last executing test programs:

19.525834036s ago: executing program 4 (id=2015):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000))
ioctl$TCSETA(r5, 0x5406, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000006c0)=0xa)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x4800)
write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x15)
r7 = dup(r6)
write$FUSE_NOTIFY_RETRIEVE(r7, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000280)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54da0e13047e9f62fbb85ccc774b3ec4c81a1a985232d16d0d934460e920a59172e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9ae"], 0xfd, 0x296, &(0x7f0000000540)="$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")
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000800)=ANY=[])
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

16.507272915s ago: executing program 4 (id=2020):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1008801, &(0x7f0000000080)=ANY=[], 0x1, 0x1f8, &(0x7f0000000400)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x840)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000100)={{0xbf, 0x0, 0x1, 0x1}, 'syz0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_DEV_SETUP(r5, 0x5501, 0x0)
unshare(0x68060200)
readv(r5, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
write$input_event(r5, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

14.955616968s ago: executing program 4 (id=2023):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x1e, 0x805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
r6 = openat$cgroup_freezer_state(r3, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r3, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r6, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r6, &(0x7f0000000080)='THAWED\x00', 0x7)

13.937749893s ago: executing program 4 (id=2026):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1008801, &(0x7f0000000080)=ANY=[], 0x1, 0x1f8, &(0x7f0000000400)="$eJzsmTGL1EAUx/8zyWbPQxQbCxsLD1T0sklW5ZpDTrC0uhO1DF487py7lb0IdweCi42NpYUfwC8gaLGVhZ2drRYqCBaunZ0wMskkmU3YJSvKLtz7wU7+mcx7897b7AtsQBDEoeXrl1+fn11bWrsI4CgW0NTz361iDTfWf3rx8MLz5evWq48v3+0ce9Qv+2MApKy/vwPg7YqFxuPjybmUw9YL+rgGnuub4Div9S0wuFmssrCOwHBHT28ZunNECxGxux2xfm9TRJ4afDUEamgDRQg2gEGPYV1XRu3AjPh29w/uhwLopkJEmWjIbJ/KpUnFuPol8a1wLBslUN/X7adPeurc1fOeUT8fHL7WbTCsar2EJlzXLUpi5H/KLvxblfz/QZL/Q5xYnIkwquL11m+ZMhvxQN/Sf+1HGU89i7qClWdU9vnMyUH/fdXqW+0tfoaC6R/L1DNNBebScCqXPswLcaO0WDbre3Yw5rYp+pMqx1mjP9mw8/7RircftHb3DxY3t8ONaCPaCYL2Fe+S510OWkkjSscx/W8u6U/zhv/GiLUOc7AXxnHX3wPirp+fB+lodNzVN50fiQ1P+h+/ijOpD6afWfmDsgTTH54clTpnjQyeIAiCIAiCIAiCIAiCIAhiIk6DQb9cYNk7sWHMPyT/BAAA//9cM2SO")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x840)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000100)={{0xbf, 0x0, 0x1, 0x1}, 'syz0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_DEV_SETUP(r5, 0x5501, 0x0)
unshare(0x68060200)
readv(r5, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
write$input_event(r5, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

12.749245212s ago: executing program 4 (id=2028):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
syz_open_dev$evdev(&(0x7f00000004c0), 0x7, 0x383140)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
open(0x0, 0x102440, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000040)=0x200, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3fb30e03f007120006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xb318, 0x0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

11.014369643s ago: executing program 4 (id=2030):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair(0x11, 0x2, 0x300, &(0x7f0000000000))
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000080)=0x1, 0x4)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0xe, &(0x7f0000000380)={[{@init_itable}, {@commit}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000001cc0)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
truncate(&(0x7f0000000340)='./file2\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r4, &(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00')
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0x2000, 0x0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000140)=0x80000000, 0x12)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
syz_emit_ethernet(0x3f, &(0x7f0000000400)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x9, 0x11, 0x0, @remote, @mcast2, {[], {0x0, 0xe22, 0x9, 0x0, @opaque='B'}}}}}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e999000000000000000000000000000000000000000000000000c81e000100000000000000000000000000000000000000000a000080"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[], 0x188}, 0x1, 0x0, 0x0, 0xc048884}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x38, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
recvmmsg(0xffffffffffffffff, &(0x7f0000002c80)=[{{0x0, 0x0, &(0x7f00000006c0)=[{0x0}, {&(0x7f0000000140)=""/180, 0xb4}, {0x0}], 0x3}}], 0x1, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f0000002f40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100"/282], 0x120)

9.495866853s ago: executing program 2 (id=2036):
brk(0x55555ede6000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0xfffffffffffffddf, &(0x7f0000000040)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r6, &(0x7f0000000000)="fa", 0xfffffdef)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

9.495504023s ago: executing program 3 (id=2037):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffde2, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0xe208, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$EVIOCGABS20(0xffffffffffffffff, 0x80184560, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000020000f0000f901000000000002"], 0x1c}}, 0x0)

8.315434272s ago: executing program 2 (id=2040):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000002c0), &(0x7f0000000600)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xbc2, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, 0x0, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, 0x0)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000040)=0x7d2, 0x4)
sendmmsg$inet(r6, 0x0, 0x0, 0x240080e4)
write(r6, 0x0, 0x0)
recvmmsg(r6, 0x0, 0x0, 0x2000, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, 0x0)

8.292334044s ago: executing program 3 (id=2041):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
syz_open_dev$evdev(&(0x7f00000004c0), 0x7, 0x383140)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
open(0x0, 0x102440, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000040)=0x200, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3fb30e03f007120006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xb318, 0x0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

7.969514174s ago: executing program 0 (id=2042):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
process_vm_readv(r0, &(0x7f0000000900)=[{0x0}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000800)=""/246, 0xf6}], 0x3, &(0x7f0000000980)=[{0x0}, {0x0}, {&(0x7f0000000c00)=""/221, 0xdd}, {&(0x7f0000000d00)=""/216, 0xd8}], 0x4, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r5, &(0x7f0000000080), 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r6, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x32}, 0x0, @in=@local}}, 0xe8)
sendmmsg$inet6(r7, &(0x7f0000000a80)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0xe0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="3d7a6033dec83b636bd7271a81d51623955c0b6147ca2674502d748cfe3ad1d46c075db3083015286304f252a9adb1d55c07dd4744ec48cb27b72d04e9bee71a237f3336004ef844c948add33ae29a96d46289e435fa9641b6073f541faf630c5a7fdade8a90a42d35202b6d8511e7255b6326b5e74a56e7a1855319e7dba18c4dbddb701fe1f20aae32ebfaa105d4214c6158ba24128427d1317430dd0e43a7f24b0dcb8078ee45ffa1b10288ddbf16ce3b5738a1566d"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r8, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(r8, 0x4008af12, 0x0)

6.656077615s ago: executing program 3 (id=2043):
r0 = getpid()
process_vm_readv(r0, 0x0, 0x0, &(0x7f00000018c0)=[{0x0}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x10000}, 0x8)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r6=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05040500d3fc030000004788031c09101128", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r3}, 0x8)
r7 = fsopen(&(0x7f0000000040)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)
r8 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r8, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001540)=ANY=[@ANYBLOB="ac00000012000105b43000"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000040002005c00010000581ba2d3a96b429bd1a36bf75c7a3aea9218910e90e1e3b3a1fea71dab2e015afc056601ebc0b9a6022723b32a3f39954c7920d060d0d3635dad7e9f401813"], 0xac}}, 0x0)

6.502856869s ago: executing program 0 (id=2044):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'veth1_to_batadv\x00', <r7=>0x0})
setsockopt$packet_int(r6, 0x107, 0x14, &(0x7f0000000200)=0x5, 0x4)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000040)=0x200, 0x4)
sendto$packet(r6, &(0x7f00000000c0)="3f040e03f007120006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xb318, 0x0, &(0x7f0000000540)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @multicast}, 0x14)

5.805401104s ago: executing program 1 (id=2045):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x2008002, &(0x7f0000000240), 0x1, 0x553, &(0x7f00000009c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="f00000001a000100000000000000000000000000000000000000000000000000ffffffff00000000000000000000000000000000000000000a00a000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e7ffffffffffffff00000000000000f1fffffffffffffffdffffffffffffff0000000000000000000000000000000000000000000000000000000000000000063500000200"/168], 0xf0}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

5.805025774s ago: executing program 2 (id=2046):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r5}, &(0x7f0000000540), 0x0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r5, &(0x7f0000000780)}, 0x20)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000200)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000480), 0x40001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000000)=ANY=[@ANYBLOB="180800000000000000000000000000001a110085", @ANYRESDEC, @ANYBLOB, @ANYRES32, @ANYBLOB], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)

5.63996189s ago: executing program 3 (id=2047):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1008801, &(0x7f0000000080)=ANY=[], 0x1, 0x1f8, &(0x7f0000000400)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x840)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000100)={{0xbf, 0x0, 0x1, 0x1}, 'syz0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_DEV_SETUP(r5, 0x5501, 0x0)
unshare(0x68060200)
readv(r5, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
write$input_event(r5, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

4.943608864s ago: executing program 2 (id=2048):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1008801, &(0x7f0000000080)=ANY=[], 0x1, 0x1f8, &(0x7f0000000400)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x840)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000100)={{0xbf, 0x0, 0x1, 0x1}, 'syz0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_DEV_SETUP(r5, 0x5501, 0x0)
unshare(0x68060200)
readv(r5, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
write$input_event(r5, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

4.879570479s ago: executing program 1 (id=2049):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x1e, 0x805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
r6 = openat$cgroup_freezer_state(r3, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r3, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r6, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r6, &(0x7f0000000080)='THAWED\x00', 0x7)

3.724572176s ago: executing program 1 (id=2050):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_btf_id_by_name$bpf_lsm(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c99064bbd27b2aa77459cff33a3a98350f1af9d51ed5bef3d63520d260804d0"}, 0x48, 0xfffffffffffffffd)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, 0x0, &(0x7f00000008c0), 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb896c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r6, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[], 0x44}}, 0x4008000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2a08000, &(0x7f0000000140)={[{@mblk_io_submit}, {@resuid={'resuid', 0x3d, 0xee00}}]}, 0xfc, 0x474, &(0x7f0000000a40)="$eJzs3MtrXFUYAPBv7mTSpM/4qNqHGl9YfDRN+rALN4qCCwVBF9VdTNNSm1ppIthSTBSpSym4F5eCf4Er3Yi6EtzqXgpBsml8gFfunXvzfk0yyUTn94MJ59x7Zu75zrlncu65MxNA2+rN/lQidkfEL1k6ybMz0qJQVm566vrQH1PXhyqRpq/9Xsn33Z66PlSWLZ+3u8gcSSKSjytxaInjjl69dnFwZGT4SpHvG7v0bt/o1WtPX7g0eH74/PA7A6dPnzje/8ypgZNNiXNPVteDH1w+fOClN26+MnTm5ls/fNVR1nVBHM3SG73z2nKux5p9sBbbMydd6WhhRWhINSKy7qrl439fVGO28/bFix+1tHLApkrTNN27/O6JFPgfq0SrawC0RvmP/vZUd3Rt0nXwdjb5XP0CKIt7unjU93REUpSpLbi+baauYt3kzMSfn0fe/jvaqv0BgK33TTb/eao+/ykf9T09cc+ccnvz9eBsa8QdEXFnRNwVEXdHxP6IvOy9EXFfg8fvXZBfPP9Mbq0rsDXK5n/PFve25s//itnfP2lPtcjtie7oiVrl3IWR4WNFmxyJ2o4s37/CMb594edPl9vXW8z9ykd2/HIuWNTjVseO+c85Ozg2uLGoZ01+mK8Bji+Of/bOVZY6EBEH1/H62bz5whNfHl5u/+rxr6AJ95nSLyIer/f/RKwQ/8L7k93FvlMDJ/u6YmT4WF95Viz24083Xl3u+BuKvwmy/t+55Pk/E39PZe792tHGj3Hj10+WvaZp4Px/s9ySnf+dldfzdGex7f3BsbEr/RGdlZcXbx+YfbUyX5af3L0/4pGlx3/2HpedY1n8hyIiO4nvj4gHIuLBou4PRcTDkb/EUsanI+L75x99ez3xJ6s1bBNk/X92Xv/HKv3feKJ68buv1xN/Xdb/J/LUkWLLWt7/1lrBjbQdAAAA/Fck+WfgK8nRmXSSHD0asStf292ZjFweHXvy3OX3/jpb/6x8T9SScqWrvh5cXw/tL9aGy/zAgvzxYt34s2p3nt9Z3PsGWmfX3PGfLzjWx3/mt2qLKwdsPt/XgvZl/EP7Mv6hfRn/0L7WOv7TTa4HsPWWGv/jLagHsPXM/6F9Gf/Qvox/aF/GP7SljXyvX2KVxHjDzdsVK5Xp3CZx5YlI8kQ63sJq/F38DMvaCm9efcpfy1i9cK0Yd9uhB1dOtO49CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoJn+DQAA//85XdxN")

3.404011036s ago: executing program 0 (id=2051):
brk(0x55555ede6000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0xfffffffffffffddf, &(0x7f0000000040)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r6, &(0x7f0000000000)="fa", 0xfffffdef)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

3.403685126s ago: executing program 3 (id=2052):
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100ff030000000000030000850000007b00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10)
r2 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000840)=ANY=[@ANYBLOB, @ANYRESHEX=r1, @ANYRES8=r1], 0x54}, 0x1, 0x0, 0x0, 0x4080}, 0x4004c030)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r3 = socket$packet(0x11, 0x2, 0x300)
bind$packet(r3, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000100)={0x0, &(0x7f00000003c0)})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xe, &(0x7f00000001c0)={0x0, &(0x7f00000002c0)})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000340)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000180)={r5})
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000c80)=ANY=[@ANYRES16=r2, @ANYBLOB="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"], 0xb8}, 0x1, 0x0, 0x0, 0x44}, 0x4000005)
unshare(0x26020280)
syz_clone(0x81080, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x60000004, 0x0)
socket$inet6(0xa, 0x0, 0x0)
ftruncate(r0, 0xc17a)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000480)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={r6, 0x3, r3, 0x5})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x8, &(0x7f0000000d80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

3.398614957s ago: executing program 2 (id=2061):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x4508, &(0x7f0000000c40), 0xa, 0x4e4, &(0x7f0000001400)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
open(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
io_setup(0x80000001, 0x0)
syz_open_procfs(0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
unshare(0x22020600)
mount$incfs(&(0x7f0000000240)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.pending_reads\x00', 0x20642, 0x0)
r6 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
setns(r6, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000080)={0x0, 0x0})

2.571946533s ago: executing program 1 (id=2053):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setgid(0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x1e, 0x805, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
r6 = openat$cgroup_freezer_state(r3, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r3, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r6, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r6, &(0x7f0000000080)='THAWED\x00', 0x7)

2.012471015s ago: executing program 0 (id=2054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540)={[{@test_dummy_encryption}]}, 0x1, 0x236, &(0x7f0000000300)="$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")
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017000000950000000000000060bda108010da26a15544b2a4c738e0fa0f897aa278b325764f2dcd6b865984f599ffe6cad199d36bc80e98b17249acf845992d69cc4a092d0655f0e225d2f568bd76a618d10b49d26440819e5f1e36c54"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r8, r7, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000a40)=ANY=[], 0x0)

