode=1633771873, rec_len=1024, size=1024 fake=0
[ 1793.676205][ T1286] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,usrjquota="errors=remount-ro,noload,data_err=ignore,grpjquota="errors=continue,errors=remount-ro,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[ 1793.820930][ T1302] loop0: detected capacity change from 0 to 1024
[ 1793.845286][ T1308] loop2: detected capacity change from 0 to 1024
[ 1793.877352][ T1308] EXT4-fs (loop2): Ignoring removed orlov option
[ 1793.883721][ T1308] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[ 1793.896100][ T1311] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9355'.
[ 1793.906372][ T1308] EXT4-fs (loop2): group descriptors corrupted!
[ 1793.987900][ T1302] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1793.998478][ T1302] ext4 filesystem being mounted at /root/syzkaller.LmWeTX/175/file1 supports timestamps until 2038 (0x7fffffff)
[ 1794.135626][ T1321] loop2: detected capacity change from 0 to 128
[ 1794.254798][ T1325] netlink: 40 bytes leftover after parsing attributes in process `syz.0.9361'.
[ 1794.717089][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 1794.725251][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1794.747128][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 1794.772231][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1794.791412][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1794.807665][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1794.830578][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1794.841290][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1795.114393][ T1366] loop2: detected capacity change from 0 to 256
[ 1795.156981][ T1366] exfat: Unknown parameter '184467440737095516150x0000000000000003'
[ 1795.177215][T20341] usb 4-1: new high-speed USB device number 103 using dummy_hcd
[ 1795.260605][ T1366] loop2: detected capacity change from 0 to 512
[ 1795.357977][ T1375] loop4: detected capacity change from 0 to 128
[ 1795.365124][ T1366] kvm [1365]: vcpu0, guest rIP: 0x19d disabled perfctr wrmsr: 0x187 data 0x6b0004300008187
[ 1795.482913][    C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies.  Check SNMP counters.
[ 1795.567554][T20341] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1795.590457][T20341] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1795.747922][T20341] usb 4-1: config 0 descriptor??
[ 1795.772561][ T1397] device veth0_vlan left promiscuous mode
[ 1795.783620][ T1397] device veth0_vlan entered promiscuous mode
[ 1795.790547][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1795.807666][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1795.818975][T26089] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1796.126613][T20341] usb 4-1: Cannot read MAC address
[ 1796.132580][T20341] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -71
[ 1796.165660][T20341] usb 4-1: USB disconnect, device number 103
[ 1796.701222][ T1442] loop3: detected capacity change from 0 to 128
[ 1797.356480][T32750] usb 2-1: new high-speed USB device number 102 using dummy_hcd
[ 1797.776544][T32750] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1797.787678][T32750] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1797.801748][T32750] usb 2-1: config 0 descriptor??
[ 1798.146500][T32750] usb 2-1: Cannot read MAC address
[ 1798.151608][T32750] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[ 1798.166193][T32750] usb 2-1: USB disconnect, device number 102
[ 1798.463267][ T1492] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9421'.
[ 1798.513290][   T30] kauditd_printk_skb: 10 callbacks suppressed
[ 1798.513307][   T30] audit: type=1400 audit(1719655332.689:1061): avc:  denied  { read } for  pid=1497 comm="syz.0.9422" path="socket:[169541]" dev="sockfs" ino=169541 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1798.563757][ T1501] loop4: detected capacity change from 0 to 128
[ 1798.595620][ T1507] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1798.641786][ T1513] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1798.649613][ T1513] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1798.909129][T14779] usb 1-1: new high-speed USB device number 97 using dummy_hcd
[ 1799.166827][T14779] usb 1-1: Using ep0 maxpacket: 16
[ 1799.316557][T14779] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[ 1799.327695][T14779] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 1799.336857][T14779] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1799.346081][T14779] usb 1-1: config 0 descriptor??
