last executing test programs:

10.012396163s ago: executing program 4 (id=1324):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000003577000000000000000000001812", @ANYRES32=r2], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r5=>0x0})
bind$packet(r4, &(0x7f0000000080)={0x11, 0x800, r5, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
syz_emit_ethernet(0x3a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaa3500000000000008004500006f9800000000119078640101020400000000004e22001890780400"/58], 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000a00)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xa, 0xcbf, 0x4, @remote, @empty, 0x10, 0x8, 0x40, 0xd66}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000040)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x2, 0x4038a09, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x0, 0x40, 0xb5}})
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @rand_addr=0x64010103}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1010000, &(0x7f0000000fc0)=ANY=[@ANYBLOB="696f636861727365743d69736f383835392d332c696f636861727365743d61736369692c756e695f786c6174653d312c756e695f786c6174653d312c696f636861727365743d6d616363656e746575726f2c73686f72746e616d653d6c0019a0ab77323b2f7ff514d978bdc23b9e0001000000000072746e616d653d6d697865642c757466383d312c757466383d312c726f6469722c7d67636861607365613d69736f2d342c6e6f6e756d7461696c3d302c757466383d302c6e6f6e7d6d7461696c3d302c73686f72746e616d653d77696e39352c636865636b3d7374726963742c6e6f6e756f7461696c3d302c007d9e94635326a87a25c7461c94a6998ad01dcfdccc25f1e011d520bf1c78daef406646bd1b03a3dd3a35a5ca8f6240671dd159f3ef080e7f7a9c016e0ebb0795e2dc3e1c2961bfa4aa9d6ef77fd9a597c768f7ced9966fed3f0acde0471eda026191eee718e088f72855a9fcfa345f41ecbd4c41212dfdd79f01bc8f7e55612497e19596a588ca29a8b168d7d6e9a022b78a40cc4eaef7a6c77b622d335cb5ae06f1b6460f00685ec3635db10f1abe9dfb1fb320313d325da3788decff"], 0x1, 0x36e, &(0x7f0000000240)="$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")
r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r6, &(0x7f0000000240)={0x24, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r7 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000003c0), 0x80000)
getsockopt$inet_buf(r7, 0x0, 0x11, &(0x7f0000000400)=""/230, &(0x7f0000000500)=0xe6)
r8 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

7.050333315s ago: executing program 0 (id=1326):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bd2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000000c0)={'fscrypt:', @auto=[0x30, 0x31, 0x33, 0x36, 0x36, 0x0, 0x64, 0x61, 0x62, 0x62, 0x66, 0x37, 0x34, 0x34, 0x39, 0x13]}, 0x0, 0x0, 0x0)
r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000280)=@generic={0x0, 0x0, 0x8}, 0x18)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000540)={r3, 0x0, &(0x7f0000000480)=""/172, 0x4}, 0x20)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, 0x0, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000200)={0xfffffffb, {{0xa, 0x4e21, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x0, @private2}}}, 0x108)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r5, &(0x7f0000000100)="1ce0", 0xffeb, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10)
recvmmsg(r5, &(0x7f0000009540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40010100, 0x0)
r6 = dup(0xffffffffffffffff)
ioctl$PTP_EXTTS_REQUEST2(r6, 0x80503d0a, &(0x7f00000002c0)={0x1, 0x9})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x51, 0xfd, 0x0, 0x97}, {0x20, 0x0, 0x2, 0x6}, {0x6, 0xfc, 0x5, 0xd}]}, 0x10)

6.89481633s ago: executing program 3 (id=1329):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
write(0xffffffffffffffff, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r3, &(0x7f0000000280), 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r2, 0x0, 0x3}, 0x18)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r3)

6.437099345s ago: executing program 4 (id=1331):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
write(0xffffffffffffffff, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r3, &(0x7f0000000280), 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r2, 0x0, 0x3}, 0x18)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r3)

6.434404936s ago: executing program 0 (id=1332):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x50, 0x0, 0x203, {0x7, 0x29, 0x8000, 0x11, 0xdcf, 0x3, 0xb, 0x0, 0x0, 0x0, 0x2, 0x9b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f00009d1000/0x4000)=nil, 0x4000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x14a, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000580), 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40850)
mknodat(0xffffffffffffff9c, 0x0, 0x2, 0x3)
getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, 0x0, &(0x7f00000000c0))
bpf$MAP_CREATE(0x300000000000000, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="034000000100e7ffffff000000000000000000000000000000000000cd4221cee85227f35b42e7527eef73cf5782c728086e176c5a6167fd183208482d6196044dc2c788ad608bf671cdc1b4869dde530bb93c97"], 0x48)
connect$inet6(0xffffffffffffffff, &(0x7f0000000a40)={0xa, 0x4e24, 0xf4, @remote, 0x1}, 0x1c)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
select(0x40, &(0x7f0000000180)={0x7, 0x800, 0x80, 0xffffffff, 0xfffffffffffffffb, 0x34, 0x3}, 0x0, &(0x7f0000000700)={0xf, 0x8, 0x40, 0x5, 0x3ff, 0xac, 0xed6b, 0xe21}, 0x0)

5.5766636s ago: executing program 3 (id=1336):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xefdc6000)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
write(r5, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r6, &(0x7f0000000280), 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0700000004000000080200000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/29], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r4, 0x0, 0x3}, 0x18)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r7, 0x0}, 0x20)
setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r6)

5.543843083s ago: executing program 4 (id=1337):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000004200)='t', 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f600000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendfile(r1, r0, 0x0, 0x3ffff)
sendfile(r1, r0, 0x0, 0x7ffff000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
timer_create(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRESOCT=r2, @ANYRES32, @ANYBLOB="000000000000000100"/20, @ANYBLOB="e48bc632d1fde602c8e7bc8983871586c31f739d3613", @ANYRES32], 0x48)
add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x13, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r7, 0x400455c8, 0xb000000)

5.441425964s ago: executing program 2 (id=1338):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bd2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000000c0)={'fscrypt:', @auto=[0x30, 0x31, 0x33, 0x36, 0x36, 0x0, 0x64, 0x61, 0x62, 0x62, 0x66, 0x37, 0x34, 0x34, 0x39, 0x13]}, 0x0, 0x0, 0x0)
r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000280)=@generic={0x0, 0x0, 0x8}, 0x18)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000540)={r3, 0x0, &(0x7f0000000480)=""/172, 0x4}, 0x20)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, 0x0, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000200)={0xfffffffb, {{0xa, 0x4e21, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x0, @private2}}}, 0x108)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r5, &(0x7f0000000100)="1ce0", 0xffeb, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10)
recvmmsg(r5, &(0x7f0000009540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40010100, 0x0)
r6 = dup(0xffffffffffffffff)
ioctl$PTP_EXTTS_REQUEST2(r6, 0x80503d0a, &(0x7f00000002c0)={0x1, 0x9})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x51, 0xfd, 0x0, 0x97}, {0x20, 0x0, 0x2, 0x6}, {0x6, 0xfc, 0x5, 0xd}]}, 0x10)

3.659302339s ago: executing program 0 (id=1339):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x240, 0x0)
mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xefdc6000)
write(0xffffffffffffffff, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r5, &(0x7f0000000280), 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r4, 0x0, 0x3}, 0x18)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r5)