1.934908432s ago: executing program 2 (id=2055):
openat$sysfs(0xffffffffffffff9c, 0x0, 0x42, 0x48)
syz_mount_image$f2fs(&(0x7f00000004c0), &(0x7f0000000040)='./bus\x00', 0x2008412, &(0x7f0000001f80)=ANY=[@ANYBLOB="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", @ANYRESDEC], 0x1, 0x553b, &(0x7f000000ac00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={0x0, 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, 0x0, 0xb0)
io_setup(0x20, &(0x7f0000001140)=<r6=>0x0)
io_submit(r6, 0x0, 0x0)

1.432999948s ago: executing program 3 (id=2056):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1008801, &(0x7f0000000080)=ANY=[], 0x1, 0x1f8, &(0x7f0000000400)="$eJzsmTGL1EAUx/8zyWbPQxQbCxsLD1T0sklW5ZpDTrC0uhO1DF487py7lb0IdweCi42NpYUfwC8gaLGVhZ2drRYqCBaunZ0wMskkmU3YJSvKLtz7wU7+mcx7897b7AtsQBDEoeXrl1+fn11bWrsI4CgW0NTz361iDTfWf3rx8MLz5evWq48v3+0ce9Qv+2MApKy/vwPg7YqFxuPjybmUw9YL+rgGnuub4Div9S0wuFmssrCOwHBHT28ZunNECxGxux2xfm9TRJ4afDUEamgDRQg2gEGPYV1XRu3AjPh29w/uhwLopkJEmWjIbJ/KpUnFuPol8a1wLBslUN/X7adPeurc1fOeUT8fHL7WbTCsar2EJlzXLUpi5H/KLvxblfz/QZL/Q5xYnIkwquL11m+ZMhvxQN/Sf+1HGU89i7qClWdU9vnMyUH/fdXqW+0tfoaC6R/L1DNNBebScCqXPswLcaO0WDbre3Yw5rYp+pMqx1mjP9mw8/7RircftHb3DxY3t8ONaCPaCYL2Fe+S510OWkkjSscx/W8u6U/zhv/GiLUOc7AXxnHX3wPirp+fB+lodNzVN50fiQ1P+h+/ijOpD6afWfmDsgTTH54clTpnjQyeIAiCIAiCIAiCIAiCIAhiIk6DQb9cYNk7sWHMPyT/BAAA//9cM2SO")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x840)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000100)={{0xbf, 0x0, 0x1, 0x1}, 'syz0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000100)={'syz0\x00', {}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x45c)
ioctl$UI_DEV_SETUP(r5, 0x5501, 0x0)
unshare(0x68060200)
readv(r5, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
write$input_event(r5, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

1.081284251s ago: executing program 1 (id=2057):
r0 = getpid()
process_vm_readv(r0, 0x0, 0x0, &(0x7f00000018c0)=[{0x0}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x10000}, 0x8)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r6=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05040500d3fc030000004788031c09101128", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r3}, 0x8)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r7, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001540)=ANY=[@ANYBLOB="ac00000012000105b43000"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000040002005c00010000581ba2d3a96b429bd1a36bf75c7a3aea9218910e90e1e3b3a1fea71dab2e015afc056601ebc0b9a6022723b32a3f39954c7920d060d0d3635dad7e9f401813"], 0xac}}, 0x0)

1.061863732s ago: executing program 0 (id=2058):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r5}, &(0x7f0000000540), 0x0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r5, &(0x7f0000000780)}, 0x20)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000200)={0x1f, 0x0, @none, 0x0, 0x2}, 0xe)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000480), 0x40001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000000)=ANY=[@ANYBLOB="180800000000000000000000000000001a110085", @ANYRESDEC, @ANYBLOB, @ANYRES32, @ANYBLOB], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)

1.570711ms ago: executing program 1 (id=2060):
r0 = getpid()
process_vm_readv(r0, 0x0, 0x0, &(0x7f00000018c0)=[{0x0}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x10000}, 0x8)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r6=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05040500d3fc030000004788031c09101128", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r3}, 0x8)
r7 = fsopen(&(0x7f0000000040)='bpf\x00', 0x0)
fsmount(r7, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)
r8 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r8, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001540)=ANY=[@ANYBLOB="ac00000012000105b43000"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000040002005c00010000581ba2d3a96b429bd1a36bf75c7a3aea9218910e90e1e3b3a1fea71dab2e015afc056601ebc0b9a6022723b32a3f39954c7920d060d0d3635dad7e9f401813"], 0xac}}, 0x0)

0s ago: executing program 0 (id=2062):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe, &(0x7f0000000440), 0x3, 0x440, &(0x7f00000006c0)="$eJzs28tvG8UfAPDvrpP019cvoZRHH0CgICIeSZMW6IEDIJA4FAkJDnCMkrQqdRvUBIlWFRSEygkhJO6II/8CJ7ggxAmJK9xRpQr10paT0dq7ie3YbuLaNcWfj7TtzO5sZr7eHXtmxw5gaE1m/yQRuyLi94gYr2UbC0zW/rtx7eLCzWsXF5KoVN76K6mWu37t4kJRtDhvZ56ZSiPSz5I40KLelfMXTs+Xy0vn8vzM6pn3Z1bOX3j21Jn5k0snl87OHTt29MjsC8/PPdeTOLM2Xd//0fLBfa+/+9Ubx79oiL8pjh6Z7HTwiUqlx9UN1u66dDIywIawJaWIyC7XaLX/j0cp1i/eeLz26UAbB/RVpVKp7Gx/+FIF+A9LojGvy8OwKD7os/lvsTUPAl7q3/Bj4K6+XJsAZXHfyLfakZFI8zKjTfPbXpqMiHcu/f1NtkV/nkMAADT4IRv/PNNq/JfG/XXl/p+vDU1ExD0RsSci7o2IvRFxX0S17AMR8eAW629eJNk4/kmvdBXYJmXjvxfzta3G8V8x+ouJUp7bXY1/NDlxqrx0OH9NpmJ0W5af7VDHj6/+9mW7Y/Xjv2zL6i/Ggnk7roxsazxncX51/nZirnf1k4j9I63iT9ZWApKI2BcR+7us49RT3x1sd+zW8XfQg3WmyrcRT9au/6Voir+QdF6fnPlflJcOzxR3xUa//Hr5zXb131b8PZBd/x0t7/+1+CeS+vXala3XcfmPz9vOabq9/8eSt6vpsXzfh/Orq+dmI8aS47VG1++fWz+3yBfls/inDrXu/3ti/ZU4EBHZTfxQRDwcEY/kbX80Ih6LiEMd4v/5lcff6z7+/sriX9zS9V9PjEXzntaJ0umfvm+odGJD/Dc7X/+j1dRUvmcz73+baVd3dzMAAADcfdKI2BVJOr2WTtPp6dr35ffGjrS8vLL69InlD84u1n4jMBGjafGka7zueehsPq0v8nNR+2pBkT+SPzf+urS9mp9eWC4vDjp4GHI72/T/zJ+lQbcO6Du/14Lhpf/D8NL/YXjp/zC8WvT/7YNoB3Dntfr8/3gA7QDuvKb+b9kPhoj5Pwwv/R+Gl/4PQ2lle9z6R/IdE8Vf6vJ0ibs0Eem/ohkSfUoM9n0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgV/4JAAD//3sE4iY=")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
epoll_create(0x4)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ptrace$ARCH_GET_CPUID(0x1e, 0x0, 0x0, 0x1011)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000000)=0x700, 0x12)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r5, 0x5605, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
setxattr$system_posix_acl(&(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000003c0)='system.posix_acl_default\x00', 0x0, 0x4c, 0x0)
listxattr(0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