[ 1799.570454][   T30] audit: type=1400 audit(1719655333.749:1062): avc:  denied  { mount } for  pid=1538 comm="syz.3.9440" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1799.817054][ T1498] UDC core: couldn't find an available UDC or it's busy: -16
[ 1799.824568][ T1498] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1799.847043][T14779] hid (null): invalid report_size 12391
[ 1799.853010][T14779] hid (null): unknown global tag 0xc
[ 1799.865417][T14779] hid-generic 0003:0158:0100.00C1: unknown main item tag 0x1
[ 1799.887037][T14779] hid-generic 0003:0158:0100.00C1: unexpected long global item
[ 1799.894559][T14779] hid-generic: probe of 0003:0158:0100.00C1 failed with error -22
[ 1800.048120][T14779] usb 1-1: USB disconnect, device number 97
[ 1800.185643][ T1557] device wireguard0 entered promiscuous mode
[ 1800.220752][ T1551] loop1: detected capacity change from 0 to 40427
[ 1800.337838][ T1551] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1800.350096][ T1551] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1800.389218][   T30] audit: type=1400 audit(1719655334.569:1063): avc:  denied  { unmount } for  pid=31644 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1800.427242][ T1551] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1800.440884][ T1567] loop3: detected capacity change from 0 to 128
[ 1800.496918][ T1551] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 1800.527651][ T1551] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1800.539904][ T1551] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1800.582594][ T1551] 9pnet: Insufficient options for proto=fd
[ 1800.634194][ T1570] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1800.651480][ T1570] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1800.659073][ T1570] device bridge_slave_0 entered promiscuous mode
[ 1800.666354][ T1570] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1800.673586][ T1570] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1800.681010][ T1570] device bridge_slave_1 entered promiscuous mode
[ 1800.964113][ T1570] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1800.971013][ T1570] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1800.978121][ T1570] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1800.984859][ T1570] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1801.035510][  T553] device bridge_slave_1 left promiscuous mode
[ 1801.042975][  T553] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1801.061519][  T553] device bridge_slave_0 left promiscuous mode
[ 1801.076186][  T553] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1801.083495][T14779] usb 1-1: new high-speed USB device number 98 using dummy_hcd
[ 1801.099886][  T553] device veth1_macvtap left promiscuous mode
[ 1801.111542][  T553] device veth0_vlan left promiscuous mode
[ 1801.287085][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1801.294828][T20341] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1801.303486][T20341] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1801.326481][T14779] usb 1-1: Using ep0 maxpacket: 8
[ 1801.341285][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1801.349947][T20341] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1801.356819][T20341] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1801.364397][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1801.377199][T20341] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1801.384045][T20341] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1801.404093][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1801.412496][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1801.428108][ T1570] device veth0_vlan entered promiscuous mode
[ 1801.436194][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1801.448672][T14779] usb 1-1: config 0 has an invalid interface number: 205 but max is 0
[ 1801.463479][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1801.471795][T14779] usb 1-1: config 0 has no interface number 0
[ 1801.478687][T14779] usb 1-1: config 0 interface 205 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1801.490768][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1801.499698][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1801.507422][T14779] usb 1-1: config 0 interface 205 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1801.524710][ T1570] device veth1_macvtap entered promiscuous mode
[ 1801.533389][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1801.541277][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1801.548876][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1801.557749][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1801.565748][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1801.592240][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1801.600549][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1801.617232][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1801.625809][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1801.686629][T14779] usb 1-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=38.5d
[ 1801.697488][T14779] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1801.705299][T14779] usb 1-1: Product: syz
[ 1801.710619][T14779] usb 1-1: Manufacturer: syz
[ 1801.716683][T14779] usb 1-1: SerialNumber: syz
[ 1801.725695][T14779] usb 1-1: config 0 descriptor??
[ 1801.740077][ T1617] device veth0_vlan left promiscuous mode
[ 1801.746034][ T1617] device veth0_vlan entered promiscuous mode
[ 1801.970791][T29135] usb 1-1: USB disconnect, device number 98
[ 1802.235386][ T1626] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1802.242292][ T1626] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1802.249693][ T1626] device bridge_slave_0 entered promiscuous mode
[ 1802.258453][ T1626] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1802.265356][ T1626] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1802.272634][ T1626] device bridge_slave_1 entered promiscuous mode
[ 1802.340335][ T1626] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1802.347212][ T1626] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1802.354302][ T1626] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1802.361108][ T1626] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1802.396220][T29135] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1802.403600][T29135] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1802.412830][ T1643] device veth0_vlan left promiscuous mode
[ 1802.418921][ T1643] device veth0_vlan entered promiscuous mode
[ 1802.427547][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1802.435693][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1802.443403][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1802.459377][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1802.467122][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1802.482447][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1802.490601][T20341] usb 5-1: new high-speed USB device number 109 using dummy_hcd
[ 1802.501843][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1802.510172][T29800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1802.517051][T29800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1802.524588][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1802.533454][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1802.542190][T29800] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1802.549060][T29800] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1802.566252][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1802.574839][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1802.587522][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1802.601034][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1802.618300][ T1654] loop0: detected capacity change from 0 to 128
[ 1802.623542][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1802.632895][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1802.643555][ T1626] device veth0_vlan entered promiscuous mode
[ 1802.656142][ T1626] device veth1_macvtap entered promiscuous mode
[ 1802.670924][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1802.678798][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1802.687318][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1802.695809][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1802.704213][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1802.721995][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1802.729452][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1802.738331][T20341] usb 5-1: Using ep0 maxpacket: 16
[ 1802.743824][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1802.752263][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1802.777782][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1802.789483][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1802.861367][    T8] device bridge_slave_1 left promiscuous mode
[ 1802.868104][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1802.875603][    T8] device bridge_slave_0 left promiscuous mode
[ 1802.881705][T20341] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1802.893850][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1802.900936][T20341] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1802.914384][    T8] device veth1_macvtap left promiscuous mode
[ 1802.918166][T20341] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1802.920278][    T8] device veth0_vlan left promiscuous mode
[ 1802.929234][T20341] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1802.943263][T20341] usb 5-1: config 0 descriptor??