3.657905109s ago: executing program 3 (id=1340):
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00'}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r5=>r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES64=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b70400000000040085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp=0x25, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$inet(r1, &(0x7f0000000480)={0x2, 0xffff, @multicast2}, 0x10)

3.540673231s ago: executing program 1 (id=1342):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000003577000000000000000000001812", @ANYRES32=r2], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r5=>0x0})
bind$packet(r4, &(0x7f0000000080)={0x11, 0x800, r5, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
syz_emit_ethernet(0x3a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaa3500000000000008004500006f9800000000119078640101020400000000004e22001890780400"/58], 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000a00)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xa, 0xcbf, 0x4, @remote, @empty, 0x10, 0x8, 0x40, 0xd66}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000040)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x2, 0x4038a09, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x0, 0x40, 0xb5}})
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @rand_addr=0x64010103}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1010000, &(0x7f0000000fc0)=ANY=[@ANYBLOB="696f636861727365743d69736f383835392d332c696f636861727365743d61736369692c756e695f786c6174653d312c756e695f786c6174653d312c696f636861727365743d6d616363656e746575726f2c73686f72746e616d653d6c0019a0ab77323b2f7ff514d978bdc23b9e0001000000000072746e616d653d6d697865642c757466383d312c757466383d312c726f6469722c7d67636861607365613d69736f2d342c6e6f6e756d7461696c3d302c757466383d302c6e6f6e7d6d7461696c3d302c73686f72746e616d653d77696e39352c636865636b3d7374726963742c6e6f6e756f7461696c3d302c007d9e94635326a87a25c7461c94a6998ad01dcfdccc25f1e011d520bf1c78daef406646bd1b03a3dd3a35a5ca8f6240671dd159f3ef080e7f7a9c016e0ebb0795e2dc3e1c2961bfa4aa9d6ef77fd9a597c768f7ced9966fed3f0acde0471eda026191eee718e088f72855a9fcfa345f41ecbd4c41212dfdd79f01bc8f7e55612497e19596a588ca29a8b168d7d6e9a022b78a40cc4eaef7a6c77b622d335cb5ae06f1b6460f00685ec3635db10f1abe9dfb1fb320313d325da3788decff"], 0x1, 0x36e, &(0x7f0000000240)="$eJzs3U1oY1UbAOA3vWnSDnxfuxMFIboTpExnpxs7SAcGu1EJ/izE4HRUmiq0WOgsJq0LXQsudeVOQRcuxKUIirhz4dYRZFTcOLsBB48kNze5TW47RWml+DwwyZlzznvOe3+apJeb0xdXYuPKbFy9detmzM3Vor7y+ErcrsViZFHYi2mNijoA4Gy4nVL8nnKTbXPVIbVTSAsAOEGD9/+XI6IVi3nNm18d1T959weAM2/4+//8UX0OuQ4Q8fqJpAQAnLCp6/8PHmhuDP7Vi//WS3cFAABn1dPPPf/ExbWIp1qtuYjNt3faO+14dNx+8Wq8Gt1Yj/OxEHci8g8K/Yfa4PHS5bXV861Wqxc/L0Y7ImaGge0sv1MgG8Q3YzkWYnEYP/y0kVLKLn26trrcGoiIvd5g/tis7bRn49xw/h/Oxfr4g0cxyOAp4vLa6oXWcID2ZhHfi9gf36jQz38pFuK7l0bDpFTcwbi2en25SHocv9NuxpXRXjj0CggAAAAAAAAAAAAAAAAAAAAAAPwtS62RxdH6Oan/nK+Us7RU0T5YHyePH64PtJ+vD5SaKdJ+MXZ5faDJ9Xl2LCQIAAAAAAAAAAAAAAAAAAAAI9u7jeh0u+tb27vXNsqF3tb27kxE9Gte++bjL+ejaGoOQ6uiDhTqeb9+/6KpNYy9ttFJWdE5ZRHT4Vl5ig8/G2Vc7tMcbUVlGs3Dm7rd/z3w03vjmvuzYuQ/x32yqN7ArJTGYxMjb/4/T+nw3XJE4UK5pjk9+42UUqnmrXL49RemB4xaRD0q5pqv2OHlwkwcnmrqF76++cq9xd7vfJFyDz288MyNdz/4daPT7c+cnySNre07aaNTKzofY28Mh0uDQzA+N2qRF2rlM6E+FV6q2T/Y1Mm+/+3Z+9759ngHJZVr3uifzxN9snxzPpkMb+SFfpoTTfPj8Nnip2h99i7HoqpQdUzvUrjn/c8/SunHX449xdjM1MtG7Z+/8gAAAAAAAAAAAAAAAAAAAJNK3xUffum6lzfMHhX1yJOnlB4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnIrx3/8vFfb3YqLmOIU/ehVRzfWt7YjGv72ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8x/0VAAD//3XiXqU=")
r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r6, &(0x7f0000000240)={0x24, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r7 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000003c0), 0x80000)
getsockopt$inet_buf(r7, 0x0, 0x11, &(0x7f0000000400)=""/230, &(0x7f0000000500)=0xe6)
r8 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

3.44089814s ago: executing program 2 (id=1343):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r0, 0x0, 0x9)

2.708775053s ago: executing program 1 (id=1344):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000020000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r4}, 0x10)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r6, &(0x7f0000000480)={0x2020}, 0x2020)

2.548168879s ago: executing program 3 (id=1345):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000340)={'pimreg1\x00', 0x1})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = gettid()
r3 = memfd_create(0x0, 0x3)
fcntl$addseals(r3, 0x409, 0x8)
writev(r3, &(0x7f0000000040)=[{0x0}], 0x1)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x15)
dup(0xffffffffffffffff)
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, 0x0, &(0x7f0000000280)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r0, &(0x7f0000000040)=""/170, 0xaa)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001000010025bd7000f9dbdf2500000004", @ANYRES32=0x0, @ANYBLOB="158804000300000008001b000000000008000d"], 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x4040000)