640] hid (null): unknown global tag 0xd
[  584.885133][  T640] hid (null): global environment stack underflow
[  584.891552][  T640] hid (null): nested delimiters
[  584.898115][  T640] hid (null): usage index exceeded
[  584.904499][  T640] hid-generic 0003:0158:0100.0006: unknown main item tag 0x0
[  584.911770][  T640] hid-generic 0003:0158:0100.0006: unknown main item tag 0x0
[  584.924146][  T640] hid-generic 0003:0158:0100.0006: bogus close delimiter
[  584.931162][  T640] hid-generic 0003:0158:0100.0006: item 0 0 2 10 parsing failed
[  584.938751][  T640] hid-generic: probe of 0003:0158:0100.0006 failed with error -22
[  585.416343][   T28] audit: type=1400 audit(2000000088.470:1202): avc:  denied  { write } for  pid=7999 comm="syz.2.1622" name="rtc0" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  585.476256][ T8050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  585.720128][ T8050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  585.776707][ T8051] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.783969][ T8051] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.806466][ T8051] device bridge_slave_0 entered promiscuous mode
[  585.816152][ T8051] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.823202][ T8051] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.830584][ T8051] device bridge_slave_1 entered promiscuous mode
[  585.892829][  T412] device veth1_macvtap left promiscuous mode
[  585.898830][  T412] device veth0_vlan left promiscuous mode
[  586.282133][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  586.289704][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  586.307481][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  586.316246][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  586.324410][ T3336] bridge0: port 1(bridge_slave_0) entered blocking state
[  586.331281][ T3336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  586.338528][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  586.346749][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  586.355344][ T3336] bridge0: port 2(bridge_slave_1) entered blocking state
[  586.362210][ T3336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  586.376686][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  586.384331][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  586.392317][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  586.400141][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  586.411287][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  586.428479][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  586.437109][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  586.445718][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  586.453414][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  586.461424][ T8051] device veth0_vlan entered promiscuous mode
[  586.468397][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  586.475698][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  586.488688][ T5593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  586.497845][ T8051] device veth1_macvtap entered promiscuous mode
[  586.507519][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  586.515558][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  586.527124][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  586.535403][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  586.571910][ T8069] loop1: detected capacity change from 0 to 2048
[  586.587384][ T8069] EXT4-fs error (device loop1): __ext4_fill_super:5386: inode #2: comm syz.1.1648: casefold flag without casefold feature
[  586.600432][ T8069] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  586.615101][ T8069] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[  586.622971][ T8069] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  587.963303][   T19] usb 3-1: USB disconnect, device number 17
[  587.980553][ T6528] EXT4-fs (loop1): unmounting filesystem.
[  587.997679][ T8089] loop0: detected capacity change from 0 to 512
[  588.057492][ T8089] EXT4-fs (loop0): Test dummy encryption mode enabled
[  588.070942][ T8093] input: syz0 as /devices/virtual/input/input135
[  588.433800][ T8089] EXT4-fs error (device loop0): __ext4_iget:5046: inode #11: block 1: comm syz.0.1641: invalid block
[  588.574517][ T8089] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1641: couldn't read orphan inode 11 (err -117)
[  588.589086][ T8089] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  589.202603][ T8108] xt_hashlimit: size too large, truncated to 1048576
[  591.065710][ T8051] EXT4-fs (loop0): unmounting filesystem.
[  591.078689][ T8122] loop3: detected capacity change from 0 to 512
[  591.169983][ T8122] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.1652: casefold flag without casefold feature
[  591.190877][   T19] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  591.201169][ T8122] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.1652: missing EA_INODE flag
[  591.219518][ T8127] syz.2.1651[8127] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  591.219597][ T8127] syz.2.1651[8127] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  591.275806][ T8122] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1652: error while reading EA inode 12 err=-117
[  591.656431][ T8122] EXT4-fs (loop3): 1 orphan inode deleted
[  591.706188][ T8122] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  592.837094][ T7768] EXT4-fs (loop3): unmounting filesystem.
[  592.850098][ T8146] input: syz0 as /devices/virtual/input/input136
[  592.872691][ T8151] loop0: detected capacity change from 0 to 16
[  592.890101][ T8151] erofs: (device loop0): mounted with root inode @ nid 36.
[  592.900870][   T19] usb 5-1: unable to read config index 0 descriptor/start: -71
[  594.228879][   T19] usb 5-1: can't read configurations, error -71
[  594.237339][ T8151] input: syz0 as /devices/virtual/input/input137
[  594.300549][ T8164] loop4: detected capacity change from 0 to 16
[  594.343859][ T8164] erofs: (device loop4): mounted with root inode @ nid 36.
[  594.396798][ T8173] loop0: detected capacity change from 0 to 1024
[  594.428593][ T8164] input: syz0 as /devices/virtual/input/input138
[  594.478373][ T8173] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  595.560064][ T8051] EXT4-fs (loop0): unmounting filesystem.
[  595.592042][ T8194] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1679'.
[  595.604000][   T28] audit: type=1400 audit(2000000098.660:1203): avc:  denied  { mount } for  pid=8191 comm="syz.4.1666" name="/" dev="ramfs" ino=47907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  595.686327][   T28] audit: type=1326 audit(2000000098.720:1204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8191 comm="syz.4.1666" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdba157df39 code=0x0
[  596.853295][ T8210] overlayfs: failed to resolve './file0': -2
[  597.248826][ T8213] loop3: detected capacity change from 0 to 512
[  597.259436][ T8213] EXT4-fs error (device loop3): __ext4_iget:5046: inode #11: block 1: comm syz.3.1671: invalid block
[  597.270600][ T8213] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1671: couldn't read orphan inode 11 (err -117)
[  597.282963][ T8213] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  597.357573][   T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  598.604543][ T7768] EXT4-fs (loop3): unmounting filesystem.
[  598.636879][ T8229] loop3: detected capacity change from 0 to 16
[  598.779061][ T8229] erofs: (device loop3): mounted with root inode @ nid 36.
[  598.810878][   T24] usb 1-1: Using ep0 maxpacket: 8
[  599.098713][ T8237] input: syz0 as /devices/virtual/input/input139
[  599.180832][   T24] usb 1-1: device descriptor read/all, error -71
[  599.943390][ T8238] overlayfs: failed to resolve './file2': -2
[  599.952533][ T8244] tipc: Started in network mode
[  599.957262][ T8244] tipc: Node identity 1, cluster identity 4711
[  599.963268][ T8244] tipc: Node number set to 1
[  600.778341][ T8251] loop1: detected capacity change from 0 to 16
[  600.786619][ T8249] netlink: 172 bytes leftover after parsing attributes in process `syz.2.1683'.
[  600.796147][ T8251] erofs: (device loop1): mounted with root inode @ nid 36.
[  601.047116][ T8251] input: syz0 as /devices/virtual/input/input140
[  602.342626][ T8270] syz.2.1687[8270] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  602.342714][ T8270] syz.2.1687[8270] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  602.394219][   T19] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  602.612771][ T8274] incfs: ino conflict with backing FS 1
[  602.651428][ T8274] incfs: ino conflict with backing FS 2
[  602.659376][ T8274] incfs: ino conflict with backing FS 5
[  602.696169][ T8274] loop4: detected capacity change from 0 to 16
[  602.704720][ T8274] incfs: ino conflict with backing FS 6
[  602.959998][ T8274] erofs: (device loop4): mounted with root inode @ nid 36.
[  602.983256][ T8271] syz.4.1686: attempt to access beyond end of device
[  602.983256][ T8271] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  603.445943][   T24] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  603.490930][   T19] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  603.701048][   T24] usb 1-1: Using ep0 maxpacket: 32
[  603.821055][   T24] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  603.844900][   T24] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  603.929388][   T24] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  603.938753][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  603.950814][   T19] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  603.951827][   T24] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  603.963924][   T19] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  603.969587][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  603.986978][   T19] usb 4-1: config 0 descriptor??
[  604.010811][   T19] usb 4-1: can't set config #0, error -71
[  604.021824][   T19] usb 4-1: USB disconnect, device number 11
[  604.049345][ T8285] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.065621][ T8285] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.080244][ T8285] device bridge_slave_0 entered promiscuous mode
[  604.099605][ T8285] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.110018][   T24] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  604.119727][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  604.123286][ T8285] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.132661][   T24] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  604.144127][ T8285] device bridge_slave_1 entered promiscuous mode
[  604.148339][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  604.162534][   T43] device bridge_slave_1 left promiscuous mode
[  604.168600][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.176333][   T43] device bridge_slave_0 left promiscuous mode
[  604.182691][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.191063][   T43] device veth1_macvtap left promiscuous mode
[  604.197049][   T43] device veth0_vlan left promiscuous mode
[  604.266621][   T24] usb 1-1: config 0 descriptor??
[  605.300248][ T8306] loop3: detected capacity change from 0 to 16
[  605.384384][ T8306] erofs: (device loop3): mounted with root inode @ nid 36.
[  605.398729][ T8306] input: syz0 as /devices/virtual/input/input141
[  605.415154][   T24] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  605.432237][   T24] usb 1-1: USB disconnect, device number 9
[  605.743569][   T24] usblp0: removed
[  605.843677][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  605.852176][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  605.867303][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  605.875595][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  605.884988][ T3336] bridge0: port 1(bridge_slave_0) entered blocking state
[  605.891841][ T3336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  605.899084][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  605.908786][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  605.917973][ T3336] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.924828][ T3336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  605.934257][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  606.195499][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  606.213983][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  606.336557][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  606.344492][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  606.357278][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  606.365541][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  607.190009][ T8329] loop1: detected capacity change from 0 to 256
[  607.201638][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  607.210490][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  607.219278][ T8331] loop3: detected capacity change from 0 to 512
[  607.233319][ T8329] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  607.253178][ T8285] device veth0_vlan entered promiscuous mode
[  607.259162][ T8331] EXT4-fs (loop3): Test dummy encryption mode enabled
[  607.271422][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  607.278789][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  607.292977][ T8331] EXT4-fs error (device loop3): __ext4_iget:5046: inode #11: block 1: comm syz.3.1703: invalid block
[  607.298891][ T8285] device veth1_macvtap entered promiscuous mode
[  607.311498][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  607.319777][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  607.329088][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  607.334247][ T8331] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1703: couldn't read orphan inode 11 (err -117)
[  607.348977][ T8331] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  607.357854][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  607.366558][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  607.375047][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  607.383262][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  607.411239][ T8340] loop4: detected capacity change from 0 to 16
[  607.434477][ T8340] erofs: (device loop4): mounted with root inode @ nid 36.
[  607.463280][   T28] audit: type=1326 audit(2000000110.520:1205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8337 comm="syz.2.1715" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1aded7df39 code=0x0
[  607.692227][ T8336] loop0: detected capacity change from 0 to 8192
[  608.041056][ T8348] input: syz0 as /devices/virtual/input/input142
[  608.106182][ T8350] loop1: detected capacity change from 0 to 1024
[  608.114337][ T8350] EXT4-fs: quotafile must be on filesystem root
[  608.189980][ T7768] EXT4-fs (loop3): unmounting filesystem.
[  608.704730][ T8363] loop0: detected capacity change from 0 to 16
[  608.729858][ T8363] erofs: (device loop0): mounted with root inode @ nid 36.
[  608.744736][ T8363] input: syz0 as /devices/virtual/input/input143
[  610.402991][   T28] audit: type=1400 audit(2000000113.460:1206): avc:  denied  { listen } for  pid=8377 comm="syz.2.1712" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  610.426785][ T8379] loop4: detected capacity change from 0 to 512
[  610.505033][ T8379] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  610.514325][ T8379] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038 (0x7fffffff)
[  612.284441][ T8285] EXT4-fs (loop4): unmounting filesystem.
[  612.290288][ T8382] loop3: detected capacity change from 0 to 40427
[  612.315856][ T8382] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  612.320359][ T8400] loop4: detected capacity change from 0 to 256
[  612.323656][ T8382] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  612.351944][ T8382] F2FS-fs (loop3): Found nat_bits in checkpoint
[  612.396235][ T8382] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  612.421180][ T8382] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  612.481397][ T8407] input: syz0 as /devices/virtual/input/input144
[  613.811312][   T28] audit: type=1400 audit(2000000116.770:1207): avc:  denied  { setopt } for  pid=8397 comm="syz.0.1720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  614.375230][   T28] audit: type=1326 audit(2000000117.430:1208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.0.1722" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd755d7df39 code=0x0
[  614.438939][ T8419] loop3: detected capacity change from 0 to 16
[  614.478010][ T8419] erofs: (device loop3): mounted with root inode @ nid 36.
[  614.685825][ T8423] bridge0: port 1(bridge_slave_0) entered blocking state
[  614.697123][ T8423] bridge0: port 1(bridge_slave_0) entered disabled state
[  614.701013][ T8427] input: syz0 as /devices/virtual/input/input145
[  614.705209][ T8423] device bridge_slave_0 entered promiscuous mode
[  614.719360][ T8423] bridge0: port 2(bridge_slave_1) entered blocking state
[  614.760505][ T8423] bridge0: port 2(bridge_slave_1) entered disabled state
[  614.781845][ T8423] device bridge_slave_1 entered promiscuous mode
[  615.158899][ T8423] bridge0: port 2(bridge_slave_1) entered blocking state
[  615.165780][ T8423] bridge0: port 2(bridge_slave_1) entered forwarding state
[  615.172895][ T8423] bridge0: port 1(bridge_slave_0) entered blocking state
[  615.179649][ T8423] bridge0: port 1(bridge_slave_0) entered forwarding state
[  615.211300][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  615.219007][ T3341] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.228303][ T3341] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.245452][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  615.253488][ T3341] bridge0: port 1(bridge_slave_0) entered blocking state
[  615.260327][ T3341] bridge0: port 1(bridge_slave_0) entered forwarding state
[  615.272834][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  615.289419][ T8433] loop0: detected capacity change from 0 to 512
[  615.295823][ T3341] bridge0: port 2(bridge_slave_1) entered blocking state
[  615.302688][ T3341] bridge0: port 2(bridge_slave_1) entered forwarding state
[  615.313020][  T355] device bridge_slave_1 left promiscuous mode
[  615.321036][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.328642][  T355] device bridge_slave_0 left promiscuous mode
[  615.336035][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.344487][ T8433] EXT4-fs (loop0): 1 orphan inode deleted
[  615.350213][ T8433] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  615.359996][  T355] device veth1_macvtap left promiscuous mode
[  615.367009][ T8433] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038 (0x7fffffff)
[  615.376913][  T355] device veth0_vlan left promiscuous mode
[  616.167358][ T8445] syz.0.1726[8445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  616.167680][ T8445] syz.0.1726[8445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  616.216265][ T8445] overlayfs: './file1' not a directory
[  616.421495][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  616.429480][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  616.448265][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  616.461081][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  616.473577][ T8423] device veth0_vlan entered promiscuous mode
[  616.478333][ T8443] capability: warning: `syz.2.1728' uses 32-bit capabilities (legacy support in use)
[  616.479848][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  616.497398][ T8051] EXT4-fs (loop0): unmounting filesystem.
[  616.503493][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  616.512139][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  616.520044][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  616.624660][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  616.751699][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  616.761340][ T8423] device veth1_macvtap entered promiscuous mode
[  616.771293][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  616.778670][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  616.786759][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  616.795139][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  616.804080][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  617.083139][ T8462] overlayfs: missing 'workdir'
[  617.132270][ T8462] device veth0_vlan left promiscuous mode
[  617.138243][ T8462] device veth0_vlan entered promiscuous mode
[  617.675914][ T8472] incfs: ino conflict with backing FS 1
[  617.676720][ T8472] incfs: ino conflict with backing FS 2
[  617.676836][ T8472] incfs: ino conflict with backing FS 5