[ 1803.123981][ T1677] device veth0_vlan left promiscuous mode
[ 1803.130468][ T1677] device veth0_vlan entered promiscuous mode
[ 1803.786539][T20341] usbhid 5-1:0.0: can't add hid device: -71
[ 1803.792763][T20341] usbhid: probe of 5-1:0.0 failed with error -71
[ 1803.802979][T20341] usb 5-1: USB disconnect, device number 109
[ 1803.873166][ T1714] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1803.952858][ T1717] loop1: detected capacity change from 0 to 256
[ 1804.013506][ T1718] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1804.020889][ T1718] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1804.028275][ T1718] device bridge_slave_0 entered promiscuous mode
[ 1804.029116][ T1717] FAT-fs (loop1): bogus logical sector size 0
[ 1804.035331][ T1718] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1804.045616][ T1717] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1804.047360][ T1718] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1804.061003][ T1718] device bridge_slave_1 entered promiscuous mode
[ 1804.107210][ T1718] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1804.114075][ T1718] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1804.121214][ T1718] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1804.128066][ T1718] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1804.214401][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1804.222957][T32750] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1804.230233][T32750] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1804.282839][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1804.301658][T20341] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1804.308541][T20341] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1804.330612][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1804.362755][T20341] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1804.369646][T20341] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1804.397920][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1804.443145][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1804.460252][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1804.494875][ T1718] device veth0_vlan entered promiscuous mode
[ 1804.504954][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1804.514474][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1804.531413][ T1718] device veth1_macvtap entered promiscuous mode
[ 1804.581506][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1804.595583][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1804.603253][   T30] audit: type=1400 audit(1719655338.769:1064): avc:  denied  { getopt } for  pid=1763 comm="syz.4.9523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1804.636771][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1804.654049][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1804.668029][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1804.686972][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1804.695120][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1804.705799][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1804.714433][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1804.723849][   T10] device bridge_slave_1 left promiscuous mode
[ 1804.736611][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1804.753211][   T10] device bridge_slave_0 left promiscuous mode
[ 1804.762994][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1804.777583][   T10] device veth1_macvtap left promiscuous mode
[ 1804.784043][   T10] device veth0_vlan left promiscuous mode
[ 1804.960882][ T1774] loop2: detected capacity change from 0 to 32768
[ 1805.474739][   T30] audit: type=1400 audit(1719655339.509:1065): avc:  denied  { mount } for  pid=1807 comm="syz.3.9540" name="/" dev="securityfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[ 1805.576082][ T1816] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1805.583861][ T1816] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1805.591287][ T1816] device bridge_slave_0 entered promiscuous mode
[ 1805.601633][ T1816] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1805.616922][ T1816] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1805.632447][ T1816] device bridge_slave_1 entered promiscuous mode
[ 1805.714332][ T1816] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1805.721226][ T1816] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1805.728341][ T1816] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1805.735189][ T1816] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1805.828334][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1805.836320][T29135] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1805.846638][T29135] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1805.912994][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1805.926711][T29800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1805.933603][T29800] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1805.963503][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1805.977423][T29800] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1805.984313][T29800] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1806.000953][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1806.020128][T29800] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1806.042739][ T1816] device veth0_vlan entered promiscuous mode
[ 1806.076179][   T30] audit: type=1400 audit(1719655340.249:1066): avc:  denied  { unmount } for  pid=31644 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[ 1806.087995][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1806.104599][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1806.127275][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1806.134583][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1806.168527][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1806.179033][ T1816] device veth1_macvtap entered promiscuous mode
[ 1806.200545][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1806.219987][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1806.307070][   T10] device bridge_slave_1 left promiscuous mode
[ 1806.313020][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1806.336807][   T10] device bridge_slave_0 left promiscuous mode
[ 1806.342777][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1806.362994][ T1853] loop4: detected capacity change from 0 to 40427
[ 1806.370288][   T10] device veth1_macvtap left promiscuous mode
[ 1806.376226][   T10] device veth0_vlan left promiscuous mode
[ 1806.387323][ T1853] F2FS-fs (loop4): invalid crc value
[ 1806.395292][ T1853] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1806.441140][ T1853] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1806.553796][ T1870] loop0: detected capacity change from 0 to 256
[ 1806.633577][ T1870] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1806.655541][   T30] audit: type=1400 audit(1719655340.829:1067): avc:  denied  { ioctl } for  pid=1869 comm="syz.0.9561" path="/root/syzkaller.uVefb8/9/file0/bus" dev="loop0" ino=1049011 ioctlcmd=0x7211 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1806.797047][ T1874] loop4: detected capacity change from 0 to 2048
[ 1806.847315][ T1874]  loop4: p1 p2 p3
[ 1806.852918][ T1874] loop4: p3 size 2164260864 extends beyond EOD, truncated
[ 1806.873369][  T100]  loop4: p1 p2 p3
[ 1806.878343][  T100] loop4: p3 size 2164260864 extends beyond EOD, truncated
[ 1806.925521][ T1872] loop0: detected capacity change from 0 to 40427
[ 1806.960739][ T1883] loop3: detected capacity change from 0 to 512
[ 1806.965316][  T373] udevd[373]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[ 1806.970663][ T1885] loop4: detected capacity change from 0 to 256
[ 1806.984201][ T1883] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[ 1806.994113][ T1883] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[ 1807.002341][  T372] udevd[372]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[ 1807.012845][ T1872] F2FS-fs (loop0): invalid crc value
[ 1807.014389][  T334] udevd[334]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[ 1807.027366][ T1872] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1807.030133][ T1885] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x72685a33, utbl_chksum : 0xe619d30d)
[ 1807.077508][ T1883] EXT4-fs (loop3): mounted filesystem without journal. Opts: acl,jqfmt=vfsold,nomblk_io_submit,norecovery,delalloc,,errors=continue. Quota mode: writeback.