2.513493082s ago: executing program 0 (id=1346):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x6, 0x9, &(0x7f00000002c0)={{0x5c, @rand_addr=0x64010102, 0x4e20, 0x4, 'lc\x00', 0x31, 0xb, 0x3}, {@dev={0xac, 0x14, 0x14, 0x40}, 0x4e20, 0x10000, 0x0, 0x5, 0x2}}, 0x44)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x759, &(0x7f0000000780)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}, 0x0}, {@data_journal}, {@journal_dev={'journal_dev', 0x3d, 0xf}}, {@i_version}, {@nobarrier}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xb6a}}, {@data_err_ignore}], [], 0x2c}, 0x2, 0x4f9, &(0x7f0000000200)="$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")
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000008c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0200000000000000142c01fe8000000000000000000000000000bbfe8000000000000000000000000000aa3a004e23", @ANYRES32=0x41424344, @ANYRESDEC, @ANYRES32=r4], 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@noload}]}, 0xea, 0x472, &(0x7f0000000f40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xda8, 0x30, 0xffff, 0x70bd25, 0x0, {}, [{0xd94, 0x1, [@m_police={0xc78, 0xa, 0x0, 0x0, {{0xb}, {0xc4c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x9, 0xc, 0x2b45, 0x4, 0x70e, 0xd, 0x1, 0x9, 0x6, 0x8399, 0x1, 0x2, 0x4, 0x8, 0xc, 0x6, 0x6, 0x8, 0x8, 0x5, 0x113, 0x200020, 0x78, 0x63, 0x7b1, 0x5, 0x58d4d936, 0x6, 0x64, 0x6, 0x5, 0x243, 0xfffffffd, 0x3, 0x5, 0x80000000, 0x4, 0x7, 0xfffffff8, 0x4, 0x80000001, 0x2, 0x72, 0x9, 0x6, 0x7, 0x7fff, 0x1, 0x0, 0x63, 0x1, 0x9, 0xffffff00, 0x1ff, 0x4, 0x3, 0x8, 0x9, 0x709d41d4, 0x2, 0x40, 0x7ff, 0x4, 0x4, 0xfffffffb, 0x32, 0x7, 0x7f, 0x7fffffff, 0x4, 0x0, 0xd, 0x6, 0x0, 0x100, 0x7, 0x9, 0xfffffffe, 0x0, 0xf, 0xe2b7, 0x7f, 0x3, 0x6, 0x80, 0x1, 0x4, 0x10, 0xd4, 0x4c0, 0x8001, 0x10001, 0x3, 0x8, 0x5, 0x2, 0x9, 0x2, 0x9, 0x4, 0x2, 0xffffff42, 0x1, 0x4, 0x401, 0x0, 0x10001, 0x1, 0x2, 0x80000000, 0xc, 0x4, 0x4, 0x2, 0x8, 0xe5, 0x7, 0x6, 0x6, 0x7fff, 0xbffb, 0x7, 0x7, 0xffffffff, 0x3, 0xfffeffff, 0x7, 0x4, 0x3, 0xfffffffe, 0x280000, 0x0, 0x8, 0x81, 0x0, 0x7, 0x4, 0x59, 0x9, 0x8, 0xd, 0x2, 0x3b, 0x9, 0xffff, 0xd3f, 0x9, 0x9ec, 0x0, 0x80000000, 0x2, 0x6, 0x4b0, 0x4, 0x6, 0x448783b3, 0x401, 0x1, 0xffff, 0xffffffff, 0x5, 0x2, 0x1, 0x1ff, 0x9, 0x800, 0x3, 0x5, 0xff, 0x1000, 0x8, 0x6, 0x6, 0xc7000000, 0x4, 0x3e, 0x4, 0x80, 0x3, 0x7f, 0x2, 0xd, 0x6, 0xd, 0xffffffff, 0xc000000, 0x504, 0x7fffffff, 0x8, 0x10, 0x5, 0x8, 0xffffff00, 0x2, 0x2804e82, 0x0, 0x3, 0x3252, 0x6, 0x4, 0x7fffffff, 0x8, 0xe84, 0x4, 0xa5, 0x1, 0x0, 0x7, 0x101, 0xfffffff7, 0x5ee, 0x6, 0x8001, 0x81, 0x40, 0x4, 0x8, 0x2, 0x4, 0x3, 0xfffffffd, 0x3, 0x6, 0x1ff, 0x0, 0x8000, 0xffffffff, 0x16, 0x2, 0x40, 0xf5, 0x800, 0x56, 0xc6e, 0x5, 0x3, 0x3, 0xdef7, 0x1, 0x9, 0x6, 0xf, 0xf, 0x4, 0x827, 0xf, 0x7, 0xe, 0xfffffffe, 0x800, 0x2, 0xc338, 0x7f, 0x8, 0x3, 0x9]}, @TCA_POLICE_RATE={0x404, 0x2, [0x69463a35, 0x8, 0x5, 0x7, 0x9, 0x0, 0x9, 0xffff, 0x1, 0x2, 0x1, 0xfae7, 0x0, 0x1000, 0x1, 0x4, 0x0, 0x2, 0x70, 0x1, 0x7a, 0x7, 0xfffffff9, 0x1, 0x7, 0x8, 0xffffffff, 0x5, 0x2, 0xfffffff8, 0x3, 0x1000, 0x3, 0x2, 0x3ff, 0x2, 0x1, 0x6, 0x7ff, 0x9, 0x80, 0xfff, 0x5, 0xff, 0x45065f3a, 0x9, 0x9, 0x7ff, 0x0, 0x1, 0x1, 0x6, 0x6, 0x14000, 0x7, 0x9, 0x1, 0x3, 0x0, 0xe, 0x81, 0x10, 0x6, 0x1000, 0x4, 0x59100000, 0x100, 0xfff, 0x8000, 0x8, 0x10, 0xbcba, 0xe64, 0x8, 0x1400, 0x401, 0x8, 0x6, 0x2, 0x0, 0x5, 0x81, 0xf, 0x5, 0xd, 0x1, 0x1, 0x4, 0x7, 0x5, 0x42, 0x10, 0x5, 0x1, 0x3, 0x7, 0x4, 0xd3, 0xffffffff, 0x7ff, 0x100, 0x2, 0x5, 0x9519, 0x9, 0x4, 0x80, 0x0, 0x6, 0xf, 0x9, 0x2, 0x9, 0x7fff, 0x9, 0x9, 0x9e, 0x3, 0xa, 0x7, 0x6, 0x5, 0x80000000, 0x8, 0xc, 0x6, 0x1, 0x0, 0x4, 0x7f, 0xeb, 0x2, 0x1, 0x9, 0x9, 0x7, 0x2, 0xd, 0x8, 0x0, 0x6, 0xffffff01, 0x5, 0xffffffff, 0x8, 0x0, 0x347c, 0x5, 0xfffffff6, 0x5, 0x0, 0x645, 0x1, 0x1, 0x80000000, 0x6, 0x3, 0x6, 0x8, 0x8, 0x6, 0x8, 0x6, 0x8, 0x80000001, 0x1000, 0x8, 0x2, 0x9, 0x2, 0x0, 0x3, 0x4, 0x4, 0x4, 0x9b, 0x6, 0x0, 0x68aacd26, 0x7, 0x1, 0x7, 0x10001, 0x7, 0x81, 0x80, 0x5, 0x7, 0x6, 0x2f, 0x898, 0xffffffff, 0x401, 0x2, 0x7fffffff, 0x3, 0x43fe, 0xbb8, 0x0, 0x3, 0xbc, 0x1, 0x80000000, 0x1, 0x4, 0x3, 0x7fff, 0x6, 0x101, 0xffff, 0xe, 0x7, 0x2, 0x4, 0xc, 0x1, 0xc, 0xd77, 0x5, 0x0, 0x4, 0x8, 0x80000001, 0xdfe, 0x4, 0xfffffff8, 0x7fff, 0x9, 0xfff, 0xe0000000, 0x10, 0x90e, 0x21c, 0x100, 0x8, 0x9, 0xffffff68, 0x2, 0x7, 0x401, 0x7ff, 0x4, 0x4, 0x6, 0x4, 0x9, 0x7, 0xff, 0x400, 0x8, 0xc, 0x8a, 0xfff, 0x7, 0xff, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x3, 0x80000001, 0x4, 0x1, {0x3, 0x0, 0x78, 0x8000, 0x7, 0x8}, {0x4, 0x1, 0xfffd, 0x8, 0x4, 0x1}, 0xa6, 0xaa3, 0x8}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5, 0x2, 0x35800000, 0x401, 0xe, 0x4, 0x9, 0x9, 0x57, 0x8, 0xaa, 0x7, 0x4, 0x5, 0x7, 0xffff, 0x8, 0xe366, 0x7, 0xe7ec, 0xa0000000, 0x1, 0x3ba53073, 0x7ff, 0xc000, 0xff, 0x1, 0x800000, 0x5, 0x7, 0x6, 0xfffffff8, 0x3, 0x7ff, 0x8, 0x4, 0x3, 0x8, 0x90, 0xc03d, 0x5, 0x5, 0x2, 0x7, 0xc433, 0xd8, 0xffff0001, 0xffffff74, 0x3, 0xe, 0x200, 0x40, 0xffffff01, 0x16, 0x9, 0x9, 0x0, 0x9, 0xffffcdab, 0x0, 0x4, 0x8, 0xfffffffb, 0x8, 0x7, 0x6, 0x8, 0x3, 0x1, 0x22ff, 0x80000000, 0x101, 0x0, 0x8, 0x3fe, 0x1f7, 0x6, 0x80, 0x5, 0xffff, 0x9, 0x2, 0x6, 0xc, 0x8, 0x8, 0x7, 0x5, 0x7, 0x73, 0xc, 0x3b7a, 0x7fff, 0x0, 0x1, 0xb02, 0x10000, 0xaf, 0xad5, 0x10001, 0x4, 0x8, 0xe3, 0x9, 0x1, 0x6, 0x8, 0x8, 0xfffffeff, 0x7, 0x1, 0x7, 0x152, 0x1, 0x4, 0x7, 0x7, 0x2f, 0x3, 0x2, 0x800, 0xffffff40, 0x7fffffff, 0x9, 0xa6e6, 0x0, 0x0, 0x3, 0x1, 0x6309, 0x6, 0x8001, 0x4046bc2c, 0x8, 0xfffffff6, 0x6, 0x8, 0x6ed4, 0x7, 0x6, 0x80000000, 0x8, 0x1, 0xb, 0x3, 0x1, 0xfffffffa, 0x9, 0x31, 0x23, 0x2, 0x2, 0x5, 0xfffff800, 0xfffffffd, 0x10001, 0x7, 0x4, 0x2, 0x8, 0xffffffff, 0x7fff, 0xff, 0xfffff800, 0x1, 0x3, 0x8000, 0x10001, 0x989, 0x0, 0x4, 0x5, 0x0, 0x9, 0x4, 0xfffffffd, 0xa2, 0x8, 0x8, 0x3, 0x1, 0x7fff, 0xffffffb5, 0x3, 0xa4, 0x1, 0x4, 0x80000000, 0x9, 0xffff, 0x5, 0x7fffffff, 0x8, 0x4, 0x1, 0x0, 0x100, 0x1, 0x4, 0x6000000, 0x6bdc, 0x8, 0x400, 0xd3, 0x7, 0x401, 0xff, 0x1, 0x3, 0x78a6, 0x4, 0x7, 0x640, 0x80, 0x400, 0x5, 0x5, 0x129a5be4, 0x66cd1b99, 0x7, 0x7fffffff, 0xb478, 0x10001, 0x1, 0x7, 0x200, 0x9, 0x0, 0x4, 0x1, 0x101, 0x2, 0x2, 0x6, 0x1, 0x0, 0x1, 0x4, 0x10000, 0xfffffdfa, 0x100000, 0x1, 0x3, 0x9cbd, 0x7ff, 0x0, 0x9, 0x3, 0xf782, 0x0, 0x400000, 0x8, 0x0, 0x9, 0x4, 0x3]}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_csum={0x118, 0x18, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3b1, 0x401, 0x8, 0x81, 0x5}, 0x2b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x5, 0x0, 0x1, 0x1}, 0x73}}]}, {0xb2, 0x6, "dd4e1062ca6013d6ce5ad99f2fc507356100a83c743a1dcaafe6be90f6dc33ad3078766e244e1c14677ed47c67ab2b0c4e99946b5fe6f912fe5df033efc4b8e57fcb876c626ed7c69b1e4339df4a1d5d93fd0039d291d5cba041200b86e07792fb942cdc59dd5c8231ea295f51f8e4eccde5356f7d5b631f420b26b35617d5c5e09fbb5cae84458bbcd5e4c6a2a56a490b473144386dde03502b6fc13f60293e8f123c06473f3c801d55daa6c7ce"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xda8}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x2676, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4, 0x156}, 0x0, 0x0)