[  617.677916][ T8472] loop3: detected capacity change from 0 to 16
[  617.678073][ T8472] incfs: ino conflict with backing FS 6
[  617.702255][ T8472] erofs: (device loop3): mounted with root inode @ nid 36.
[  617.714978][ T8472] syz.3.1732: attempt to access beyond end of device
[  617.714978][ T8472] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[  617.948716][ T8474] loop0: detected capacity change from 0 to 16
[  617.955441][ T8474] erofs: (device loop0): mounted with root inode @ nid 36.
[  618.123913][ T8476] input: syz0 as /devices/virtual/input/input146
[  618.207232][ T8480] loop4: detected capacity change from 0 to 16
[  618.234211][ T8480] erofs: (device loop4): mounted with root inode @ nid 36.
[  618.429762][ T8483] input: syz0 as /devices/virtual/input/input147
[  618.561730][ T8481] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.594750][ T8481] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.602405][ T8481] device bridge_slave_0 entered promiscuous mode
[  618.634729][ T8481] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.647467][ T8481] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.657387][ T8481] device bridge_slave_1 entered promiscuous mode
[  618.879786][ T8488] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.893264][ T8488] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.908851][ T8488] device bridge_slave_0 entered promiscuous mode
[  618.936581][ T8488] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.947876][ T8488] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.969628][ T8488] device bridge_slave_1 entered promiscuous mode
[  619.001239][ T8481] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.008134][ T8481] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.015258][ T8481] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.022112][ T8481] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.175346][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  619.183152][  T855] bridge0: port 1(bridge_slave_0) entered disabled state
[  619.190364][  T855] bridge0: port 2(bridge_slave_1) entered disabled state
[  619.521135][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  619.531899][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  619.539925][ T2004] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.546909][ T2004] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.556109][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  619.564308][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  619.572609][ T2004] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.579466][ T2004] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.614950][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  619.622474][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  619.631081][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  619.639208][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  619.647891][ T3336] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.654752][ T3336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.688217][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  619.696529][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  619.706126][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  619.732200][  T508] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.739056][  T508] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.058308][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  620.067530][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  620.068620][ T8510] xt_hashlimit: size too large, truncated to 1048576
[  620.077882][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  620.089958][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  620.118229][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  620.133346][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  620.146357][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  620.160679][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  620.185058][ T8488] device veth0_vlan entered promiscuous mode
[  620.192281][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  620.200580][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  620.208979][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  620.218108][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  620.226275][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  620.234586][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  620.245123][  T355] device bridge_slave_1 left promiscuous mode
[  620.251118][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.258481][  T355] device bridge_slave_0 left promiscuous mode
[  620.264701][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.273143][  T355] device veth1_macvtap left promiscuous mode
[  620.279013][  T355] device veth0_vlan left promiscuous mode
[  620.285208][  T355] device veth1_macvtap left promiscuous mode
[  620.291117][  T355] device veth0_vlan left promiscuous mode
[  620.480854][ T1872] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  620.497044][ T8481] device veth0_vlan entered promiscuous mode
[  620.503385][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  620.510618][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  620.518049][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  620.526579][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  620.539171][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  620.548178][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  620.861018][ T1872] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  620.872142][ T1872] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  620.882059][ T1872] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  620.913168][ T1872] usb 1-1: config 0 descriptor??
[  621.466142][ T1872] keytouch 0003:0926:3333.0007: fixing up Keytouch IEC report descriptor
[  621.492314][ T1872] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0007/input/input148
[  621.558837][ T8488] device veth1_macvtap entered promiscuous mode
[  621.574746][ T8481] device veth1_macvtap entered promiscuous mode
[  621.661714][ T8510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  621.671554][ T8510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  621.689642][ T1872] keytouch 0003:0926:3333.0007: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  621.713011][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  621.729082][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  621.738007][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  621.745584][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  621.754607][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  622.251457][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  622.259090][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  622.270895][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  622.272387][   T28] audit: type=1400 audit(2000000125.330:1209): avc:  denied  { read } for  pid=8509 comm="syz.0.1744" name="usbmon0" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  622.279082][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  622.307385][ T8511] loop0: detected capacity change from 0 to 512
[  622.310009][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  622.332560][ T8511] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.1744: iget: bad extended attribute block 1
[  622.345136][   T28] audit: type=1400 audit(2000000125.360:1210): avc:  denied  { open } for  pid=8509 comm="syz.0.1744" path="/dev/usbmon0" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  622.370990][ T8511] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1744: couldn't read orphan inode 15 (err -117)
[  622.406138][ T8511] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  622.557485][ T8523] tipc: Started in network mode
[  622.562287][ T8523] tipc: Node identity 1, cluster identity 4711
[  622.568186][ T8523] tipc: Node number set to 1
[  622.593268][  T855] usb 1-1: USB disconnect, device number 10
[  622.613127][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  622.623004][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  622.631433][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  622.639527][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  623.573005][ T8529] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 13: invalid block bitmap
[  623.733123][ T8543] loop4: detected capacity change from 0 to 16
[  623.871245][ T8543] erofs: (device loop4): mounted with root inode @ nid 36.
[  623.880894][ T8051] EXT4-fs (loop0): unmounting filesystem.
[  624.084669][ T8554] input: syz0 as /devices/virtual/input/input149
[  626.231634][ T8570] __vm_enough_memory: pid: 8570, comm: syz.3.1765, no enough memory for the allocation
[  626.428705][ T8574] loop4: detected capacity change from 0 to 512
[  626.548295][ T8574] EXT4-fs (loop4): Test dummy encryption mode enabled
[  626.785657][ T8574] EXT4-fs error (device loop4): __ext4_iget:5046: inode #11: block 1: comm syz.4.1758: invalid block
[  626.980420][ T8574] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1758: couldn't read orphan inode 11 (err -117)
[  627.345368][ T8574] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  628.657680][ T8423] EXT4-fs (loop4): unmounting filesystem.
[  628.703162][ T8587] bridge0: port 1(bridge_slave_0) entered blocking state
[  628.748679][ T8567] loop1: detected capacity change from 0 to 40427
[  628.751490][ T8587] bridge0: port 1(bridge_slave_0) entered disabled state
[  628.762740][ T8587] device bridge_slave_0 entered promiscuous mode
[  628.776692][ T8567] F2FS-fs (loop1): Unrecognized mount option "uid=00000000000000000000" or missing value
[  628.812087][  T355] device bridge_slave_1 left promiscuous mode
[  628.821778][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  628.983416][  T355] device bridge_slave_0 left promiscuous mode
[  629.069893][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  629.081641][  T355] device veth1_macvtap left promiscuous mode
[  629.087512][  T355] device veth0_vlan left promiscuous mode
[  629.215084][ T8611] xt_hashlimit: size too large, truncated to 1048576
[  629.273499][ T8587] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.281617][ T8587] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.308597][ T8587] device bridge_slave_1 entered promiscuous mode
[  629.485148][   T28] audit: type=1400 audit(2000000132.540:1211): avc:  denied  { append } for  pid=8614 comm="syz.3.1764" name="rtc0" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  629.567670][ T8616] input: syz1 as /devices/virtual/input/input150
[  629.621588][ T8585] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  629.640847][ T8616] netlink: 'syz.3.1764': attribute type 8 has an invalid length.
[  629.714441][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  629.722473][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  629.776269][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  629.785081][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  629.803390][ T2004] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.810249][ T2004] bridge0: port 1(bridge_slave_0) entered forwarding state
[  630.028661][ T8623] loop4: detected capacity change from 0 to 16
[  630.074875][ T8623] erofs: (device loop4): mounted with root inode @ nid 36.
[  630.122682][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  630.135055][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  630.147540][ T2004] bridge0: port 2(bridge_slave_1) entered blocking state
[  630.154439][ T2004] bridge0: port 2(bridge_slave_1) entered forwarding state
[  630.166974][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  630.181452][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  630.195490][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  630.230921][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  630.242054][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  630.266033][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  630.274924][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  630.282808][ T8585] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  630.308595][ T8585] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  630.322026][ T8625] input: syz0 as /devices/virtual/input/input151
[  630.328870][ T8585] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  630.352496][ T8585] usb 2-1: config 0 descriptor??
[  630.359968][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  630.373765][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  630.381766][ T8587] device veth0_vlan entered promiscuous mode
[  630.422950][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  630.433884][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  630.449490][ T8587] device veth1_macvtap entered promiscuous mode
[  630.475248][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  630.483971][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  630.492837][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  630.508221][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  630.572873][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  631.371937][ T8585] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor
[  631.381724][ T8585] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0008/input/input152
[  632.349269][   T28] audit: type=1400 audit(2000000134.530:1212): avc:  denied  { bind } for  pid=8637 comm="syz.2.1757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  632.510312][ T8585] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  632.545251][ T8653] loop1: detected capacity change from 0 to 512
[  632.567082][ T8653] EXT4-fs (loop1): Test dummy encryption mode enabled
[  632.589034][ T8585] usb 2-1: USB disconnect, device number 17
[  632.739502][ T8653] EXT4-fs error (device loop1): __ext4_iget:5046: inode #11: block 1: comm syz.1.1772: invalid block
[  632.750771][ T8653] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1772: couldn't read orphan inode 11 (err -117)
[  632.762639][ T8653] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  633.823387][ T8481] EXT4-fs (loop1): unmounting filesystem.
[  634.059803][ T8680] loop1: detected capacity change from 0 to 16
[  634.135659][ T8680] erofs: (device loop1): mounted with root inode @ nid 36.
[  634.178409][ T8670] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.187950][ T8670] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.199512][ T8670] device bridge_slave_0 entered promiscuous mode
[  634.228792][ T8670] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.237867][ T8670] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.245653][ T8670] device bridge_slave_1 entered promiscuous mode
[  634.254632][   T28] audit: type=1400 audit(2000000137.310:1213): avc:  denied  { execute } for  pid=8675 comm="syz.2.1777" name="file0" dev="ramfs" ino=50271 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  634.290897][   T28] audit: type=1400 audit(2000000137.310:1214): avc:  denied  { execute_no_trans } for  pid=8675 comm="syz.2.1777" path="/2/file0/file0" dev="ramfs" ino=50271 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  634.382231][ T8685] input: syz0 as /devices/virtual/input/input153
[  634.468180][ T8670] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.475091][ T8670] bridge0: port 2(bridge_slave_1) entered forwarding state
[  634.482282][ T8670] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.489171][ T8670] bridge0: port 1(bridge_slave_0) entered forwarding state
[  634.604146][ T8585] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.611635][ T8585] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.619328][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  634.627213][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  634.643589][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  634.662568][  T855] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.669432][  T855] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.018489][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  635.026663][  T855] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.033525][  T855] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.058222][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  635.077870][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  635.094063][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  635.128568][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  635.136490][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  635.145076][ T8670] device veth0_vlan entered promiscuous mode
[  635.153128][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  635.161683][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  635.179319][ T8670] device veth1_macvtap entered promiscuous mode
[  635.186479][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  635.194951][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  635.203218][ T8585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  635.211366][   T28] audit: type=1400 audit(2000000138.260:1215): avc:  denied  { unmount } for  pid=8587 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  635.235555][ T8693] loop2: detected capacity change from 0 to 16
[  635.248274][ T8693] erofs: (device loop2): mounted with root inode @ nid 36.
[  635.256242][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  635.268482][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  635.283292][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  635.292044][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  635.353248][ T8698] loop4: detected capacity change from 0 to 16
[  635.359892][ T8698] erofs: (device loop4): mounted with root inode @ nid 36.
[  635.622291][ T8699] input: syz0 as /devices/virtual/input/input154
[  635.831103][ T8704] input: syz0 as /devices/virtual/input/input155
[  635.912855][  T355] device bridge_slave_1 left promiscuous mode
[  635.920286][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.929280][ T8695] loop1: detected capacity change from 0 to 40427
[  635.937409][ T8695] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  635.953956][ T8695] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  635.963961][  T355] device bridge_slave_0 left promiscuous mode
[  636.006057][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  636.027472][  T355] device veth1_macvtap left promiscuous mode
[  636.035752][ T8695] F2FS-fs (loop1): Found nat_bits in checkpoint
[  636.168007][ T8695] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  636.194369][ T8695] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  636.330785][ T8585] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  636.404651][ T8719] syz.1.1781: attempt to access beyond end of device
[  636.404651][ T8719] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  636.703887][ T8481] syz-executor: attempt to access beyond end of device
[  636.703887][ T8481] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  637.140960][ T8585] usb 4-1: Using ep0 maxpacket: 16
[  637.260855][ T8585] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  637.271076][ T8585] usb 4-1: config 0 has no interfaces?
[  637.276414][ T8585] usb 4-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[  637.285413][ T8585] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  637.296894][ T8585] usb 4-1: config 0 descriptor??
[  637.962816][   T28] audit: type=1400 audit(2000000141.020:1216): avc:  denied  { ioctl } for  pid=8734 comm="syz.2.1791" path="socket:[50545]" dev="sockfs" ino=50545 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  638.296979][ T8746] bridge0: port 2(bridge_slave_1) entered disabled state
[  638.304008][ T8746] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.323477][ T8746] device bridge_slave_1 left promiscuous mode
[  638.333660][ T8746] bridge0: port 2(bridge_slave_1) entered disabled state
[  638.353532][ T8746] device bridge_slave_0 left promiscuous mode
[  638.367766][ T8746] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.495432][ T8743] loop2: detected capacity change from 0 to 40427
[  638.502397][ T8743] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  638.510003][ T8743] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  638.533969][ T8743] F2FS-fs (loop2): Found nat_bits in checkpoint
[  638.621971][ T8743] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  638.628968][ T8743] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  638.700799][  T313] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  638.980520][ T8760] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  639.173301][  T313] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  639.183721][  T313] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  639.270845][  T313] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  639.279823][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  639.279880][ T8765] loop4: detected capacity change from 0 to 16