[ 1807.083990][ T1872] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1807.116556][ T1883] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/138/file0 supports timestamps until 2038 (0x7fffffff)
[ 1807.135875][ T1883] Quota error (device loop3): find_block_dqentry: Quota for id 0 referenced but not present
[ 1807.163578][ T1881] loop2: detected capacity change from 0 to 40427
[ 1807.170046][ T1883] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 1807.214457][ T1881] F2FS-fs (loop2): invalid crc value
[ 1807.240182][ T1881] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1807.297225][ T1881] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[ 1807.313671][ T1881] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[ 1807.462487][ T1904] loop1: detected capacity change from 0 to 32768
[ 1807.701143][ T1964] input: syz0 as /devices/virtual/input/input31
[ 1807.900723][ T1975] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1807.950766][ T1979] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1808.460299][    T8] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1808.721839][ T2009] loop3: detected capacity change from 0 to 512
[ 1808.789341][ T2009] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1808.824482][ T2009] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/145/bus supports timestamps until 2038 (0x7fffffff)
[ 1809.160433][ T2015] loop0: detected capacity change from 0 to 512
[ 1809.178725][ T2015] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1809.190304][ T2015] ext4 filesystem being mounted at /root/syzkaller.uVefb8/23/bus supports timestamps until 2038 (0x7fffffff)
[ 1809.284918][ T2024] loop4: detected capacity change from 0 to 512
[ 1809.524692][ T2024] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1809.537378][ T2024] ext4 filesystem being mounted at /root/syzkaller.Qqb8MB/35/bus supports timestamps until 2038 (0x7fffffff)
[ 1809.763721][ T2033] loop3: detected capacity change from 0 to 256
[ 1810.319911][ T2041] loop0: detected capacity change from 0 to 1024
[ 1810.388148][ T2041] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[ 1810.426048][   T30] audit: type=1400 audit(1719655344.599:1068): avc:  denied  { unlink } for  pid=2040 comm="syz.0.9616" name="#17d" dev="loop0" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1810.443339][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.467045][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.487950][   T30] audit: type=1400 audit(1719655344.599:1069): avc:  denied  { write } for  pid=2040 comm="syz.0.9616" name="/" dev="overlay" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1810.497030][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.509731][   T30] audit: type=1400 audit(1719655344.599:1070): avc:  denied  { add_name } for  pid=2040 comm="syz.0.9616" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1810.540494][T32750] Bluetooth: hci1: command 0x1003 tx timeout
[ 1810.547058][T13088] Bluetooth: hci1: sending frame failed (-49)
[ 1810.556612][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.576622][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.587347][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.616840][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.651178][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.666898][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1810.678092][ T1718] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1811.009778][ T2063] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1811.016740][ T2063] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1811.024213][ T2063] device bridge_slave_0 entered promiscuous mode
[ 1811.032818][ T2063] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1811.039719][ T2063] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1811.046857][ T2063] device bridge_slave_1 entered promiscuous mode
[ 1811.092081][ T2063] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1811.099054][ T2063] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1811.106110][ T2063] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1811.112928][ T2063] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1811.132906][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1811.140721][T20341] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1811.148144][T20341] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1811.159393][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1811.168106][T32750] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1811.174954][T32750] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1811.191434][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1811.199818][T32750] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1811.206685][T32750] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1811.214056][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1811.236464][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1811.248522][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1811.249450][ T2068] loop2: detected capacity change from 0 to 512
[ 1811.261012][ T2063] device veth0_vlan entered promiscuous mode
[ 1811.274035][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1811.282182][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1811.289567][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1811.301500][ T2063] device veth1_macvtap entered promiscuous mode
[ 1811.302645][ T2068] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1811.308607][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1811.318951][ T2068] ext4 filesystem being mounted at /root/syzkaller.Eu4uXm/33/bus supports timestamps until 2038 (0x7fffffff)
[ 1811.332310][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1811.345826][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1811.356318][  T553] device bridge_slave_1 left promiscuous mode
[ 1811.362865][  T553] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1811.370343][  T553] device bridge_slave_0 left promiscuous mode
[ 1811.376310][  T553] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1811.384143][  T553] device veth1_macvtap left promiscuous mode
[ 1811.390165][  T553] device veth0_vlan left promiscuous mode
[ 1811.457646][ T2074] loop3: detected capacity change from 0 to 128
[ 1811.515905][ T2076] device veth0_vlan left promiscuous mode
[ 1811.522891][ T2076] device veth0_vlan entered promiscuous mode
[ 1811.711074][ T2089] loop4: detected capacity change from 0 to 1024
[ 1811.794521][ T2089] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[ 1811.935897][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1811.968231][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1811.980228][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1811.991814][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.003540][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.014281][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.025884][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.037204][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.049213][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.060875][ T1570] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[ 1812.665794][T32750] Bluetooth: hci1: command 0x1001 tx timeout
[ 1812.674756][T13088] Bluetooth: hci1: sending frame failed (-49)
[ 1812.717357][ T2109] EXT4-fs (sda1): re-mounted. Opts: (null). Quota mode: none.