2.512508602s ago: executing program 4 (id=1347):
r0 = open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x36)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20040804}, 0x0)
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000340)={0x1, 0xa})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x4, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x3, 0x8000, 0x0, r3, r4, 0xe, 0x59c4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r5, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
r6 = dup2(r5, r1)
fallocate(r6, 0x10, 0x9, 0x3ff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@metacopy_on}]})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x180)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
fchmodat(r7, &(0x7f00000000c0)='./file1\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x20, 0x0)
getdents(r7, &(0x7f0000001080)=""/4096, 0x1000)
capset(0x0, 0x0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000100)={0x1f, @none}, 0x8)

2.378125715s ago: executing program 2 (id=1348):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00"/12], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xefdc6000)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
write(r5, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r6, &(0x7f0000000280), 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0700000004000000080200000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/29], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r4, 0x0, 0x3}, 0x18)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r7, 0x0}, 0x20)
setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r6)

1.930369409s ago: executing program 1 (id=1349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x33)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='block_bio_remap\x00', r1}, 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
syz_emit_ethernet(0x88, &(0x7f00000004c0)={@local, @link_local, @val={@val={0x88a8, 0x1, 0x1, 0x1}, {0x8100, 0x1, 0x0, 0x3}}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "dd690b", 0x4a, 0x2f, 0x0, @ipv4={'\x00', '\xff\xff', @private}, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x86dd}, {0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x800, [0xfff7, 0x8000, 0x6]}}}}}}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.900652862s ago: executing program 1 (id=1350):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x50, 0x0, 0x203, {0x7, 0x29, 0x8000, 0x11, 0xdcf, 0x3, 0xb, 0x0, 0x0, 0x0, 0x2, 0x9b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f00009d1000/0x4000)=nil, 0x4000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x14a, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xc, 0x0, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000580), 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x40850)
mknodat(0xffffffffffffff9c, 0x0, 0x2, 0x3)
getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, 0x0, &(0x7f00000000c0))
bpf$MAP_CREATE(0x300000000000000, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="034000000100e7ffffff000000000000000000000000000000000000cd4221cee85227f35b42e7527eef73cf5782c728086e176c5a6167fd183208482d6196044dc2c788ad608bf671cdc1b4869dde530bb93c97"], 0x48)
connect$inet6(0xffffffffffffffff, &(0x7f0000000a40)={0xa, 0x4e24, 0xf4, @remote, 0x1}, 0x1c)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
select(0x40, &(0x7f0000000180)={0x7, 0x800, 0x80, 0xffffffff, 0xfffffffffffffffb, 0x34, 0x3}, 0x0, &(0x7f0000000700)={0xf, 0x8, 0x40, 0x5, 0x3ff, 0xac, 0xed6b, 0xe21}, 0x0)