[  639.288258][  T313] usb 2-1: SerialNumber: syz
[  639.301514][ T8765] erofs: (device loop4): mounted with root inode @ nid 36.
[  640.149515][  T855] usb 4-1: USB disconnect, device number 12
[  640.373924][ T8773] input: syz0 as /devices/virtual/input/input156
[  640.539687][ T8746] loop1: detected capacity change from 0 to 1024
[  640.617378][ T8746] EXT4-fs: Ignoring removed nomblk_io_submit option
[  640.641378][ T8746] journal_path: Lookup failure for './bus'
[  640.657514][ T8746] EXT4-fs: error: could not find journal device path
[  640.751490][  T313] usb 2-1: 0:2 : does not exist
[  640.792733][  T313] usb 2-1: USB disconnect, device number 18
[  640.882505][ T8777] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.889440][ T8777] bridge0: port 1(bridge_slave_0) entered disabled state
[  640.896993][ T8777] device bridge_slave_0 entered promiscuous mode
[  640.904427][ T8777] bridge0: port 2(bridge_slave_1) entered blocking state
[  640.911453][ T8777] bridge0: port 2(bridge_slave_1) entered disabled state
[  640.918901][ T8777] device bridge_slave_1 entered promiscuous mode
[  641.003806][ T8777] bridge0: port 2(bridge_slave_1) entered blocking state
[  641.010703][ T8777] bridge0: port 2(bridge_slave_1) entered forwarding state
[  641.017777][ T8777] bridge0: port 1(bridge_slave_0) entered blocking state
[  641.024587][ T8777] bridge0: port 1(bridge_slave_0) entered forwarding state
[  641.046563][  T319] udevd[319]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  641.080078][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  641.088248][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[  641.096579][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.450013][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  641.458253][  T855] bridge0: port 1(bridge_slave_0) entered blocking state
[  641.465119][  T855] bridge0: port 1(bridge_slave_0) entered forwarding state
[  641.472284][  T855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  641.480214][  T855] bridge0: port 2(bridge_slave_1) entered blocking state
[  641.487070][  T855] bridge0: port 2(bridge_slave_1) entered forwarding state
[  641.513589][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  641.516785][   T28] audit: type=1326 audit(2000000144.570:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.1.1804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f651137df39 code=0x0
[  641.545364][  T325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  641.559230][  T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  641.571593][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  641.579363][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  641.586858][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  641.595835][ T8777] device veth0_vlan entered promiscuous mode
[  641.605883][  T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  641.614682][ T8777] device veth1_macvtap entered promiscuous mode
[  641.626717][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  641.638387][  T355] device bridge_slave_1 left promiscuous mode
[  641.644730][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.652145][  T355] device bridge_slave_0 left promiscuous mode
[  641.658131][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  641.665848][  T355] device veth1_macvtap left promiscuous mode
[  641.671951][  T355] device veth0_vlan left promiscuous mode
[  641.754520][  T325] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  641.762669][  T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  642.858600][ T8807] netlink: 'syz.3.1806': attribute type 12 has an invalid length.
[  643.240781][   T28] audit: type=1400 audit(2000000146.230:1218): avc:  denied  { name_bind } for  pid=8809 comm="syz.2.1808" src=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=rawip_socket permissive=1
[  643.321433][ T8825] loop2: detected capacity change from 0 to 16
[  643.351440][ T8814] bridge0: port 1(bridge_slave_0) entered blocking state
[  643.358007][ T8825] erofs: (device loop2): mounted with root inode @ nid 36.
[  643.358486][ T8814] bridge0: port 1(bridge_slave_0) entered disabled state
[  643.372969][ T8814] device bridge_slave_0 entered promiscuous mode
[  643.379718][ T8814] bridge0: port 2(bridge_slave_1) entered blocking state
[  643.387540][ T8814] bridge0: port 2(bridge_slave_1) entered disabled state
[  643.394539][ T8585] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  643.402510][ T8814] device bridge_slave_1 entered promiscuous mode
[  643.730901][  T508] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  643.875943][ T8830] input: syz0 as /devices/virtual/input/input157
[  643.997214][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  644.006968][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  644.023735][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  644.032427][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  644.040634][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[  644.047525][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[  644.054905][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  644.063418][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  644.071505][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[  644.078350][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[  644.095483][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  644.103164][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  644.125956][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  644.140548][ T8814] device veth0_vlan entered promiscuous mode
[  644.149158][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  644.157611][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  644.160842][  T508] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  644.166888][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  644.183275][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  644.193010][  T508] usb 4-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  644.199055][ T8814] device veth1_macvtap entered promiscuous mode
[  644.202489][  T508] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.208042][ T8585] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  644.220153][  T508] usb 4-1: config 0 descriptor??
[  644.240809][ T8585] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  644.250371][ T8585] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  644.266228][ T8585] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  644.291994][  T508] usb 4-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[  644.297375][ T8585] usb 5-1: config 0 descriptor??
[  644.304683][  T508] usb 4-1: No valid video chain found.
[  644.316884][ T8833] loop0: detected capacity change from 0 to 512
[  644.326972][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  644.341280][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  644.349388][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  644.370793][ T8833] EXT4-fs (loop0): Test dummy encryption mode enabled
[  644.391081][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  644.397720][ T8833] EXT4-fs error (device loop0): __ext4_iget:5046: inode #11: block 1: comm syz.0.1807: invalid block
[  644.403022][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  644.411806][ T8833] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1807: couldn't read orphan inode 11 (err -117)
[  644.430255][ T8833] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  644.469920][  T355] tipc: Left network mode
[  644.521487][ T3336] usb 4-1: USB disconnect, device number 13
[  644.688397][ T8813] loop4: detected capacity change from 0 to 1024
[  644.778082][ T8813] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  644.966109][ T8842] bridge0: port 1(bridge_slave_0) entered blocking state
[  644.973177][ T8842] bridge0: port 1(bridge_slave_0) entered disabled state
[  644.986136][ T8842] device bridge_slave_0 entered promiscuous mode
[  644.995732][ T8842] bridge0: port 2(bridge_slave_1) entered blocking state
[  645.003509][ T8842] bridge0: port 2(bridge_slave_1) entered disabled state
[  645.011425][ T8842] device bridge_slave_1 entered promiscuous mode
[  645.085812][ T8842] bridge0: port 2(bridge_slave_1) entered blocking state
[  645.092714][ T8842] bridge0: port 2(bridge_slave_1) entered forwarding state
[  645.099778][ T8842] bridge0: port 1(bridge_slave_0) entered blocking state
[  645.106586][ T8842] bridge0: port 1(bridge_slave_0) entered forwarding state
[  645.139579][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  645.149450][ T3341] bridge0: port 1(bridge_slave_0) entered disabled state
[  645.156749][ T3341] bridge0: port 2(bridge_slave_1) entered disabled state
[  645.167374][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  645.176095][ T3341] bridge0: port 1(bridge_slave_0) entered blocking state
[  645.182961][ T3341] bridge0: port 1(bridge_slave_0) entered forwarding state
[  645.190385][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  645.205600][ T3341] bridge0: port 2(bridge_slave_1) entered blocking state
[  645.212471][ T3341] bridge0: port 2(bridge_slave_1) entered forwarding state
[  645.229908][ T8850] netlink: 'syz.3.1814': attribute type 12 has an invalid length.
[  645.568927][ T8842] device veth0_vlan entered promiscuous mode
[  645.579081][ T8814] EXT4-fs (loop0): unmounting filesystem.
[  645.589743][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  645.602523][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  645.614724][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  645.636691][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  645.652540][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  645.660927][ T8850] loop3: detected capacity change from 0 to 1024
[  645.663614][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  645.697886][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  645.699510][ T8858] loop0: detected capacity change from 0 to 512
[  645.706826][ T8842] device veth1_macvtap entered promiscuous mode
[  645.723514][  T355] device veth1_macvtap left promiscuous mode
[  645.729672][  T355] device veth0_vlan left promiscuous mode
[  645.744118][ T8850] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  645.753006][ T8858] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.1816: casefold flag without casefold feature
[  645.771088][ T8850] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038 (0x7fffffff)
[  645.791038][ T8858] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.1816: missing EA_INODE flag
[  645.808667][ T8858] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1816: error while reading EA inode 2 err=-117
[  645.831007][ T8858] EXT4-fs (loop0): 1 orphan inode deleted
[  645.841223][ T8858] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  645.929909][ T3336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  645.940463][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  645.948718][ T3341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  646.050464][ T8864] syz.0.1816[8864] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  646.050541][ T8864] syz.0.1816[8864] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  646.062499][ T8864] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1816'.
[  646.341815][ T8488] EXT4-fs (loop3): unmounting filesystem.
[  646.380807][ T8585] usbhid 5-1:0.0: can't add hid device: -71
[  646.386645][ T8585] usbhid: probe of 5-1:0.0 failed with error -71
[  646.426448][ T8585] usb 5-1: USB disconnect, device number 13
[  646.534149][ T8876] __vm_enough_memory: pid: 8876, comm: syz.1.1823, no enough memory for the allocation
[  648.011278][ T8814] EXT4-fs (loop0): unmounting filesystem.
[  648.033449][ T8882] loop3: detected capacity change from 0 to 1024
[  649.479129][ T8882] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  649.481593][   T28] audit: type=1400 audit(2000000151.900:1219): avc:  denied  { map } for  pid=8887 comm="syz.0.1821" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  649.481625][   T28] audit: type=1400 audit(2000000151.900:1220): avc:  denied  { execute } for  pid=8887 comm="syz.0.1821" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  649.481651][   T28] audit: type=1400 audit(2000000152.510:1221): avc:  denied  { wake_alarm } for  pid=8885 comm="syz.2.1822" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  649.782969][   T28] audit: type=1400 audit(2000000152.840:1222): avc:  denied  { create } for  pid=8881 comm="syz.3.1820" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  649.825798][   T28] audit: type=1400 audit(2000000152.860:1223): avc:  denied  { write } for  pid=8881 comm="syz.3.1820" name=E91F7189591E9233614B dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  649.900563][ T8488] EXT4-fs (loop3): unmounting filesystem.
[  650.388356][ T8914] xt_CT: No such helper "snmp_trap"
[  650.449927][ T8915] loop2: detected capacity change from 0 to 256
[  650.462713][ T8915] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  650.984136][ T8922] loop4: detected capacity change from 0 to 2048
[  651.012526][ T8922] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  651.024289][  T355] tipc: Left network mode
[  651.089528][ T8922] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038 (0x7fffffff)
[  652.089238][ T8937] loop3: detected capacity change from 0 to 128
[  652.122007][ T8937] syz.3.1833: attempt to access beyond end of device
[  652.122007][ T8937] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[  652.142940][ T8933] syz.3.1833: attempt to access beyond end of device
[  652.142940][ T8933] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[  652.216023][ T8938] Invalid ELF header magic: != ELF
[  652.234569][ T8938] fs-verity: sha512 using implementation "sha512-avx2"
[  652.242857][   T28] audit: type=1400 audit(2000000155.270:1224): avc:  denied  { module_load } for  pid=8921 comm="syz.4.1830" path="/sys/kernel/notes" dev="sysfs" ino=1141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  652.398559][   T28] audit: type=1400 audit(2000000155.290:1225): avc:  denied  { ioctl } for  pid=8921 comm="syz.4.1830" path="/11/file0/file0/file0" dev="loop4" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  652.461910][ T8670] EXT4-fs (loop4): unmounting filesystem.
[  652.486751][ T8942] loop4: detected capacity change from 0 to 512
[  652.522770][ T8942] EXT4-fs (loop4): 1 orphan inode deleted
[  652.533297][ T8942] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  652.549882][ T8934] loop1: detected capacity change from 0 to 40427
[  652.550847][ T8942] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038 (0x7fffffff)
[  652.559667][ T8934] F2FS-fs (loop1): Magic Mismatch, valid(0xf2f52010) - read(0x210)
[  652.573627][ T8934] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  652.582547][ T8934] F2FS-fs (loop1): invalid crc_offset: 12
[  652.594964][ T8934] F2FS-fs (loop1): Failed to get valid F2FS checkpoint
[  652.605601][ T8940] overlayfs: missing 'workdir'
[  652.691794][ T8940] device veth0_vlan left promiscuous mode
[  652.697756][ T8940] device veth0_vlan entered promiscuous mode
[  652.769947][ T8948] syz.4.1834[8948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  652.770485][ T8948] syz.4.1834[8948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  652.890606][ T8948] overlayfs: './file1' not a directory
[  652.939541][ T8935] syz.3.1833: attempt to access beyond end of device
[  652.939541][ T8935] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  652.971341][ T8935] syz.3.1833: attempt to access beyond end of device
[  652.971341][ T8935] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[  653.011582][  T355] device bridge_slave_1 left promiscuous mode
[  653.018663][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  653.026724][  T355] device bridge_slave_0 left promiscuous mode
[  653.037870][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  653.057484][  T355] device veth1_macvtap left promiscuous mode
[  653.091246][  T355] device veth0_vlan left promiscuous mode
[  653.974476][   T28] audit: type=1400 audit(2000000156.310:1226): avc:  denied  { compute_member } for  pid=8949 comm="syz.3.1835" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  654.009861][ T8670] EXT4-fs (loop4): unmounting filesystem.
[  655.500904][ T8977] incfs: Backing dir is not set, filesystem can't be mounted.
[  655.508224][ T8977] incfs: mount failed -2
[  656.035472][ T8973] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1838'.
[  656.079459][   T28] audit: type=1400 audit(2000000159.090:1227): avc:  denied  { create } for  pid=8969 comm="syz.2.1840" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  656.140412][ T8982] tmpfs: Unknown parameter 'fowner>00000000000000060928'
[  657.039478][ T8997] loop3: detected capacity change from 0 to 512
[  657.057648][ T8997] EXT4-fs (loop3): Test dummy encryption mode enabled
[  657.070116][ T8997] EXT4-fs error (device loop3): __ext4_iget:5046: inode #11: block 1: comm syz.3.1847: invalid block
[  657.081278][ T8997] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1847: couldn't read orphan inode 11 (err -117)
[  657.093278][ T8997] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  657.250309][ T8995] loop1: detected capacity change from 0 to 40427
[  657.280300][ T8995] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  658.105014][ T9001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1847'.
[  658.184095][ T8995] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  658.414224][ T8488] EXT4-fs (loop3): unmounting filesystem.
[  658.444211][ T8995] F2FS-fs (loop1): Found nat_bits in checkpoint
[  658.455200][ T9020] loop3: detected capacity change from 0 to 512
[  658.495304][ T9020] EXT4-fs (loop3): 1 orphan inode deleted
[  658.528369][ T9020] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  658.547873][ T9020] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038 (0x7fffffff)
[  658.941491][ T8995] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  658.960755][ T8995] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  659.073077][ T9030] syz.3.1850[9030] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  659.073506][ T9030] syz.3.1850[9030] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  659.182021][ T9031] syz.1.1846: attempt to access beyond end of device
[  659.182021][ T9031] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  659.888451][ T9030] overlayfs: './file1' not a directory
[  660.124232][ T8488] EXT4-fs (loop3): unmounting filesystem.
[  660.141197][ T8842] syz-executor: attempt to access beyond end of device
[  660.141197][ T8842] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  660.379308][ T9040] bridge0: port 1(bridge_slave_0) entered blocking state
[  660.403512][ T9040] bridge0: port 1(bridge_slave_0) entered disabled state
[  660.674751][ T9040] device bridge_slave_0 entered promiscuous mode
[  660.819115][ T9040] bridge0: port 2(bridge_slave_1) entered blocking state
[  660.881854][ T9040] bridge0: port 2(bridge_slave_1) entered disabled state
[  660.905139][ T9040] device bridge_slave_1 entered promiscuous mode
[  661.054577][ T9057] loop1: detected capacity change from 0 to 16
[  661.249786][ T9057] erofs: (device loop1): mounted with root inode @ nid 36.
[  661.352753][ T9040] bridge0: port 2(bridge_slave_1) entered blocking state
[  661.359626][ T9040] bridge0: port 2(bridge_slave_1) entered forwarding state
[  661.366881][ T9040] bridge0: port 1(bridge_slave_0) entered blocking state
[  661.373734][ T9040] bridge0: port 1(bridge_slave_0) entered forwarding state
[  661.391047][ T2004] bridge0: port 1(bridge_slave_0) entered disabled state
[  661.400999][ T2004] bridge0: port 2(bridge_slave_1) entered disabled state
[  661.554457][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  661.568627][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  661.721666][ T9065] loop2: detected capacity change from 0 to 512
[  661.746752][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  661.749717][ T9068] loop4: detected capacity change from 0 to 512
[  661.758156][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  661.760844][ T9065] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.1861: inline data xattr refers to an external xattr inode
[  661.779021][ T1872] bridge0: port 1(bridge_slave_0) entered blocking state
[  661.786106][ T9068] EXT4-fs (loop4): Test dummy encryption mode enabled