[ 1812.865591][ T2111] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1812.872519][ T2111] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1812.880110][ T2111] device bridge_slave_0 entered promiscuous mode
[ 1812.889001][ T2111] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1812.896115][ T2111] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1812.903385][ T2111] device bridge_slave_1 entered promiscuous mode
[ 1812.948727][ T2111] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1812.955609][ T2111] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1812.962728][ T2111] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1812.969488][ T2111] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1813.025631][ T2111] device veth0_vlan entered promiscuous mode
[ 1813.043507][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1813.051238][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1813.062811][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1813.075982][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1813.084077][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1813.092438][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1813.102419][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1813.111150][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1813.118626][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1813.135632][ T2123] device veth0_vlan left promiscuous mode
[ 1813.141746][ T2123] device veth0_vlan entered promiscuous mode
[ 1813.159436][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1813.176744][ T2111] device veth1_macvtap entered promiscuous mode
[ 1813.193544][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1813.213633][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1813.398743][  T715] device bridge_slave_1 left promiscuous mode
[ 1813.418914][  T715] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1813.496218][  T715] device bridge_slave_0 left promiscuous mode
[ 1813.503302][  T715] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1813.585216][  T715] device veth1_macvtap left promiscuous mode
[ 1813.605934][ T2131] loop4: detected capacity change from 0 to 40427
[ 1813.612645][  T715] device veth0_vlan left promiscuous mode
[ 1813.722096][ T2131] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1813.734616][ T2131] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1813.761541][ T2131] F2FS-fs (loop4): invalid crc value
[ 1813.769488][ T2131] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1813.805104][ T2131] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1813.812346][ T2131] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1814.416084][ T2171] device veth0_vlan left promiscuous mode
[ 1814.422208][ T2171] device veth0_vlan entered promiscuous mode
[ 1814.434934][  T715] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1814.578636][ T2181] loop3: detected capacity change from 0 to 512
[ 1814.686520][T19334] Bluetooth: hci1: command 0x1009 tx timeout
[ 1814.876380][ T2181] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1814.887406][ T2181] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/155/bus supports timestamps until 2038 (0x7fffffff)
[ 1815.539880][ T2205] loop3: detected capacity change from 0 to 512
[ 1815.628238][ T2205] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1815.639123][ T2205] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/156/bus supports timestamps until 2038 (0x7fffffff)
[ 1815.763975][ T2210] device veth0_vlan left promiscuous mode
[ 1815.770057][ T2210] device veth0_vlan entered promiscuous mode
[ 1815.777724][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1815.785648][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1815.793106][T19334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1815.884700][ T2215] loop4: detected capacity change from 0 to 128
[ 1816.635895][ T2231] loop2: detected capacity change from 0 to 512
[ 1816.768442][ T2231] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1816.779478][ T2231] ext4 filesystem being mounted at /root/syzkaller.Eu4uXm/46/bus supports timestamps until 2038 (0x7fffffff)
[ 1816.842631][ T2244] device veth0_vlan left promiscuous mode
[ 1816.848884][ T2244] device veth0_vlan entered promiscuous mode
[ 1816.855573][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1816.864426][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1816.872037][T20341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1817.507521][ T2261] loop2: detected capacity change from 0 to 512
[ 1817.588130][ T2261] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1817.599137][ T2261] ext4 filesystem being mounted at /root/syzkaller.Eu4uXm/47/bus supports timestamps until 2038 (0x7fffffff)