1.865350915s ago: executing program 4 (id=1351):
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev}, &(0x7f00000001c0)=0x1c, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@remote, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@local}, 0x0, @in=@private}}, &(0x7f0000000200)=0xe8)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000004c0)={[{@jqfmt_vfsold}, {@orlov}, {@user_xattr}, {@noload}, {@nombcache}, {@dax}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@nodiscard}], [{@fowner_lt={'fowner<', r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, '+'}}, {@dont_measure}, {@flag='nolazytime'}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS77ZZud4H9fJLZfZ6Z2X2e78w8O8/Ms7sBdK2h7CGJ+F9E/B4RA3n29hWG8qeb1y9N/H390kQS1epbfyW19W5cvzRRrlq+bnueqVaL/JY65V5+N2J8ZmbqfJEfmT/7wcjchYsvTJ8dPz11eurc2PHjRw7v6zs2drQlcWZx3djz8eze3SfeufLGxMkr7/2UpJHHHcviaJWhfOvW9XSrC+uwHUvSSW/22F/k9v+yuKTekUAn9UREtrsqtfY/ED2x9daygXjts45WDthU1Wq1usqn8kIVuI8l0ekaAJ1Rnuiz699yalPX465w7eX8AiiL+2Yx5Ut6I80T+yvLrm9baSgiTi7881U2xSbdhwAAWOq7rP/zfL3+XxoP54m+7OH/xRjKYEQ8EBE7I+LBiNgVEQ9F1NZ9JCIeXWf5y0dIVvZ/0qt3HFwTsv7fS8XY1u39v7RcZbCnyO2oxV9JTk3PTB0qtsnBqGw5NZ1Mja5Sxvev/vZFo2VL+3/ZlJVf9gWLelztXXaDbnJ8fnwjMS917dOIPb314k9q4wJRjOvtjog9d1jG9LO9DZetHf8qGr9t06pfRzyT7/+FWBZ/KWk4Pjn64rGxoyP9MTN1aKQ8Klb6+dfLbzYqf0Pxt0C2/7fVPf5vxT+Y9EfMXbh4pjZeO7f+Mi7/8XnDa5p1Hv8ndhTHf1/ydm1GX7Hgo/H5+fOjEX3J6yvnjy2+W5kv18/iP3igfvvfGYtb4rGI2BsR+yLi8eyisKj7ExHxZEQcWCX+H1956v31x9+esdIs/sm19n8s3f/rT/Sc+eHbtePvj4hG+/9ILXWwmNPM51+zFdzItgMAAIB7Rf4d+CQdXkwnw8P5d/h3xbZ0ZnZu/rlTsx+em8y/Kz8YlbS80zWw5H7oaHFvuMyPLcsfLu4bf9mztZYfnpidmex08NDltq9o/2matf/Mnz2drh2w6Vowjgbco7R/6F7aP3SnZM32X2lbXYD2c/6H7lWv/X/ScO3hbza1MkBbOf9D92qi/S/kT417BcC9yfkfupf2D12p4W/j0w395L/tiX+L/zO8W+pz/ycivSuqcf8nepv+M4tGicrKtlwdyNt/NmdL3Vd1+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4LAAD///R05PQ=")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0xc0, &(0x7f0000000140)=0x8001, 0x0, 0x4)
creat(&(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
mknod$loop(&(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x400, 0x1)

1.708787481s ago: executing program 4 (id=1352):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000080)={0x11, 0x800, r4, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
syz_emit_ethernet(0x3a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaa3500000000000008004500006f9800000000119078640101020400000000004e22001890780400"/58], 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000a00)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x2f, 0x0, 0xa, 0xcbf, 0x4, @remote, @empty, 0x10, 0x8, 0x40, 0xd66}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000040)={'ip6tnl0\x00', 0x0, 0x2f, 0x5, 0x2, 0x4038a09, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x0, 0x40, 0xb5}})
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @rand_addr=0x64010103}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1010000, &(0x7f0000000fc0)=ANY=[@ANYBLOB="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"], 0x1, 0x36e, &(0x7f0000000240)="$eJzs3U1oY1UbAOA3vWnSDnxfuxMFIboTpExnpxs7SAcGu1EJ/izE4HRUmiq0WOgsJq0LXQsudeVOQRcuxKUIirhz4dYRZFTcOLsBB48kNze5TW47RWml+DwwyZlzznvOe3+apJeb0xdXYuPKbFy9detmzM3Vor7y+ErcrsViZFHYi2mNijoA4Gy4nVL8nnKTbXPVIbVTSAsAOEGD9/+XI6IVi3nNm18d1T959weAM2/4+//8UX0OuQ4Q8fqJpAQAnLCp6/8PHmhuDP7Vi//WS3cFAABn1dPPPf/ExbWIp1qtuYjNt3faO+14dNx+8Wq8Gt1Yj/OxEHci8g8K/Yfa4PHS5bXV861Wqxc/L0Y7ImaGge0sv1MgG8Q3YzkWYnEYP/y0kVLKLn26trrcGoiIvd5g/tis7bRn49xw/h/Oxfr4g0cxyOAp4vLa6oXWcID2ZhHfi9gf36jQz38pFuK7l0bDpFTcwbi2en25SHocv9NuxpXRXjj0CggAAAAAAAAAAAAAAAAAAAAAAPwtS62RxdH6Oan/nK+Us7RU0T5YHyePH64PtJ+vD5SaKdJ+MXZ5faDJ9Xl2LCQIAAAAAAAAAAAAAAAAAAAAI9u7jeh0u+tb27vXNsqF3tb27kxE9Gte++bjL+ejaGoOQ6uiDhTqeb9+/6KpNYy9ttFJWdE5ZRHT4Vl5ig8/G2Vc7tMcbUVlGs3Dm7rd/z3w03vjmvuzYuQ/x32yqN7ArJTGYxMjb/4/T+nw3XJE4UK5pjk9+42UUqnmrXL49RemB4xaRD0q5pqv2OHlwkwcnmrqF76++cq9xd7vfJFyDz288MyNdz/4daPT7c+cnySNre07aaNTKzofY28Mh0uDQzA+N2qRF2rlM6E+FV6q2T/Y1Mm+/+3Z+9759ngHJZVr3uifzxN9snxzPpkMb+SFfpoTTfPj8Nnip2h99i7HoqpQdUzvUrjn/c8/SunHX449xdjM1MtG7Z+/8gAAAAAAAAAAAAAAAAAAAJNK3xUffum6lzfMHhX1yJOnlB4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnIrx3/8vFfb3YqLmOIU/ehVRzfWt7YjGv72ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8x/0VAAD//3XiXqU=")
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000240)={0x24, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r6 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000003c0), 0x80000)
getsockopt$inet_buf(r6, 0x0, 0x11, &(0x7f0000000400)=""/230, &(0x7f0000000500)=0xe6)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

1.634336619s ago: executing program 3 (id=1353):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
readahead(0xffffffffffffffff, 0x6, 0xcc42)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x9, 0x7ff, 0x65bf, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380), &(0x7f0000000400), 0x840, r5}, 0x38)

1.019714789s ago: executing program 2 (id=1354):
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000200)='/sys/kernel/notes', 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x10)
preadv(r0, &(0x7f0000000180)=[{0x0}, {0x0}], 0x2, 0x0, 0x0)
socket$inet6(0x10, 0x800, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@nombcache}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
syz_genetlink_get_family_id$smc(&(0x7f0000000640), r0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x6000000, 0x0)

1.003959681s ago: executing program 1 (id=1355):
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00'}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r5=>r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES64=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b70400000000040085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp=0x25, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$inet(r1, &(0x7f0000000480)={0x2, 0xffff, @multicast2}, 0x10)