[  661.789995][ T1872] bridge0: port 1(bridge_slave_0) entered forwarding state
[  661.796883][ T9065] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.1861: couldn't read orphan inode 12 (err -117)
[  661.812615][ T9068] EXT4-fs error (device loop4): __ext4_iget:5046: inode #11: block 1: comm syz.4.1862: invalid block
[  661.817255][ T9065] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  661.840366][ T9068] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1862: couldn't read orphan inode 11 (err -117)
[  661.852384][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  661.857032][ T9068] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  661.884150][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  661.959813][ T9073] input: syz0 as /devices/virtual/input/input158
[  661.974552][ T1872] bridge0: port 2(bridge_slave_1) entered blocking state
[  661.981427][ T1872] bridge0: port 2(bridge_slave_1) entered forwarding state
[  662.008729][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  662.654432][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  662.691062][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  662.699508][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  662.709773][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  662.723737][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  662.736215][ T9075] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1862'.
[  662.754999][ T9040] device veth0_vlan entered promiscuous mode
[  662.772121][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  662.780104][ T8670] EXT4-fs (loop4): unmounting filesystem.
[  662.780145][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  662.793316][ T9081] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  662.816870][ T9040] device veth1_macvtap entered promiscuous mode
[  662.840921][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  662.852467][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  662.868951][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  662.891328][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  662.921729][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  662.962819][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  662.974239][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  663.004322][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  663.033180][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  663.372086][ T9094] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1865'.
[  663.381001][ T9094] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1865'.
[  663.425887][ T9094] loop1: detected capacity change from 0 to 256
[  664.229862][ T9094] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  664.262330][ T9093] incfs: ino conflict with backing FS 1
[  664.269853][   T28] audit: type=1400 audit(2000000167.320:1228): avc:  denied  { getattr } for  pid=9091 comm="syz.1.1865" name="/" dev="incremental-fs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  664.270485][ T9093] overlayfs: upper fs does not support tmpfile.
[  664.327406][ T9086] loop4: detected capacity change from 0 to 40427
[  664.334210][   T28] audit: type=1400 audit(2000000167.320:1229): avc:  denied  { setattr } for  pid=9091 comm="syz.1.1865" name="work" dev="incremental-fs" ino=1048971 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  664.359839][ T9086] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  664.380771][ T9086] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  664.422899][ T8777] EXT4-fs (loop2): unmounting filesystem.
[  664.572942][ T9086] F2FS-fs (loop4): Found nat_bits in checkpoint
[  664.776033][ T9086] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  664.981348][ T9086] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  665.651246][ T9122] xt_CT: No such helper "snmp_trap"
[  665.951453][ T9123] syz.4.1864: attempt to access beyond end of device
[  665.951453][ T9123] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  666.710252][ T9122] loop3: detected capacity change from 0 to 256
[  666.904252][ T9122] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  667.119292][ T8670] syz-executor: attempt to access beyond end of device
[  667.119292][ T8670] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  667.699117][ T9134] loop2: detected capacity change from 0 to 512
[  667.704897][ T9138] loop3: detected capacity change from 0 to 16
[  667.723143][ T9134] EXT4-fs (loop2): Test dummy encryption mode enabled
[  667.730397][ T9138] erofs: (device loop3): mounted with root inode @ nid 36.
[  667.813269][ T9134] EXT4-fs error (device loop2): __ext4_iget:5046: inode #11: block 1: comm syz.2.1872: invalid block
[  667.824223][ T9134] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.1872: couldn't read orphan inode 11 (err -117)
[  667.858876][ T9134] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  668.112483][ T9149] overlayfs: missing 'workdir'
[  668.421094][ T8777] EXT4-fs (loop2): unmounting filesystem.
[  668.450432][ T9155] loop2: detected capacity change from 0 to 16
[  668.475920][ T9155] erofs: (device loop2): mounted with root inode @ nid 36.
[  668.565944][ T9158] input: syz0 as /devices/virtual/input/input159
[  669.097234][   T28] audit: type=1400 audit(2000000172.150:1230): avc:  denied  { ioctl } for  pid=9164 comm="syz.0.1878" path="/dev/usbmon0" dev="devtmpfs" ino=139 ioctlcmd=0x9206 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  669.100458][ T9168] input: syz0 as /devices/virtual/input/input160
[  670.369645][ T9189] serio: Serial port tty23
[  671.174084][   T28] audit: type=1400 audit(2000000174.230:1231): avc:  denied  { write } for  pid=9180 comm="syz.0.1882" path="socket:[53396]" dev="sockfs" ino=53396 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  671.508810][ T9204] loop3: detected capacity change from 0 to 512
[  671.517967][ T9207] loop2: detected capacity change from 0 to 128
[  671.555582][ T9207] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  671.592159][ T9207] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  671.616710][ T9204] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  672.336442][   T28] audit: type=1400 audit(2000000175.370:1232): avc:  denied  { mount } for  pid=9202 comm="syz.0.1888" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  672.361987][ T9204] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038 (0x7fffffff)
[  672.670493][ T9204] EXT4-fs error (device loop3): ext4_do_update_inode:5212: inode #2: comm syz.3.1887: corrupted inode contents
[  672.694262][ T9218] loop1: detected capacity change from 0 to 16
[  672.707148][ T9204] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #2: comm syz.3.1887: mark_inode_dirty error
[  672.719349][ T9204] EXT4-fs error (device loop3): ext4_do_update_inode:5212: inode #2: comm syz.3.1887: corrupted inode contents
[  672.731285][ T9204] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.1887: mark_inode_dirty error
[  672.747724][ T9218] erofs: (device loop1): mounted with root inode @ nid 36.
[  672.897577][ T9198] loop4: detected capacity change from 0 to 40427
[  672.940891][ T9222] loop2: detected capacity change from 0 to 512
[  673.105397][ T9198] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  673.182215][ T9198] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  673.205435][ T9198] F2FS-fs (loop4): Found nat_bits in checkpoint
[  673.241192][ T9222] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  673.249552][ T9222] EXT4-fs (loop2): 1 truncate cleaned up
[  673.249917][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  673.255039][ T9222] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  673.317212][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 12: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  673.338592][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  673.363645][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 14: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  673.382461][ T9236] loop0: detected capacity change from 0 to 1024
[  673.406876][ T9198] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  673.413805][ T9198] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  673.421315][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 15: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  673.452690][ T9238] input: syz0 as /devices/virtual/input/input161
[  673.469283][ T9236] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  673.540844][ T8488] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /31/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  673.620622][ T9243] syz.4.1886: attempt to access beyond end of device
[  673.620622][ T9243] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  673.831101][ T8777] EXT4-fs (loop2): unmounting filesystem.
[  674.003543][ T8670] syz-executor: attempt to access beyond end of device
[  674.003543][ T8670] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  674.290267][ T9250] proc: Bad value for 'gid'
[  674.542828][ T9040] EXT4-fs (loop0): unmounting filesystem.
[  675.138159][   T28] audit: type=1400 audit(2000000178.190:1233): avc:  denied  { mounton } for  pid=9260 comm="syz.2.1900" path="/24/file0" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[  675.272228][ T9266] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1901'.
[  675.463069][ T9274] loop0: detected capacity change from 0 to 256
[  675.539858][ T9274] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  675.887854][ T9264] loop4: detected capacity change from 0 to 512
[  675.904965][ T9272] overlayfs: missing 'workdir'
[  675.910461][ T9264] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  675.992133][ T9272] device veth0_vlan left promiscuous mode
[  676.021181][ T9272] device veth0_vlan entered promiscuous mode
[  676.160060][ T9280] exFAT-fs (loop0): hint_cluster is invalid (17)
[  676.353465][   T28] audit: type=1400 audit(2000000179.180:1234): avc:  denied  { write } for  pid=9273 comm="syz.0.1903" path="/11/bus/bus/bus" dev="loop0" ino=1048975 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  676.399016][ T9282] loop2: detected capacity change from 0 to 512
[  676.979070][ T9282] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  677.000601][ T9282] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038 (0x7fffffff)
[  677.062956][ T9282] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #2: comm syz.2.1905: corrupted inode contents
[  677.086945][ T9282] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #2: comm syz.2.1905: mark_inode_dirty error
[  677.109541][ T9282] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #2: comm syz.2.1905: corrupted inode contents
[  677.135929][ T9282] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.1905: mark_inode_dirty error
[  678.596660][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  678.630336][ T9302] loop0: detected capacity change from 0 to 16
[  678.670008][ T9302] erofs: (device loop0): mounted with root inode @ nid 36.
[  678.735681][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 12: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  678.831129][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  678.877152][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 14: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  678.915171][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 15: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  678.956137][ T8777] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /27/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  679.088421][ T9313] input: syz0 as /devices/virtual/input/input162
[  679.837781][ T9323] serio: Serial port ptm1
[  680.487972][ T8488] EXT4-fs error: 8 callbacks suppressed
[  680.487989][ T8488] EXT4-fs error (device loop3): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  680.519647][ T8488] EXT4-fs error (device loop3): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  680.588386][ T8488] EXT4-fs (loop3): unmounting filesystem.
[  680.596989][ T9332] loop1: detected capacity change from 0 to 512
[  680.628022][ T9332] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  680.637187][ T9332] ext4 filesystem being mounted at /22/bus supports timestamps until 2038 (0x7fffffff)
[  680.775719][ T9339] serio: Serial port tty21
[  680.933171][   T28] audit: type=1400 audit(2000000183.990:1235): avc:  denied  { remount } for  pid=9327 comm="syz.4.1916" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  681.054596][ T9330] loop4: detected capacity change from 0 to 512
[  681.155746][   T28] audit: type=1400 audit(2000000184.060:1236): avc:  denied  { bind } for  pid=9329 comm="syz.1.1917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  681.242760][ T9330] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  681.443358][ T8842] EXT4-fs (loop1): unmounting filesystem.
[  681.449135][ T9330] EXT4-fs (loop4): 1 truncate cleaned up
[  681.463794][ T9330] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  681.517011][ T9347] loop0: detected capacity change from 0 to 512
[  681.606759][ T8670] EXT4-fs (loop4): unmounting filesystem.
[  684.110213][  T355] device bridge_slave_1 left promiscuous mode
[  684.138832][ T9369] loop1: detected capacity change from 0 to 16
[  684.153115][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  684.235340][  T355] device bridge_slave_0 left promiscuous mode
[  684.250260][ T9369] erofs: (device loop1): mounted with root inode @ nid 36.
[  684.257834][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  684.275727][  T355] device veth1_macvtap left promiscuous mode
[  684.286292][  T355] device veth0_vlan left promiscuous mode
[  684.795869][ T9351] bridge0: port 1(bridge_slave_0) entered blocking state
[  684.806521][ T9351] bridge0: port 1(bridge_slave_0) entered disabled state
[  684.814257][ T9351] device bridge_slave_0 entered promiscuous mode
[  684.821538][ T9351] bridge0: port 2(bridge_slave_1) entered blocking state
[  684.828447][ T9351] bridge0: port 2(bridge_slave_1) entered disabled state
[  685.134007][ T9351] device bridge_slave_1 entered promiscuous mode
[  685.142151][ T9384] input: syz0 as /devices/virtual/input/input163
[  685.378648][ T9351] bridge0: port 2(bridge_slave_1) entered blocking state
[  685.385540][ T9351] bridge0: port 2(bridge_slave_1) entered forwarding state
[  685.392927][ T9351] bridge0: port 1(bridge_slave_0) entered blocking state
[  685.399688][ T9351] bridge0: port 1(bridge_slave_0) entered forwarding state
[  685.440769][  T640] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  685.463673][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  685.473997][   T24] bridge0: port 1(bridge_slave_0) entered disabled state
[  685.488544][   T24] bridge0: port 2(bridge_slave_1) entered disabled state
[  685.511456][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  685.580959][ T8648] bridge0: port 1(bridge_slave_0) entered blocking state
[  685.588037][ T8648] bridge0: port 1(bridge_slave_0) entered forwarding state
[  685.595440][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  685.611324][ T8648] bridge0: port 2(bridge_slave_1) entered blocking state
[  685.618159][ T8648] bridge0: port 2(bridge_slave_1) entered forwarding state
[  685.642329][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  685.650101][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  685.677007][ T9351] device veth0_vlan entered promiscuous mode
[  685.684637][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  685.701202][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  685.708446][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  685.731070][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  685.746061][ T9351] device veth1_macvtap entered promiscuous mode
[  685.762310][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  685.784198][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  685.793093][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  685.802420][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  685.810494][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  685.810832][  T640] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  685.827037][  T640] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  685.837758][  T640] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  685.846718][  T640] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  685.868105][ T9395] loop3: detected capacity change from 0 to 128
[  685.880885][  T640] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  685.890104][ T9396] binder: 9391:9396 ioctl 4018620d 0 returned -22
[  685.903639][ T9395] EXT4-fs (loop3): Test dummy encryption mode enabled
[  685.914535][  T640] usb 1-1: config 0 descriptor??
[  685.952105][ T9395] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  685.970813][ T9395] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038 (0x7fffffff)
[  686.564799][ T8777] EXT4-fs error: 8 callbacks suppressed
[  686.564856][ T8777] EXT4-fs error (device loop2): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  686.582079][ T9405] ªªªªªª: renamed from vlan0
[  686.582586][ T8777] EXT4-fs error (device loop2): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  686.633205][ T9386] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  686.637029][ T9405] loop4: detected capacity change from 0 to 2048
[  686.648292][ T9386] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  686.664515][ T9405] Alternate GPT is invalid, using primary GPT.
[  686.669114][ T8777] EXT4-fs (loop2): unmounting filesystem.
[  686.676009][ T9405]  loop4: p1 p2 p3
[  686.690386][  T102] Alternate GPT is invalid, using primary GPT.
[  686.690904][  T640] usb 1-1: string descriptor 0 read error: -71
[  686.696455][  T102]  loop4: p1 p2 p3
[  686.716202][  T640] usb 1-1: USB disconnect, device number 11
[  686.774853][ T9351] EXT4-fs (loop3): unmounting filesystem.
[  687.414547][ T9415] bridge0: port 1(bridge_slave_0) entered blocking state
[  687.421485][ T9415] bridge0: port 1(bridge_slave_0) entered disabled state
[  687.428763][ T9415] device bridge_slave_0 entered promiscuous mode
[  687.442138][ T9426] loop0: detected capacity change from 0 to 256
[  687.445070][ T9415] bridge0: port 2(bridge_slave_1) entered blocking state
[  687.490437][ T9415] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.507714][ T9415] device bridge_slave_1 entered promiscuous mode
[  687.896092][  T355] device bridge_slave_1 left promiscuous mode
[  687.911261][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.927074][  T355] device bridge_slave_0 left promiscuous mode
[  687.933816][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[  687.941961][  T355] device veth1_macvtap left promiscuous mode
[  688.267753][ T9440] device syzkaller0 entered promiscuous mode
[  688.383261][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  688.390544][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  688.431672][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  688.454885][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  688.672803][   T19] bridge0: port 1(bridge_slave_0) entered blocking state
[  688.679702][   T19] bridge0: port 1(bridge_slave_0) entered forwarding state
[  688.702789][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  688.721312][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  688.734552][   T19] bridge0: port 2(bridge_slave_1) entered blocking state
[  688.741532][   T19] bridge0: port 2(bridge_slave_1) entered forwarding state
[  689.035369][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  689.043434][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  689.059640][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  689.067453][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  689.093750][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  689.105289][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  689.125755][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  689.139419][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  689.157924][ T9415] device veth0_vlan entered promiscuous mode
[  689.261398][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  689.274630][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  689.603199][ T9415] device veth1_macvtap entered promiscuous mode
[  689.782088][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  689.816665][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  689.886079][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  689.923704][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  689.983315][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  690.247067][ T9465] loop3: detected capacity change from 0 to 16