[ 1817.686299][ T2274] loop4: detected capacity change from 0 to 128
[ 1818.128705][ T2279] loop0: detected capacity change from 0 to 512
[ 1818.162775][ T2279] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1818.174830][ T2279] ext4 filesystem being mounted at /root/syzkaller.P2FE4u/20/bus supports timestamps until 2038 (0x7fffffff)
[ 1818.871778][ T2286] loop4: detected capacity change from 0 to 512
[ 1818.918666][ T2286] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1818.929956][ T2286] ext4 filesystem being mounted at /root/syzkaller.6YkqTG/13/bus supports timestamps until 2038 (0x7fffffff)
[ 1819.040121][ T2298] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1819.047274][ T2298] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1819.090487][ T2298] device bridge_slave_0 entered promiscuous mode
[ 1819.240895][ T2310] loop0: detected capacity change from 0 to 256
[ 1819.732090][ T2298] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1819.748830][ T2298] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1819.765531][ T2298] device bridge_slave_1 entered promiscuous mode
[ 1819.880092][ T2321] loop3: detected capacity change from 0 to 512
[ 1819.951201][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1819.969066][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1819.989568][ T2321] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1820.007460][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1820.015665][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1820.023071][ T2321] ext4 filesystem being mounted at /root/syzkaller.4hy6TL/165/bus supports timestamps until 2038 (0x7fffffff)
[ 1820.024606][T29135] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1820.041795][T29135] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1820.049500][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1820.060423][T29135] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1820.068535][T29135] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1820.075396][T29135] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1820.098583][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1820.107127][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1820.114560][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1820.125130][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1820.143505][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1820.151337][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1820.158638][ T9350] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1820.165993][ T2298] device veth0_vlan entered promiscuous mode
[ 1820.238519][  T715] device bridge_slave_1 left promiscuous mode
[ 1820.246360][  T715] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1820.256214][  T715] device bridge_slave_0 left promiscuous mode
[ 1820.262971][  T715] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1820.279083][  T715] device veth1_macvtap left promiscuous mode
[ 1820.285438][  T715] device veth0_vlan left promiscuous mode
[ 1820.432509][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1820.441719][ T2298] device veth1_macvtap entered promiscuous mode
[ 1820.451425][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1820.459641][T14779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1820.470838][T32750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1820.500638][ T2339] device veth0_vlan left promiscuous mode
[ 1820.506744][ T2339] device veth0_vlan entered promiscuous mode
[ 1820.714089][ T2347] loop1: detected capacity change from 0 to 512
[ 1820.738590][ T2353] loop4: detected capacity change from 0 to 512
[ 1820.769073][ T2353] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1820.779974][ T2353] ext4 filesystem being mounted at /root/syzkaller.6YkqTG/17/bus supports timestamps until 2038 (0x7fffffff)
[ 1820.858142][ T2347] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1820.869046][ T2347] ext4 filesystem being mounted at /root/syzkaller.03W6bm/2/bus supports timestamps until 2038 (0x7fffffff)
[ 1822.406549][ T2381] device veth0_vlan left promiscuous mode
[ 1822.413111][ T2381] device veth0_vlan entered promiscuous mode
[ 1822.421232][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1822.429490][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1822.466172][ T2383] loop4: detected capacity change from 0 to 512
[ 1822.475361][  T583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1822.492174][ T2385] device veth0_vlan left promiscuous mode
[ 1822.501532][ T2385] device veth0_vlan entered promiscuous mode
[ 1822.584373][ T2383] ==================================================================
[ 1822.592269][ T2383] BUG: KASAN: use-after-free in __ext4_iget+0x2ee/0x3f00