971.465994ms ago: executing program 0 (id=1356):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x240, 0x0)
mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xefdc6000)
write(0xffffffffffffffff, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r5, &(0x7f0000000280), 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r4, 0x0, 0x3}, 0x18)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r5)

954.285036ms ago: executing program 2 (id=1357):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000340)={'pimreg1\x00', 0x1})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = gettid()
r3 = memfd_create(0x0, 0x3)
fcntl$addseals(r3, 0x409, 0x8)
writev(r3, &(0x7f0000000040)=[{0x0}], 0x1)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x15)
dup(0xffffffffffffffff)
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, 0x0, &(0x7f0000000280)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
userfaultfd(0x80001)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r0, &(0x7f0000000040)=""/170, 0xaa)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001000010025bd7000f9dbdf2500000004", @ANYRES32=0x0, @ANYBLOB="158804000300000008001b000000000008000d"], 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x4040000)

651.006315ms ago: executing program 3 (id=1358):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000340)={'pimreg1\x00', 0x1})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = gettid()
r3 = memfd_create(0x0, 0x3)
fcntl$addseals(r3, 0x409, 0x8)
writev(r3, &(0x7f0000000040)=[{0x0}], 0x1)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x15)
dup(0xffffffffffffffff)
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5}, 0x0, &(0x7f0000000280)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
userfaultfd(0x80001)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(r0, &(0x7f0000000040)=""/170, 0xaa)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001000010025bd7000f9dbdf2500000004", @ANYRES32=0x0, @ANYBLOB="158804000300000008001b000000000008000d"], 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x4040000)

54.617064ms ago: executing program 1 (id=1359):
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3976488, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x141840, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00"/12], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
mount$incfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0xefdc6000)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
write(r5, &(0x7f00000004c0)="816a48692af5adf5", 0x8)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r6, &(0x7f0000000280), 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0700000004000000080200000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/29], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='ext4_remove_blocks\x00', r4, 0x0, 0x3}, 0x18)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r7, 0x0}, 0x20)
setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f0000000400)=[{{0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x2, 0x0, 0x1, 0x1}}, {{0x1, 0x1}, {0x3, 0x1, 0x1, 0x1}}, {{0x4, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x2, 0x1, 0x1, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x3}}, {{0x2, 0x1, 0x1}, {0x2}}], 0x40)
close(r6)

25.924827ms ago: executing program 0 (id=1360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMSET(r3, 0x5418, &(0x7f0000000140)=0xffffbdfb)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x48051}, 0x20008040)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001180)={0x38, r6, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x38}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)

0s ago: executing program 2 (id=1361):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r9, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r10, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r11 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r11, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
close_range(r8, r10, 0x0) (fail_nth: 1)

kernel console output (not intermixed with test programs):