[  690.264250][ T9465] erofs: (device loop3): mounted with root inode @ nid 36.
[  691.406644][ T9479] input: syz0 as /devices/virtual/input/input164
[  691.503943][ T9485] loop0: detected capacity change from 0 to 512
[  691.516908][ T9485] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  692.208662][ T9485] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  692.230204][ T9485] EXT4-fs (loop0): 1 truncate cleaned up
[  692.236606][ T9485] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  692.955244][   T28] audit: type=1400 audit(2000000196.010:1237): avc:  denied  { mounton } for  pid=9484 comm="syz.0.1949" path="/24/file1/file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  693.298266][ T9040] EXT4-fs (loop0): unmounting filesystem.
[  693.510945][ T9507] loop4: detected capacity change from 0 to 128
[  694.009458][ T3888] device bridge_slave_1 left promiscuous mode
[  694.087392][ T3888] bridge0: port 2(bridge_slave_1) entered disabled state
[  694.114903][ T9512] loop0: detected capacity change from 0 to 512
[  694.136381][ T3888] device bridge_slave_0 left promiscuous mode
[  694.142905][ T3888] bridge0: port 1(bridge_slave_0) entered disabled state
[  694.164122][ T9512] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  694.173976][ T3888] device veth1_macvtap left promiscuous mode
[  694.179796][ T3888] device veth0_vlan left promiscuous mode
[  694.241705][ T9512] EXT4-fs (loop0): 1 truncate cleaned up
[  694.255146][ T9512] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  694.970805][   T28] audit: type=1400 audit(2000000197.990:1238): avc:  denied  { create } for  pid=9510 comm="syz.0.1954" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  695.111218][ T9528] loop3: detected capacity change from 0 to 16
[  695.148339][ T9529] loop4: detected capacity change from 0 to 512
[  695.187526][ T9528] erofs: (device loop3): mounted with root inode @ nid 36.
[  695.230797][ T9529] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  695.239543][ T9529] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038 (0x7fffffff)
[  695.330821][  T640] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  695.340180][ T9529] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz.4.1957: corrupted inode contents
[  695.374434][ T9529] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #2: comm syz.4.1957: mark_inode_dirty error
[  695.410952][ T9529] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz.4.1957: corrupted inode contents
[  695.451276][ T9529] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.1957: mark_inode_dirty error
[  695.580739][  T640] usb 2-1: Using ep0 maxpacket: 8
[  696.283623][ T9535] input: syz0 as /devices/virtual/input/input165
[  696.580190][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 3: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  696.640079][ T9545] loop2: detected capacity change from 0 to 512
[  696.660376][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 12: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  696.694690][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  696.715737][  T640] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.730747][  T640] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  696.740304][  T640] usb 2-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  696.760806][  T640] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.765854][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 14: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  696.789899][  T640] usb 2-1: config 0 descriptor??
[  696.797833][ T9545] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  696.816098][ T9545] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038 (0x7fffffff)
[  696.853750][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 15: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  696.940791][ T8670] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  697.075126][ T9549] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #2: comm syz.2.1960: corrupted inode contents
[  697.087501][ T9549] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #2: comm syz.2.1960: mark_inode_dirty error
[  697.101205][ T9549] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #2: comm syz.2.1960: corrupted inode contents
[  697.113252][ T9549] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.1960: mark_inode_dirty error
[  697.521973][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  697.881067][ T9552] loop3: detected capacity change from 0 to 512
[  697.892413][ T9552] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  698.001921][ T9552] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  698.043592][ T9552] EXT4-fs (loop3): 1 truncate cleaned up
[  698.110250][ T9552] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  698.544793][ T9351] EXT4-fs (loop3): unmounting filesystem.
[  698.559034][   T28] audit: type=1400 audit(2000000201.610:1239): avc:  denied  { write } for  pid=9569 comm="syz.1.1965" name="hwrng" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  698.582246][  T640] usbhid 2-1:0.0: can't add hid device: -71
[  698.587999][  T640] usbhid: probe of 2-1:0.0 failed with error -71
[  698.613088][  T640] usb 2-1: USB disconnect, device number 19
[  699.854100][ T9589] loop1: detected capacity change from 0 to 256
[  700.687465][ T9601] loop3: detected capacity change from 0 to 16
[  700.733275][ T9601] erofs: (device loop3): mounted with root inode @ nid 36.
[  701.019234][ T9607] loop2: detected capacity change from 0 to 2048
[  701.031652][   T28] audit: type=1400 audit(2000000204.020:1240): avc:  denied  { create } for  pid=9602 comm="syz.1.1973" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  701.101711][ T9607] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  701.254144][ T9612] input: syz0 as /devices/virtual/input/input166
[  701.420807][   T28] audit: type=1400 audit(2000000204.400:1241): avc:  denied  { setopt } for  pid=9606 comm="syz.2.1974" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  702.718302][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  702.839812][ T9629] loop2: detected capacity change from 0 to 512
[  702.901752][ T9629] EXT4-fs (loop2): orphan cleanup on readonly fs
[  702.924159][ T9629] Quota error (device loop2): v2_read_file_info: Can't read info structure
[  703.003624][ T9629] EXT4-fs warning (device loop2): ext4_enable_quotas:6999: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  703.160176][ T9629] EXT4-fs (loop2): Cannot turn on quotas: error -5
[  703.220247][ T9629] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1976: bg 0: block 64: padding at end of block bitmap is not set
[  703.223512][ T9635] loop3: detected capacity change from 0 to 256
[  703.250777][ T9629] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6173: Corrupt filesystem
[  703.260669][ T9629] EXT4-fs (loop2): 1 orphan inode deleted
[  703.270798][ T9629] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  703.272005][ T9635] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xadbf5ead, utbl_chksum : 0xe619d30d)
[  703.300170][   T28] audit: type=1400 audit(2000000206.350:1242): avc:  denied  { map } for  pid=9628 comm="syz.2.1976" path="/9/bus" dev="devtmpfs" ino=1361 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  703.410191][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  704.488739][ T9655] loop2: detected capacity change from 0 to 256
[  704.502342][ T9640] bridge0: port 1(bridge_slave_0) entered blocking state
[  704.509213][ T9640] bridge0: port 1(bridge_slave_0) entered disabled state
[  704.548715][ T9640] device bridge_slave_0 entered promiscuous mode
[  704.562191][ T9655] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  704.593506][ T9640] bridge0: port 2(bridge_slave_1) entered blocking state
[  704.622809][ T9640] bridge0: port 2(bridge_slave_1) entered disabled state
[  704.630156][ T9640] device bridge_slave_1 entered promiscuous mode
[  704.869053][ T9658] exFAT-fs (loop2): hint_cluster is invalid (17)
[  705.293278][ T8670] EXT4-fs error: 8 callbacks suppressed
[  705.293295][ T8670] EXT4-fs error (device loop4): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  705.341773][ T8670] EXT4-fs error (device loop4): ext4_lookup:1852: inode #19: comm syz-executor: 'file1' linked to parent dir
[  705.460970][ T9640] bridge0: port 2(bridge_slave_1) entered blocking state
[  705.467830][ T9640] bridge0: port 2(bridge_slave_1) entered forwarding state
[  705.475078][ T9640] bridge0: port 1(bridge_slave_0) entered blocking state
[  705.481930][ T9640] bridge0: port 1(bridge_slave_0) entered forwarding state
[  705.511893][ T9664] loop3: detected capacity change from 0 to 512
[  705.742101][ T9664] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  705.783006][ T9664] ext4 filesystem being mounted at /11/bus supports timestamps until 2038 (0x7fffffff)
[  705.849502][  T640] bridge0: port 1(bridge_slave_0) entered disabled state
[  705.856751][  T640] bridge0: port 2(bridge_slave_1) entered disabled state
[  705.887324][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  705.953114][ T8670] EXT4-fs (loop4): unmounting filesystem.
[  705.959524][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  705.980767][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  706.003069][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  706.361264][  T640] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.368127][  T640] bridge0: port 1(bridge_slave_0) entered forwarding state
[  706.375754][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  706.393197][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  706.410921][  T640] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.417787][  T640] bridge0: port 2(bridge_slave_1) entered forwarding state
[  706.430348][ T9676] loop2: detected capacity change from 0 to 512
[  706.481316][   T28] audit: type=1400 audit(2000000209.540:1243): avc:  denied  { unlink } for  pid=9351 comm="syz-executor" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  706.529054][ T9351] EXT4-fs (loop3): unmounting filesystem.
[  706.535615][ T9676] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.1987: casefold flag without casefold feature
[  706.548606][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  706.556594][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  706.565049][ T9676] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #2: comm syz.2.1987: missing EA_INODE flag
[  706.862211][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  706.870137][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  706.888710][ T9676] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1987: error while reading EA inode 2 err=-117
[  706.917526][ T9676] EXT4-fs (loop2): 1 orphan inode deleted
[  706.923162][ T9676] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  706.938495][ T9640] device veth0_vlan entered promiscuous mode
[  706.980789][   T28] audit: type=1400 audit(2000000209.580:1244): avc:  denied  { unlink } for  pid=9351 comm="syz-executor" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  707.176506][ T9684] syz.2.1987[9684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  707.177119][ T9684] syz.2.1987[9684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  707.206411][ T9684] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1987'.
[  708.092191][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  708.100416][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  708.114540][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  708.178909][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  708.191836][ T9695] loop3: detected capacity change from 0 to 512
[  708.191839][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  708.198670][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  708.221816][ T9695] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  708.254518][ T9696] devtmpfs: Unknown parameter 'nr_&â7ùLÂñ)inodes'
[  708.282229][ T9696] loop1: detected capacity change from 0 to 512
[  708.293529][ T9696] EXT4-fs (loop1): external journal device major/minor numbers have changed
[  708.302634][ T9696] I/O error, dev loop75, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  708.311731][ T9696] EXT4-fs (loop1): couldn't read superblock of external journal
[  708.370796][   T28] audit: type=1400 audit(2000000211.310:1245): avc:  denied  { remount } for  pid=9691 comm="syz.1.1990" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  708.414648][ T9695] EXT4-fs (loop3): 1 truncate cleaned up
[  708.429200][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  708.431287][ T9695] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  708.460591][ T9640] device veth1_macvtap entered promiscuous mode
[  708.478796][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  708.487038][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  708.518449][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  708.527538][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  708.535689][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  708.543971][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  708.552199][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  709.099653][ T9680] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.789119][ T9680] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.986098][ T9680] device bridge_slave_0 entered promiscuous mode
[  710.021601][ T9721] loop1: detected capacity change from 0 to 256
[  710.028488][ T9680] bridge0: port 2(bridge_slave_1) entered blocking state
[  710.053125][ T9723] loop2: detected capacity change from 0 to 128
[  710.068256][ T9721] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  710.080359][ T9680] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.108500][ T9680] device bridge_slave_1 entered promiscuous mode
[  710.118950][ T9723] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  710.200914][ T9723] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  710.479137][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  710.491682][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  710.547133][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  710.569103][   T28] audit: type=1400 audit(2000000213.620:1246): avc:  denied  { setattr } for  pid=9722 comm="syz.2.1995" path="/15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/hugetlb.1GB.rsvd.usage_in_bytes" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  710.617733][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  710.630051][  T640] bridge0: port 1(bridge_slave_0) entered blocking state
[  710.636944][  T640] bridge0: port 1(bridge_slave_0) entered forwarding state
[  710.652377][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  710.664693][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  710.677936][  T640] bridge0: port 2(bridge_slave_1) entered blocking state
[  710.684821][  T640] bridge0: port 2(bridge_slave_1) entered forwarding state
[  710.710070][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  710.728852][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  710.740960][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  710.769752][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  710.783833][ T9680] device veth0_vlan entered promiscuous mode
[  710.796294][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  710.816107][ T9680] device veth1_macvtap entered promiscuous mode
[  710.830018][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  710.841872][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  710.871543][ T2004] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  710.924380][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  710.931228][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  710.952368][  T640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  711.937593][  T323] device bridge_slave_1 left promiscuous mode
[  711.969772][  T323] bridge0: port 2(bridge_slave_1) entered disabled state
[  711.980969][ T9749] loop1: detected capacity change from 0 to 512
[  712.030566][  T323] device bridge_slave_0 left promiscuous mode
[  712.044955][  T323] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.072047][  T323] device veth1_macvtap left promiscuous mode
[  712.091288][ T9749] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  712.271332][ T9749] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038 (0x7fffffff)
[  712.856250][ T8842] EXT4-fs (loop1): unmounting filesystem.
[  712.864806][ T9761] loop2: detected capacity change from 0 to 512
[  712.923747][ T9761] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.2002: casefold flag without casefold feature
[  712.957696][ T9761] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.2002: missing EA_INODE flag
[  712.970922][ T9761] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.2002: error while reading EA inode 12 err=-117
[  713.020819][ T9761] EXT4-fs (loop2): 1 orphan inode deleted
[  713.038777][ T9761] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  714.388038][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  714.412069][ T9781] loop2: detected capacity change from 0 to 16
[  714.418505][ T9781] erofs: (device loop2): mounted with root inode @ nid 36.
[  714.763082][ T9789] loop1: detected capacity change from 0 to 512
[  715.007164][ T9789] EXT4-fs (loop1): 1 orphan inode deleted
[  715.012806][ T9789] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  715.021878][  T323] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  715.021893][ T9789] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038 (0x7fffffff)
[  715.093405][  T323] EXT4-fs error (device loop1): ext4_release_dquot:6787: comm kworker/u4:3: Failed to release dquot type 1
[  715.128773][ T9794] input: syz0 as /devices/virtual/input/input167
[  715.430993][ T9799] input: syz0 as /devices/virtual/input/input168
[  715.440908][   T28] audit: type=1400 audit(2000000218.500:1247): avc:  denied  { watch watch_reads } for  pid=9797 comm="syz.4.2008" path="/2/control" dev="tmpfs" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  715.473099][ T9798] Â: renamed from pim6reg1
[  715.496546][ T8842] EXT4-fs (loop1): unmounting filesystem.
[  715.562702][ T9809] loop4: detected capacity change from 0 to 512
[  715.793468][ T9809] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  715.847148][ T9809] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038 (0x7fffffff)
[  716.069130][ T9816] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz.4.2011: corrupted inode contents
[  716.089097][ T9816] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #2: comm syz.4.2011: mark_inode_dirty error
[  716.111548][ T9816] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #2: comm syz.4.2011: corrupted inode contents
[  716.124075][ T9816] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.2011: mark_inode_dirty error
[  716.437371][ T9680] EXT4-fs (loop4): unmounting filesystem.
[  716.689984][ T9824] input: syz0 as /devices/virtual/input/input169
[  716.999852][ T9803] loop2: detected capacity change from 0 to 512
[  717.073131][ T9803] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  717.100942][ T9803] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038 (0x7fffffff)
[  717.300409][ T9818] loop1: detected capacity change from 0 to 40427
[  717.367555][ T9818] F2FS-fs (loop1): Invalid SB checksum offset: 0
[  717.381237][ T9818] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  717.394409][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  717.421141][ T9818] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  717.543191][ T9838] loop4: detected capacity change from 0 to 128
[  720.172783][   T28] audit: type=1400 audit(2000000223.230:1248): avc:  denied  { mounton } for  pid=9829 comm="syz.4.2015" path="/5/file0/file0" dev="loop4" ino=1049004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  720.411321][ T9849] loop4: detected capacity change from 0 to 16
[  720.513645][ T9849] erofs: (device loop4): mounted with root inode @ nid 36.
[  720.671322][  T329] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  721.060913][  T329] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  721.101475][  T329] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  721.194013][  T329] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  721.227095][  T329] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  721.245914][  T329] usb 3-1: config 0 descriptor??
[  721.329792][ T9865] input: syz0 as /devices/virtual/input/input170
[  721.471960][ T9857] bridge0: port 1(bridge_slave_0) entered blocking state
[  721.478917][ T9857] bridge0: port 1(bridge_slave_0) entered disabled state
[  721.496236][ T9857] device bridge_slave_0 entered promiscuous mode