[ 1822.599119][ T2383] Read of size 8 at addr ffff88813800c1a8 by task syz.4.9720/2383
[ 1822.606761][ T2383] 
[ 1822.608964][ T2383] CPU: 0 PID: 2383 Comm: syz.4.9720 Not tainted 5.15.150-syzkaller-00330-g9044d25b8ff5 #0
[ 1822.618644][ T2383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1822.628553][ T2383] Call Trace:
[ 1822.631666][ T2383]  <TASK>
[ 1822.634443][ T2383]  dump_stack_lvl+0x151/0x1b7
[ 1822.638958][ T2383]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1822.644426][ T2383]  ? panic+0x751/0x751
[ 1822.648332][ T2383]  ? __kasan_check_write+0x14/0x20
[ 1822.653279][ T2383]  print_address_description+0x87/0x3b0
[ 1822.658661][ T2383]  ? __se_sys_mount+0x2c4/0x3b0
[ 1822.663340][ T2383]  ? __x64_sys_mount+0xbf/0xd0
[ 1822.667948][ T2383]  kasan_report+0x179/0x1c0
[ 1822.672374][ T2383]  ? __ext4_iget+0x2ee/0x3f00
[ 1822.676886][ T2383]  ? __ext4_iget+0x2ee/0x3f00
[ 1822.681395][ T2383]  __asan_report_load8_noabort+0x14/0x20
[ 1822.686861][ T2383]  __ext4_iget+0x2ee/0x3f00
[ 1822.691200][ T2383]  ? xas_nomem+0x19a/0x1d0
[ 1822.695465][ T2383]  ? ida_alloc_range+0x9fd/0xa80
[ 1822.700237][ T2383]  ? __kasan_kmalloc+0x9/0x10
[ 1822.704743][ T2383]  ? ext4_get_projid+0x140/0x140
[ 1822.709515][ T2383]  ? __kasan_check_write+0x14/0x20
[ 1822.714460][ T2383]  ? _raw_write_lock+0xa4/0x170
[ 1822.719146][ T2383]  ? __proc_create+0x65a/0xa00
[ 1822.723757][ T2383]  ? ext4_init_orphan_info+0x161/0x1080
[ 1822.729145][ T2383]  ext4_enable_quotas+0x556/0x980
[ 1822.733994][ T2383]  ? ext4_force_commit+0xc0/0xc0
[ 1822.738762][ T2383]  ? proc_create+0x2b0/0x2b0
[ 1822.743192][ T2383]  ? ext4_register_sysfs+0x281/0x2c0
[ 1822.748311][ T2383]  ext4_fill_super+0x8b95/0x96e0
[ 1822.753103][ T2383]  ? ext4_mount+0x40/0x40
[ 1822.757249][ T2383]  ? vscnprintf+0x80/0x80
[ 1822.761448][ T2383]  ? set_blocksize+0x1f0/0x380
[ 1822.766018][ T2383]  ? sb_set_blocksize+0xa8/0xf0
[ 1822.770702][ T2383]  mount_bdev+0x282/0x3b0
[ 1822.774865][ T2383]  ? ext4_mount+0x40/0x40
[ 1822.779035][ T2383]  ext4_mount+0x34/0x40
[ 1822.783025][ T2383]  legacy_get_tree+0xf1/0x190
[ 1822.787540][ T2383]  ? ext4_errno_to_code+0x140/0x140
[ 1822.792575][ T2383]  vfs_get_tree+0x88/0x290
[ 1822.796828][ T2383]  do_new_mount+0x2ba/0xb30
[ 1822.801169][ T2383]  ? do_move_mount_old+0x160/0x160
[ 1822.806111][ T2383]  ? security_capable+0x87/0xb0
[ 1822.810799][ T2383]  ? ns_capable+0x89/0xe0
[ 1822.814965][ T2383]  path_mount+0x671/0x1070
[ 1822.819223][ T2383]  __se_sys_mount+0x2c4/0x3b0
[ 1822.823731][ T2383]  ? __x64_sys_mount+0xd0/0xd0
[ 1822.828332][ T2383]  ? debug_smp_processor_id+0x17/0x20
[ 1822.833538][ T2383]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1822.839460][ T2383]  __x64_sys_mount+0xbf/0xd0
[ 1822.843869][ T2383]  do_syscall_64+0x3d/0xb0
[ 1822.848121][ T2383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1822.853859][ T2383] RIP: 0033:0x7ff8b745b29a
[ 1822.858107][ T2383] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1822.877546][ T2383] RSP: 002b:00007ff8b66dae78 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1822.885784][ T2383] RAX: ffffffffffffffda RBX: 00007ff8b66daf00 RCX: 00007ff8b745b29a
[ 1822.893682][ T2383] RDX: 00000000200004c0 RSI: 0000000020000500 RDI: 00007ff8b66daec0
[ 1822.901495][ T2383] RBP: 00000000200004c0 R08: 00007ff8b66daf00 R09: 0000000000000000
[ 1822.909305][ T2383] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000500
[ 1822.917118][ T2383] R13: 00007ff8b66daec0 R14: 00000000000004a6 R15: 0000000020000240
[ 1822.924942][ T2383]  </TASK>
[ 1822.927795][ T2383] 
[ 1822.929970][ T2383] Allocated by task 1551:
[ 1822.934149][ T2383]  __kasan_slab_alloc+0xb1/0xe0
[ 1822.938815][ T2383]  slab_post_alloc_hook+0x53/0x2c0
[ 1822.943761][ T2383]  kmem_cache_alloc+0xf5/0x200
[ 1822.948362][ T2383]  f2fs_alloc_inode+0x26/0x340
[ 1822.952961][ T2383]  new_inode_pseudo+0x64/0x220
[ 1822.957565][ T2383]  new_inode+0x28/0x1c0
[ 1822.961552][ T2383]  f2fs_new_inode+0x10e/0x1410
[ 1822.966155][ T2383]  f2fs_mkdir+0x12f/0x570
[ 1822.970320][ T2383]  vfs_mkdir+0x3f6/0x610
[ 1822.974398][ T2383]  do_mkdirat+0x1eb/0x450
[ 1822.978565][ T2383]  __x64_sys_mkdir+0x6e/0x80
[ 1822.982991][ T2383]  do_syscall_64+0x3d/0xb0
[ 1822.987246][ T2383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1822.992973][ T2383] 
[ 1822.995142][ T2383] Last potentially related work creation:
[ 1823.000698][ T2383]  kasan_save_stack+0x3b/0x60
[ 1823.005209][ T2383]  __kasan_record_aux_stack+0xd3/0xf0
[ 1823.010417][ T2383]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1823.016059][ T2383]  call_rcu+0x135/0x1310
[ 1823.020138][ T2383]  evict+0x5df/0x630
[ 1823.023877][ T2383]  evict_inodes+0x5db/0x660
[ 1823.028213][ T2383]  generic_shutdown_super+0x9c/0x2e0