t: 32
[  277.303015][  T335] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  277.344796][  T738] usb 2-1: config 0 descriptor??
[  277.357058][  T335] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  277.368490][  T738] hub 2-1:0.0: USB hub found
[  277.387507][  T335] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  277.415003][  T335] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.437954][  T335] usb 5-1: config 0 descriptor??
[  277.453600][  T335] hub 5-1:0.0: USB hub found
[  277.538189][ T3558] binder: 3557:3558 ioctl 4018620d 0 returned -22
[  277.548373][ T3558] netlink: 24 bytes leftover after parsing attributes in process `syz.3.889'.
[  278.577017][  T738] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  278.585096][  T335] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  278.602788][  T738] usbhid 2-1:0.0: can't add hid device: -71
[  278.609100][  T738] usbhid: probe of 2-1:0.0 failed with error -71
[  278.615690][  T335] usbhid 5-1:0.0: can't add hid device: -71
[  278.622017][  T335] usbhid: probe of 5-1:0.0 failed with error -71
[  278.678486][  T738] usb 2-1: USB disconnect, device number 7
[  278.730534][  T335] usb 5-1: USB disconnect, device number 13
[  281.338944][ T3601] binder: 3600:3601 ioctl 4018620d 0 returned -22
[  281.351958][ T3602] tipc: Started in network mode
[  281.358235][ T3602] tipc: Node identity , cluster identity 4711
[  281.364485][ T3602] tipc: Failed to set node id, please configure manually
[  281.372169][ T3602] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  281.381834][ T3601] netlink: 24 bytes leftover after parsing attributes in process `syz.4.901'.
[  281.426531][  T315] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  281.666655][  T315] usb 1-1: Using ep0 maxpacket: 32
[  281.677041][  T315] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  282.066822][ T3609] syz.3.903[3609] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.066908][ T3609] syz.3.903[3609] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  283.042681][  T315] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  283.084390][  T315] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  283.111005][  T315] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.216660][  T315] usb 1-1: config 0 descriptor??
[  283.237729][  T315] hub 1-1:0.0: USB hub found
[  283.342843][ T3614] loop4: detected capacity change from 0 to 512
[  283.390601][ T3614] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  283.450031][ T3614] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  283.546109][ T3614] System zones: 1-12
[  283.642448][ T3614] EXT4-fs (loop4): orphan cleanup on readonly fs
[  283.828913][ T3614] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.906: bg 0: block 361: padding at end of block bitmap is not set
[  283.910335][ T3614] EXT4-fs (loop4): Remounting filesystem read-only
[  283.945070][ T3614] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  283.993060][ T3614] EXT4-fs (loop4): Remounting filesystem read-only
[  284.020161][ T3614] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.906: invalid indirect mapped block 12 (level 1)
[  284.086883][ T3614] EXT4-fs (loop4): Remounting filesystem read-only
[  284.117982][ T3614] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.906: invalid indirect mapped block 2 (level 2)
[  284.131647][ T1897] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  284.182321][ T3614] EXT4-fs (loop4): Remounting filesystem read-only
[  284.205539][ T3614] EXT4-fs (loop4): 1 truncate cleaned up
[  284.227319][ T3614] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  284.247062][ T3614] EXT4-fs (loop4): unmounting filesystem.
[  284.262873][  T315] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  284.277449][  T315] usbhid 1-1:0.0: can't add hid device: -71
[  284.307048][  T315] usbhid: probe of 1-1:0.0 failed with error -71
[  284.307446][ T3614] loop4: detected capacity change from 0 to 512
[  284.320322][ T3614] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  284.327102][ T1897] usb 3-1: Using ep0 maxpacket: 32
[  284.329379][ T3614] EXT4-fs (loop4): invalid journal inode
[  284.343050][ T1897] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  284.356737][ T3614] EXT4-fs (loop4): can't get journal size
[  284.359424][ T1897] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  284.374085][  T315] usb 1-1: USB disconnect, device number 10
[  284.387230][ T3614] EXT4-fs (loop4): 1 truncate cleaned up
[  284.390490][ T1897] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  284.393446][ T3614] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  284.412304][ T1897] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.421257][ T3614] EXT4-fs (loop4): unmounting filesystem.
[  284.422398][ T1897] usb 3-1: config 0 descriptor??
[  284.437961][ T1897] hub 3-1:0.0: USB hub found
[  284.667198][ T3633] netlink: 96 bytes leftover after parsing attributes in process `syz.1.910'.
[  284.749119][ T1897] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  284.761018][ T1897] usbhid 3-1:0.0: can't add hid device: -71
[  284.767049][ T1897] usbhid: probe of 3-1:0.0 failed with error -71
[  284.843116][ T1897] usb 3-1: USB disconnect, device number 10
[  285.949214][ T3644] loop4: detected capacity change from 0 to 256
[  285.976686][  T315] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  286.028266][ T3644] FAT-fs (loop4): Unrecognized mount option "shortname=l" or missing value
[  286.166687][  T315] usb 2-1: Using ep0 maxpacket: 32
[  286.284590][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  286.336574][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  286.366582][  T315] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  286.396056][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.415712][ T3649] binder: 3648:3649 ioctl 4018620d 0 returned -22
[  286.426696][  T315] usb 2-1: config 0 descriptor??
[  286.446696][  T315] hub 2-1:0.0: USB hub found
[  286.621182][ T3651] netlink: 76 bytes leftover after parsing attributes in process `syz.3.914'.
[  286.696549][  T525] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  286.797626][ T3654] overlayfs: './file0' not a directory
[  286.882797][  T315] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  286.899977][  T315] usbhid 2-1:0.0: can't add hid device: -71
[  286.909403][  T315] usbhid: probe of 2-1:0.0 failed with error -71
[  286.916548][  T525] usb 5-1: Using ep0 maxpacket: 32
[  286.922953][  T525] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  286.942794][  T525] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  286.952957][  T525] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  286.966916][  T315] usb 2-1: USB disconnect, device number 8
[  286.976731][  T525] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.008801][ T3656] xt_hashlimit: size too large, truncated to 1048576
[  287.010477][  T525] usb 5-1: config 0 descriptor??
[  287.024885][  T525] hub 5-1:0.0: USB hub found
[  287.530231][  T525] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  287.547197][  T525] usbhid 5-1:0.0: can't add hid device: -71
[  287.554070][ T3665] xt_hashlimit: size too large, truncated to 1048576
[  287.561091][  T525] usbhid: probe of 5-1:0.0 failed with error -71
[  287.606984][  T525] usb 5-1: USB disconnect, device number 14
[  287.773391][ T3670] netlink: 96 bytes leftover after parsing attributes in process `syz.2.923'.
[  287.851009][  T315] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  289.207741][ T3686] binder: 3685:3686 ioctl 4018620d 0 returned -22
[  289.306708][  T315] usb 2-1: Using ep0 maxpacket: 32
[  289.317275][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.328313][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.338134][  T315] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  289.347702][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.361415][  T315] usb 2-1: config 0 descriptor??
[  289.453171][ T3690] tipc: Started in network mode
[  289.458155][ T3690] tipc: Node identity , cluster identity 4711
[  289.464356][ T3690] tipc: Failed to set node id, please configure manually
[  289.471555][ T3690] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  289.700528][  T315] hub 2-1:0.0: USB hub found
[  290.068218][ T3694] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  290.100227][ T3694] FAT-fs (loop1): unable to read boot sector
[  290.123477][ T3694] loop0: detected capacity change from 0 to 512
[  290.158674][ T3694] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  290.176994][ T3694] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  290.185161][ T3694] System zones: 1-12
[  290.189961][ T3694] EXT4-fs (loop0): orphan cleanup on readonly fs
[  290.197386][ T3694] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.930: bg 0: block 361: padding at end of block bitmap is not set
[  290.212395][ T3694] EXT4-fs (loop0): Remounting filesystem read-only
[  290.219227][ T3694] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  290.228574][ T3694] EXT4-fs (loop0): Remounting filesystem read-only
[  290.235170][ T3694] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.930: invalid indirect mapped block 12 (level 1)
[  290.249138][ T3694] EXT4-fs (loop0): Remounting filesystem read-only
[  290.255850][ T3694] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.930: invalid indirect mapped block 2 (level 2)
[  290.269689][ T3694] EXT4-fs (loop0): Remounting filesystem read-only
[  290.276417][ T3694] EXT4-fs (loop0): 1 truncate cleaned up
[  290.282577][ T3694] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  290.291881][ T3694] EXT4-fs (loop0): unmounting filesystem.
[  290.915772][ T3694] loop0: detected capacity change from 0 to 512
[  291.391807][  T315] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  291.421536][  T315] usbhid 2-1:0.0: can't add hid device: -71
[  291.491697][ T3694] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  291.616187][ T3694] EXT4-fs (loop0): invalid journal inode
[  291.686286][  T315] usbhid: probe of 2-1:0.0 failed with error -71
[  291.807418][ T3694] EXT4-fs (loop0): can't get journal size
[  291.883110][  T315] usb 2-1: USB disconnect, device number 9
[  292.046729][ T3694] EXT4-fs (loop0): 1 truncate cleaned up
[  292.172297][ T3694] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  292.200858][ T3694] EXT4-fs (loop0): unmounting filesystem.
[  293.192875][ T3724] tipc: Started in network mode
[  293.197902][ T3724] tipc: Node identity , cluster identity 4711
[  293.203994][ T3724] tipc: Failed to set node id, please configure manually
[  293.211104][ T3724] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  294.070832][ T3727] tipc: Started in network mode
[  294.076056][ T3727] tipc: Node identity , cluster identity 4711
[  294.082250][ T3727] tipc: Failed to set node id, please configure manually