[  721.693162][ T9857] bridge0: port 2(bridge_slave_1) entered blocking state
[  721.716004][ T9857] bridge0: port 2(bridge_slave_1) entered disabled state
[  721.854616][ T9857] device bridge_slave_1 entered promiscuous mode
[  722.115632][ T9857] bridge0: port 2(bridge_slave_1) entered blocking state
[  722.122513][ T9857] bridge0: port 2(bridge_slave_1) entered forwarding state
[  722.129608][ T9857] bridge0: port 1(bridge_slave_0) entered blocking state
[  722.136403][ T9857] bridge0: port 1(bridge_slave_0) entered forwarding state
[  722.367484][    T6] bridge0: port 1(bridge_slave_0) entered disabled state
[  722.382455][    T6] bridge0: port 2(bridge_slave_1) entered disabled state
[  722.437029][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  722.454624][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  722.490829][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  722.501515][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  722.503072][ T9883] loop1: detected capacity change from 0 to 16
[  722.512615][  T508] bridge0: port 1(bridge_slave_0) entered blocking state
[  722.522176][  T508] bridge0: port 1(bridge_slave_0) entered forwarding state
[  722.547310][ T9883] erofs: (device loop1): mounted with root inode @ nid 36.
[  722.551307][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  722.566661][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  722.592773][ T1872] bridge0: port 2(bridge_slave_1) entered blocking state
[  722.599800][ T1872] bridge0: port 2(bridge_slave_1) entered forwarding state
[  722.627212][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  722.647982][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  722.666150][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  722.686018][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  722.717944][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  722.735456][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  722.757294][ T9857] device veth0_vlan entered promiscuous mode
[  722.766351][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  722.775226][ T8648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  722.792304][ T9857] device veth1_macvtap entered promiscuous mode
[  722.802075][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  722.811718][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  722.861914][ T9886] input: syz0 as /devices/virtual/input/input171
[  722.895493][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  722.912013][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  722.955196][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  722.962002][ T9889] loop4: detected capacity change from 0 to 16
[  722.969002][ T9889] erofs: (device loop4): mounted with root inode @ nid 36.
[  723.003334][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  723.029424][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  723.057878][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  723.080641][ T1872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  723.279653][ T9895] input: syz0 as /devices/virtual/input/input172
[  723.437738][ T9899] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=8 sclass=netlink_xfrm_socket pid=9899 comm=syz.1.2027
[  725.846051][  T329] usbhid 3-1:0.0: can't add hid device: -71
[  725.876215][  T329] usbhid: probe of 3-1:0.0 failed with error -71
[  725.901389][ T9921] loop2: detected capacity change from 0 to 16
[  725.921937][  T329] usb 3-1: USB disconnect, device number 18
[  725.941280][ T9921] erofs: (device loop2): mounted with root inode @ nid 36.
[  725.946813][ T9924] loop4: detected capacity change from 0 to 512
[  725.972243][ T9924] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  726.013093][ T9924] EXT4-fs (loop4): 1 truncate cleaned up
[  726.018554][ T9924] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  726.235757][ T9933] input: syz0 as /devices/virtual/input/input173
[  727.041579][ T9945] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2034'.
[  727.080270][ T9945] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2034'.
[  727.371088][ T9945] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  727.378116][ T9945] IPv6: NLM_F_CREATE should be set when creating new route
[  727.412527][ T9945] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9945 comm=syz.0.2034
[  727.446262][ T9945] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2034'.
[  727.470746][   T28] audit: type=1400 audit(2000000230.500:1249): avc:  denied  { read } for  pid=9940 comm="syz.0.2034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  728.572814][ T9961] loop1: detected capacity change from 0 to 16
[  728.595064][ T9961] erofs: (device loop1): mounted with root inode @ nid 36.
[  729.007588][ T9971] input: syz0 as /devices/virtual/input/input174
[  731.345719][ T9991] loop1: detected capacity change from 0 to 512
[  731.511546][ T9991] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  731.532613][ T9991] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038 (0x7fffffff)
[  731.755276][T10001] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #2: comm syz.1.2045: corrupted inode contents
[  731.767554][T10001] EXT4-fs error (device loop1): ext4_dirty_inode:6074: inode #2: comm syz.1.2045: mark_inode_dirty error
[  731.779750][T10001] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #2: comm syz.1.2045: corrupted inode contents
[  731.792243][T10001] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.2045: mark_inode_dirty error
[  731.995611][T10003] loop2: detected capacity change from 0 to 16
[  732.015186][ T8842] EXT4-fs (loop1): unmounting filesystem.
[  732.021865][T10003] erofs: (device loop2): mounted with root inode @ nid 36.
[  732.986397][T10009] input: syz0 as /devices/virtual/input/input175
[  733.184516][T10015] input: syz0 as /devices/virtual/input/input176
[  733.637234][T10019] loop2: detected capacity change from 0 to 512
[  733.703669][T10025] loop1: detected capacity change from 0 to 512
[  733.711166][T10025] EXT4-fs: Ignoring removed mblk_io_submit option
[  733.746433][T10019] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  733.776182][T10025] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2050: invalid indirect mapped block 10 (level 1)
[  733.789446][T10025] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2050: invalid indirect mapped block 8 (level 1)
[  733.802766][T10025] EXT4-fs (loop1): 1 truncate cleaned up
[  733.808245][T10025] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  733.915780][T10019] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  734.248973][T10019] EXT4-fs (loop2): 1 truncate cleaned up
[  734.305681][T10019] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  734.317555][ T8842] EXT4-fs (loop1): unmounting filesystem.
[  734.955948][ T9415] EXT4-fs (loop2): unmounting filesystem.
[  735.238451][T10053] overlayfs: failed to resolve './file0': -2
[  735.883463][T10051] loop2: detected capacity change from 0 to 40427
[  735.900604][T10051] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  735.918603][T10051] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  736.875175][T10051] F2FS-fs (loop2): Found nat_bits in checkpoint
[  737.289019][T10051] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  737.298045][T10051] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  737.312391][T10077] input: syz0 as /devices/virtual/input/input177
[  737.619855][ T9525] general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#1] PREEMPT SMP KASAN
[  737.631399][ T9525] KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f]
[  737.639644][ T9525] CPU: 1 PID: 9525 Comm: syz.0.1954 Not tainted 6.1.99-syzkaller-00089-g5a912daf8731 #0
[  737.649190][ T9525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  737.659082][ T9525] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  737.665769][ T9525] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 ce 0a d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 b1 0a d0 ff 4c 8b 23 4d 85 e4 4c
[  737.685207][ T9525] RSP: 0000:ffffc90000f46c20 EFLAGS: 00010202
[  737.691114][ T9525] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  737.698923][ T9525] RDX: ffffc90002293000 RSI: 000000000003ffff RDI: 0000000000040000
[  737.706737][ T9525] RBP: ffffc90000f46cf0 R08: ffff88810bb39f18 R09: 0000000000000001
[  737.714545][ T9525] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1102173880f
[  737.720773][   T28] audit: type=1400 audit(2000000240.750:1250): avc:  denied  { write } for  pid=280 comm="syz-executor" path="pipe:[13872]" dev="pipefs" ino=13872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  737.722351][ T9525] R13: dffffc0000000000 R14: ffff88810bb39f18 R15: 0000000000000001
[  737.753164][ T9525] FS:  00007f70e01146c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  737.761931][ T9525] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  737.768353][ T9525] CR2: 0000001b2e708ff8 CR3: 0000000129584000 CR4: 00000000003506a0
[  737.776168][ T9525] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  737.783975][ T9525] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  737.791800][ T9525] Call Trace:
[  737.794910][ T9525]  <TASK>
[  737.797687][ T9525]  ? __die_body+0x62/0xb0
[  737.801855][ T9525]  ? die_addr+0x9f/0xd0
[  737.805848][ T9525]  ? exc_general_protection+0x317/0x4c0
[  737.811235][ T9525]  ? asm_exc_general_protection+0x27/0x30
[  737.816788][ T9525]  ? __ext4_journal_get_write_access+0xb0/0x690
[  737.822862][ T9525]  ? __ext4_journal_ensure_credits+0x470/0x470
[  737.828847][ T9525]  ? folio_mark_accessed+0x211/0x650
[  737.833970][ T9525]  ? folio_activate_fn+0xd20/0xd20
[  737.838916][ T9525]  ext4_reserve_inode_write+0x26d/0x360
[  737.844296][ T9525]  ? ext4_mark_iloc_dirty+0x1970/0x1970
[  737.849676][ T9525]  ? _raw_spin_lock+0xa4/0x1b0
[  737.854278][ T9525]  ? _raw_spin_trylock_bh+0x190/0x190
[  737.859483][ T9525]  ? __find_get_block+0xd38/0x1180
[  737.864432][ T9525]  ? ext4_dirty_inode+0xbd/0x100
[  737.869208][ T9525]  __ext4_mark_inode_dirty+0x12e/0x7d0
[  737.874503][ T9525]  ? inode_add_bytes+0x118/0x160
[  737.879274][ T9525]  ? sb_end_intwrite+0x130/0x130
[  737.884051][ T9525]  ? __dquot_alloc_space+0x267/0xc10
[  737.889171][ T9525]  ? __kasan_check_read+0x11/0x20
[  737.894029][ T9525]  ? __ext4_journal_start_sb+0x2f1/0x4b0
[  737.899499][ T9525]  ext4_dirty_inode+0xbd/0x100
[  737.904097][ T9525]  ? __ext4_expand_extra_isize+0x420/0x420
[  737.909740][ T9525]  __mark_inode_dirty+0x200/0xa60
[  737.914604][ T9525]  ext4_xattr_block_set+0x1d7f/0x37d0
[  737.919813][ T9525]  ? ext4_xattr_block_find+0x320/0x320
[  737.925101][ T9525]  ? ext4_xattr_ibody_set+0xf1/0x390
[  737.930221][ T9525]  ? ext4_xattr_ibody_set+0x2bb/0x390
[  737.935429][ T9525]  ext4_xattr_set_handle+0xdac/0x1560
[  737.940635][ T9525]  ? __rcu_read_unlock+0xd0/0xd0
[  737.945414][ T9525]  ? ext4_xattr_set_entry+0x3ef0/0x3ef0
[  737.950797][ T9525]  ? selinux_inode_free_security+0x210/0x210
[  737.956608][ T9525]  ext4_initxattrs+0xa7/0x120
[  737.961122][ T9525]  security_inode_init_security+0x252/0x390
[  737.966850][ T9525]  ? ext4_init_security+0x40/0x40
[  737.971707][ T9525]  ? security_dentry_create_files_as+0xc0/0xc0
[  737.977702][ T9525]  ? __ext4_set_acl+0x5e0/0x5e0
[  737.982470][ T9525]  ? _raw_spin_unlock+0x4c/0x70
[  737.987165][ T9525]  ext4_init_security+0x34/0x40
[  737.991846][ T9525]  __ext4_new_inode+0x31ef/0x40a0
[  737.996712][ T9525]  ? ext4_has_group_desc_csum+0x1f0/0x1f0
[  738.002260][ T9525]  ? dquot_initialize+0x20/0x20
[  738.006952][ T9525]  ext4_create+0x275/0x550
[  738.011202][ T9525]  ? ext4_lookup+0x740/0x740
[  738.015627][ T9525]  ? ext4_lookup+0x740/0x740
[  738.020051][ T9525]  path_openat+0x12ee/0x2d60
[  738.024483][ T9525]  ? do_filp_open+0x480/0x480
[  738.028993][ T9525]  do_filp_open+0x230/0x480
[  738.033343][ T9525]  ? vfs_tmpfile+0x480/0x480
[  738.037772][ T9525]  ? alloc_fd+0x4fa/0x5a0
[  738.042022][ T9525]  do_sys_openat2+0x151/0x870
[  738.046530][ T9525]  ? __ia32_sys_get_robust_list+0x90/0x90
[  738.052079][ T9525]  ? __schedule+0xcbd/0x1560
[  738.056506][ T9525]  ? do_sys_open+0x220/0x220
[  738.060936][ T9525]  ? __this_cpu_preempt_check+0x13/0x20
[  738.066314][ T9525]  __x64_sys_openat+0x243/0x290
[  738.071000][ T9525]  ? __ia32_sys_open+0x270/0x270
[  738.075775][ T9525]  ? switch_fpu_return+0xe/0x10
[  738.080461][ T9525]  ? exit_to_user_mode_prepare+0x7e/0xa0
[  738.086017][ T9525]  x64_sys_call+0x6bf/0x9a0
[  738.090360][ T9525]  do_syscall_64+0x3b/0xb0
[  738.094608][ T9525]  ? clear_bhb_loop+0x55/0xb0
[  738.099122][ T9525]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  738.104935][ T9525] RIP: 0033:0x7f70df37df39
[  738.109188][ T9525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.128630][ T9525] RSP: 002b:00007f70e0114038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  738.136879][ T9525] RAX: ffffffffffffffda RBX: 00007f70df536130 RCX: 00007f70df37df39
[  738.144684][ T9525] RDX: 00000000000026e1 RSI: 0000000020000280 RDI: ffffffffffffff9c
[  738.152496][ T9525] RBP: 00007f70df3f0216 R08: 0000000000000000 R09: 0000000000000000
[  738.160402][ T9525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.168303][ T9525] R13: 0000000000000000 R14: 00007f70df536130 R15: 00007ffc16b6e6f8
[  738.176293][ T9525]  </TASK>
[  738.179279][ T9525] Modules linked in:
[  738.183047][ T9512] general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#2] PREEMPT SMP KASAN
[  738.194552][ T9512] KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f]
[  738.202795][ T9512] CPU: 0 PID: 9512 Comm: syz.0.1954 Tainted: G      D            6.1.99-syzkaller-00089-g5a912daf8731 #0
[  738.213816][ T9512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  738.223800][ T9512] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
[  738.230481][ T9512] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 ce 0a d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 b1 0a d0 ff 4c 8b 23 4d 85 e4 4c
[  738.250015][ T9512] RSP: 0018:ffffc90000d47280 EFLAGS: 00010202
[  738.255916][ T9512] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  738.263722][ T9512] RDX: ffffc90001df9000 RSI: 000000000003ffff RDI: 0000000000040000
[  738.271532][ T9512] RBP: ffffc90000d47350 R08: ffff88811c6432a0 R09: 0000000000000001
[  738.279439][ T9512] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff11021738af7
[  738.287259][ T9512] R13: dffffc0000000000 R14: ffff88811c6432a0 R15: 0000000000000001
[  738.295063][ T9512] FS:  00007f70e01356c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  738.303828][ T9512] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  738.310252][ T9512] CR2: 00007ffd9a07cfac CR3: 0000000129584000 CR4: 00000000003506b0
[  738.318087][ T9512] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  738.325881][ T9512] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  738.333690][ T9512] Call Trace:
[  738.336813][ T9512]  <TASK>
[  738.339590][ T9512]  ? __die_body+0x62/0xb0
[  738.343755][ T9512]  ? die_addr+0x9f/0xd0
[  738.347748][ T9512]  ? exc_general_protection+0x317/0x4c0
[  738.353141][ T9512]  ? asm_exc_general_protection+0x27/0x30
[  738.358702][ T9512]  ? __ext4_journal_get_write_access+0xb0/0x690
[  738.364758][ T9512]  ? __ext4_journal_stop+0x36/0x1c0
[  738.369796][ T9512]  ? __ext4_journal_ensure_credits+0x470/0x470
[  738.375882][ T9512]  ? __ext4_expand_extra_isize+0x420/0x420
[  738.381511][ T9512]  ext4_xattr_block_set+0x1dcc/0x37d0
[  738.386726][ T9512]  ? ext4_xattr_block_find+0x320/0x320
[  738.392012][ T9512]  ? raw_irqentry_exit_cond_resched+0x2a/0x30
[  738.397913][ T9512]  ? irqentry_exit+0x30/0x40
[  738.402339][ T9512]  ? sysvec_reschedule_ipi+0x80/0x160
[  738.407549][ T9512]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  738.413030][ T9512]  ? ext4_xattr_ibody_find+0x102/0x530
[  738.418313][ T9512]  ext4_xattr_set_handle+0xdac/0x1560
[  738.423517][ T9512]  ? __rcu_read_unlock+0xd0/0xd0
[  738.428300][ T9512]  ? ext4_xattr_set_entry+0x3ef0/0x3ef0
[  738.433677][ T9512]  ? selinux_inode_free_security+0x210/0x210
[  738.439689][ T9512]  ext4_initxattrs+0xa7/0x120
[  738.444233][ T9512]  security_inode_init_security+0x252/0x390
[  738.449931][ T9512]  ? ext4_init_security+0x40/0x40
[  738.454790][ T9512]  ? security_dentry_create_files_as+0xc0/0xc0
[  738.460781][ T9512]  ? __ext4_set_acl+0x5e0/0x5e0
[  738.465468][ T9512]  ext4_init_security+0x34/0x40
[  738.470152][ T9512]  __ext4_new_inode+0x31ef/0x40a0
[  738.475024][ T9512]  ? ext4_has_group_desc_csum+0x1f0/0x1f0
[  738.480578][ T9512]  ? dquot_initialize+0x20/0x20
[  738.485257][ T9512]  ? ext4_get_dummy_policy+0x1b/0x60
[  738.490373][ T9512]  ? ext4_set_context+0x560/0x560
[  738.495248][ T9512]  ? fscrypt_policy_to_inherit+0xba/0x160
[  738.500792][ T9512]  ext4_symlink+0x396/0xc10
[  738.505140][ T9512]  ? ext4_unlink+0x3f0/0x3f0
[  738.509558][ T9512]  ? security_inode_symlink+0xb8/0x100
[  738.514852][ T9512]  vfs_symlink+0x24e/0x3e0
[  738.519102][ T9512]  do_symlinkat+0x1ea/0x5a0
[  738.523534][ T9512]  ? __check_object_size+0x48e/0x650
[  738.528655][ T9512]  ? vfs_symlink+0x3e0/0x3e0
[  738.533077][ T9512]  ? getname_flags+0x1fd/0x520
[  738.537676][ T9512]  __x64_sys_symlinkat+0x99/0xb0
[  738.542450][ T9512]  x64_sys_call+0x6fe/0x9a0
[  738.546789][ T9512]  do_syscall_64+0x3b/0xb0
[  738.551041][ T9512]  ? clear_bhb_loop+0x55/0xb0
[  738.555558][ T9512]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  738.561284][ T9512] RIP: 0033:0x7f70df37df39
[  738.565539][ T9512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.584979][ T9512] RSP: 002b:00007f70e0135038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  738.593227][ T9512] RAX: ffffffffffffffda RBX: 00007f70df536058 RCX: 00007f70df37df39
[  738.601036][ T9512] RDX: 00000000200003c0 RSI: 0000000000000009 RDI: 0000000020000240
[  738.608849][ T9512] RBP: 00007f70df3f0216 R08: 0000000000000000 R09: 0000000000000000
[  738.616658][ T9512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.624554][ T9512] R13: 0000000000000000 R14: 00007f70df536058 R15: 00007ffc16b6e6f8
[  738.632460][ T9512]  </TASK>
[  738.635406][ T9512] Modules linked in:
[  738.802481][T10087] syz.2.2055: attempt to access beyond end of device
[  738.802481][T10087] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  738.858097][T10082] bridge0: port 1(bridge_slave_0) entered blocking state
[  738.878214][T10082] bridge0: port 1(bridge_slave_0) entered disabled state
[  738.900732][ T9525] ---[ end trace 0000000000000000 ]---
[  738.906115][ T9525] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
[  738.913020][ T9525] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 ce 0a d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 b1 0a d0 ff 4c 8b 23 4d 85 e4 4c
[  738.931203][T10082] device bridge_slave_0 entered promiscuous mode
[  738.932655][ T9525] RSP: 0000:ffffc90000f46c20 EFLAGS: 00010202
[  738.939378][T10082] bridge0: port 2(bridge_slave_1) entered blocking state
[  738.944938][ T9525] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  739.010724][T10082] bridge0: port 2(bridge_slave_1) entered disabled state
[  739.018247][T10082] device bridge_slave_1 entered promiscuous mode
[  739.120761][ T9512] ---[ end trace 0000000000000000 ]---
[  739.126142][ T9512] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
[  739.160693][ T9512] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 ce 0a d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 b1 0a d0 ff 4c 8b 23 4d 85 e4 4c
[  739.250771][ T9512] RSP: 0000:ffffc90000f46c20 EFLAGS: 00010202
[  739.256782][ T9512] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  739.310748][ T9512] RDX: ffffc90002293000 RSI: 000000000003ffff RDI: 0000000000040000
[  739.318699][ T9512] RBP: ffffc90000f46cf0 R08: ffff88810bb39f18 R09: 0000000000000001
[  739.370698][ T9512] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1102173880f
[  739.378506][ T9512] R13: dffffc0000000000 R14: ffff88810bb39f18 R15: 0000000000000001
[  739.440694][ T9512] FS:  00007f70e01356c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  739.449450][ T9512] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  739.500712][ T9512] CR2: 00007ffd9a07ffd8 CR3: 0000000129584000 CR4: 00000000003506a0
[  739.508525][ T9512] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  739.572168][T10085] syz.2.2055: attempt to access beyond end of device
[  739.572168][T10085] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  739.633761][ T9512] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  739.680813][ T9512] Kernel panic - not syncing: Fatal exception
[  739.686965][ T9512] Kernel Offset: disabled
[  739.691090][ T9512] Rebooting in 86400 seconds..