[ 1823.033330][ T2383]  kill_block_super+0x7e/0xe0
[ 1823.037846][ T2383]  kill_f2fs_super+0x2f9/0x3c0
[ 1823.042446][ T2383]  deactivate_locked_super+0xad/0x110
[ 1823.047652][ T2383]  deactivate_super+0xbe/0xf0
[ 1823.052162][ T2383]  cleanup_mnt+0x45c/0x510
[ 1823.056419][ T2383]  __cleanup_mnt+0x19/0x20
[ 1823.060669][ T2383]  task_work_run+0x129/0x190
[ 1823.065096][ T2383]  exit_to_user_mode_loop+0xc4/0xe0
[ 1823.070128][ T2383]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1823.075425][ T2383]  syscall_exit_to_user_mode+0x26/0x160
[ 1823.080809][ T2383]  do_syscall_64+0x49/0xb0
[ 1823.085144][ T2383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1823.090873][ T2383] 
[ 1823.093053][ T2383] Second to last potentially related work creation:
[ 1823.099466][ T2383]  kasan_save_stack+0x3b/0x60
[ 1823.103981][ T2383]  __kasan_record_aux_stack+0xd3/0xf0
[ 1823.109187][ T2383]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1823.114826][ T2383]  call_rcu+0x135/0x1310
[ 1823.118916][ T2383]  evict+0x5df/0x630
[ 1823.122641][ T2383]  iput+0x63b/0x7e0
[ 1823.126283][ T2383]  f2fs_put_super+0x683/0xc10
[ 1823.130796][ T2383]  generic_shutdown_super+0x157/0x2e0
[ 1823.136002][ T2383]  kill_block_super+0x7e/0xe0
[ 1823.140518][ T2383]  kill_f2fs_super+0x2f9/0x3c0
[ 1823.145119][ T2383]  deactivate_locked_super+0xad/0x110
[ 1823.150325][ T2383]  deactivate_super+0xbe/0xf0
[ 1823.154838][ T2383]  cleanup_mnt+0x45c/0x510
[ 1823.159090][ T2383]  __cleanup_mnt+0x19/0x20
[ 1823.163345][ T2383]  task_work_run+0x129/0x190
[ 1823.167769][ T2383]  exit_to_user_mode_loop+0xc4/0xe0
[ 1823.172804][ T2383]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1823.178098][ T2383]  syscall_exit_to_user_mode+0x26/0x160
[ 1823.183479][ T2383]  do_syscall_64+0x49/0xb0
[ 1823.187733][ T2383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1823.193470][ T2383] 
[ 1823.195629][ T2383] The buggy address belongs to the object at ffff88813800bca0
[ 1823.195629][ T2383]  which belongs to the cache f2fs_inode_cache of size 1424
[ 1823.210045][ T2383] The buggy address is located 1288 bytes inside of
[ 1823.210045][ T2383]  1424-byte region [ffff88813800bca0, ffff88813800c230)
[ 1823.223319][ T2383] The buggy address belongs to the page:
[ 1823.228798][ T2383] page:ffffea0004e00200 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88813800b690 pfn:0x138008
[ 1823.240154][ T2383] head:ffffea0004e00200 order:3 compound_mapcount:0 compound_pincount:0
[ 1823.248400][ T2383] flags: 0x4000000000010200(slab|head|zone=1)
[ 1823.254310][ T2383] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888107fb3e00
[ 1823.262727][ T2383] raw: ffff88813800b690 0000000080150007 00000001ffffffff 0000000000000000
[ 1823.271137][ T2383] page dumped because: kasan: bad access detected
[ 1823.277396][ T2383] page_owner tracks the page as allocated
[ 1823.282952][ T2383] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 9698, ts 574591150012, free_ts 0
[ 1823.303426][ T2383]  post_alloc_hook+0x1a3/0x1b0
[ 1823.308023][ T2383]  prep_new_page+0x1b/0x110
[ 1823.312398][ T2383]  get_page_from_freelist+0x3550/0x35d0
[ 1823.317744][ T2383]  __alloc_pages+0x27e/0x8f0
[ 1823.322171][ T2383]  new_slab+0x9a/0x4e0
[ 1823.326079][ T2383]  ___slab_alloc+0x39e/0x830
[ 1823.330502][ T2383]  __slab_alloc+0x4a/0x90
[ 1823.334670][ T2383]  kmem_cache_alloc+0x134/0x200
[ 1823.339356][ T2383]  f2fs_alloc_inode+0x26/0x340
[ 1823.343965][ T2383]  iget_locked+0x174/0x860
[ 1823.348210][ T2383]  f2fs_iget+0x55/0x4de0
[ 1823.352288][ T2383]  f2fs_fill_super+0x4eed/0x80e0
[ 1823.357062][ T2383]  mount_bdev+0x282/0x3b0
[ 1823.361231][ T2383]  f2fs_mount+0x34/0x40
[ 1823.365221][ T2383]  legacy_get_tree+0xf1/0x190
[ 1823.369739][ T2383]  vfs_get_tree+0x88/0x290
[ 1823.373986][ T2383] page_owner free stack trace missing
[ 1823.379245][ T2383] 
[ 1823.381362][ T2383] Memory state around the buggy address:
[ 1823.386840][ T2383]  ffff88813800c080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1823.394730][ T2383]  ffff88813800c100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1823.402631][ T2383] >ffff88813800c180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1823.410526][ T2383]                                   ^
[ 1823.415737][ T2383]  ffff88813800c200: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc
[ 1823.423631][ T2383]  ffff88813800c280: fc fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00
[ 1823.431527][ T2383] ==================================================================
[ 1823.439428][ T2383] Disabling lock debugging due to kernel taint
[ 1823.565462][ T2383] EXT4-fs warning (device loop4): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[ 1823.668606][ T2383] EXT4-fs (loop4): mount failed