[  294.089398][ T3727] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  294.855770][ T3738] xt_hashlimit: size too large, truncated to 1048576
[  294.967094][ T3737] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  294.976292][ T3737] FAT-fs (loop3): unable to read boot sector
[  294.989046][ T3737] loop1: detected capacity change from 0 to 512
[  295.759716][ T3737] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  296.056634][ T3737] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  296.064801][ T3737] System zones: 1-12
[  296.069581][ T3737] EXT4-fs (loop1): orphan cleanup on readonly fs
[  296.076401][ T3737] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.944: bg 0: block 361: padding at end of block bitmap is not set
[  296.091197][ T3737] EXT4-fs (loop1): Remounting filesystem read-only
[  296.097887][ T3737] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  296.116624][ T3737] EXT4-fs (loop1): Remounting filesystem read-only
[  296.126623][ T3737] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.944: invalid indirect mapped block 12 (level 1)
[  296.167130][ T3737] EXT4-fs (loop1): Remounting filesystem read-only
[  296.246551][ T3737] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.944: invalid indirect mapped block 2 (level 2)
[  296.272595][ T3737] EXT4-fs (loop1): Remounting filesystem read-only
[  296.279761][ T3737] EXT4-fs (loop1): 1 truncate cleaned up
[  296.285510][ T3737] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  296.294839][ T3737] EXT4-fs (loop1): unmounting filesystem.
[  296.427797][ T3761] loop1: detected capacity change from 0 to 512
[  296.433728][  T475] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  296.442671][ T3761] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  296.452119][ T3761] EXT4-fs (loop1): invalid journal inode
[  296.458054][ T3761] EXT4-fs (loop1): can't get journal size
[  296.465768][ T3761] EXT4-fs (loop1): 1 truncate cleaned up
[  296.471785][ T3761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  296.481464][ T3761] EXT4-fs (loop1): unmounting filesystem.
[  296.756551][  T475] usb 4-1: Using ep0 maxpacket: 32
[  296.764626][  T475] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.899642][  T475] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.910616][  T475] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  296.938347][  T475] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.127037][  T475] usb 4-1: config 0 descriptor??
[  297.308828][  T475] hub 4-1:0.0: USB hub found
[  297.339963][ T3777] netlink: 24 bytes leftover after parsing attributes in process `syz.4.955'.
[  298.302438][ T3778] tipc: Started in network mode
[  298.307454][ T3778] tipc: Node identity , cluster identity 4711
[  298.313563][ T3778] tipc: Failed to set node id, please configure manually
[  298.320644][ T3778] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  298.888485][  T475] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  298.901097][  T475] usbhid 4-1:0.0: can't add hid device: -71
[  298.914457][  T475] usbhid: probe of 4-1:0.0 failed with error -71
[  300.007064][  T475] usb 4-1: USB disconnect, device number 8
[  300.455540][ T3807] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  300.464972][ T3807] FAT-fs (loop9): unable to read boot sector
[  300.476156][ T3807] loop4: detected capacity change from 0 to 512
[  300.561845][ T3808] tipc: Started in network mode
[  300.566810][ T3808] tipc: Node identity , cluster identity 4711
[  300.572968][ T3808] tipc: Failed to set node id, please configure manually
[  300.580174][ T3808] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  300.813331][ T3807] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  300.864269][ T3810] xt_hashlimit: size too large, truncated to 1048576
[  300.873394][ T3807] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  300.889752][ T3807] System zones: 1-12
[  300.901523][ T3807] EXT4-fs (loop4): orphan cleanup on readonly fs
[  300.931694][ T3807] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.961: bg 0: block 361: padding at end of block bitmap is not set
[  300.976429][ T3807] EXT4-fs (loop4): Remounting filesystem read-only
[  301.006273][ T3807] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  301.035417][ T3807] EXT4-fs (loop4): Remounting filesystem read-only
[  301.042191][ T3807] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.961: invalid indirect mapped block 12 (level 1)
[  301.056062][ T3807] EXT4-fs (loop4): Remounting filesystem read-only
[  301.063208][ T3807] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.961: invalid indirect mapped block 2 (level 2)
[  301.076930][ T3807] EXT4-fs (loop4): Remounting filesystem read-only
[  301.083781][ T3807] EXT4-fs (loop4): 1 truncate cleaned up
[  301.089636][ T3807] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  301.098708][ T3807] EXT4-fs (loop4): unmounting filesystem.
[  301.826095][ T3807] loop4: detected capacity change from 0 to 512
[  301.871705][ T3807] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  301.896681][ T3807] EXT4-fs (loop4): invalid journal inode
[  301.961332][ T3807] EXT4-fs (loop4): can't get journal size
[  302.057403][ T3807] EXT4-fs (loop4): 1 truncate cleaned up
[  302.064201][ T3807] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  302.076969][ T3807] EXT4-fs (loop4): unmounting filesystem.
[  303.423864][ T3840] tipc: Started in network mode
[  303.428934][ T3840] tipc: Node identity , cluster identity 4711
[  303.435082][ T3840] tipc: Failed to set node id, please configure manually
[  303.442254][ T3840] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  304.147024][ T3855] overlayfs: './file0' not a directory
[  304.276537][  T427] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  304.446545][  T315] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  304.476555][  T427] usb 1-1: Using ep0 maxpacket: 32
[  304.484644][  T427] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  304.521277][  T427] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  304.556557][  T427] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  304.573732][  T427] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.590423][  T427] usb 1-1: config 0 descriptor??
[  304.603119][  T427] hub 1-1:0.0: USB hub found
[  304.659364][  T315] usb 5-1: Using ep0 maxpacket: 32
[  304.668100][  T315] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  304.759665][  T315] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  304.914393][  T315] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  305.039974][  T315] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.091143][  T315] usb 5-1: config 0 descriptor??
[  305.126638][  T315] hub 5-1:0.0: USB hub found
[  305.441395][  T427] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  305.461211][  T427] usbhid 1-1:0.0: can't add hid device: -71
[  305.477512][  T427] usbhid: probe of 1-1:0.0 failed with error -71
[  305.537004][  T427] usb 1-1: USB disconnect, device number 11
[  305.580908][  T315] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  305.594925][  T315] usbhid 5-1:0.0: can't add hid device: -71
[  305.606816][  T315] usbhid: probe of 5-1:0.0 failed with error -71
[  305.623170][ T3873] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  305.632544][ T3873] FAT-fs (loop3): unable to read boot sector
[  305.644550][ T3873] loop1: detected capacity change from 0 to 512
[  305.653206][  T315] usb 5-1: USB disconnect, device number 15
[  305.676182][ T3873] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  305.696903][ T3873] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  305.704990][ T3873] System zones: 1-12
[  305.717065][ T3873] EXT4-fs (loop1): orphan cleanup on readonly fs
[  305.736271][ T3873] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.977: bg 0: block 361: padding at end of block bitmap is not set
[  305.760579][ T3873] EXT4-fs (loop1): Remounting filesystem read-only
[  305.776687][ T3873] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  305.792734][ T3873] EXT4-fs (loop1): Remounting filesystem read-only
[  305.804969][ T3873] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.977: invalid indirect mapped block 12 (level 1)
[  305.831916][ T3873] EXT4-fs (loop1): Remounting filesystem read-only
[  305.866907][ T3873] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.977: invalid indirect mapped block 2 (level 2)
[  305.942788][ T3873] EXT4-fs (loop1): Remounting filesystem read-only
[  305.958144][ T3873] EXT4-fs (loop1): 1 truncate cleaned up
[  305.964013][ T3873] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  305.973342][ T3873] EXT4-fs (loop1): unmounting filesystem.
[  306.352932][ T3883] netlink: 24 bytes leftover after parsing attributes in process `syz.3.980'.
[  306.360619][ T3873] loop1: detected capacity change from 0 to 512
[  306.375171][ T3873] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  306.386759][ T3873] EXT4-fs (loop1): invalid journal inode
[  306.397131][ T3873] EXT4-fs (loop1): can't get journal size
[  306.405133][ T3873] EXT4-fs (loop1): 1 truncate cleaned up
[  306.412253][ T3873] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  306.422272][ T3873] EXT4-fs (loop1): unmounting filesystem.
[  306.814583][ T3897] netlink: 76 bytes leftover after parsing attributes in process `syz.0.979'.
[  307.403994][ T3907] tipc: Started in network mode
[  307.409101][ T3907] tipc: Node identity , cluster identity 4711
[  307.415348][ T3907] tipc: Failed to set node id, please configure manually
[  307.422527][ T3907] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  308.593191][ T3911] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  308.604631][ T3913] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  308.638797][ T3911] FAT-fs (loop7): unable to read boot sector
[  308.647022][ T3913] FAT-fs (loop3): unable to read boot sector
[  308.691409][ T3913] loop1: detected capacity change from 0 to 512
[  308.739279][ T3913] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  308.916692][ T3913] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  308.924843][ T3913] System zones: 1-12
[  308.933832][ T3913] EXT4-fs (loop1): orphan cleanup on readonly fs
[  308.953937][ T3913] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.985: bg 0: block 361: padding at end of block bitmap is not set
[  309.198967][ T3913] EXT4-fs (loop1): Remounting filesystem read-only
[  309.205774][ T3913] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  309.218168][ T3913] EXT4-fs (loop1): Remounting filesystem read-only
[  309.220884][ T3911] loop3: detected capacity change from 0 to 512
[  309.231477][ T3913] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.985: invalid indirect mapped block 12 (level 1)
[  309.259000][ T3911] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  309.266844][ T3913] EXT4-fs (loop1): Remounting filesystem read-only
[  309.270055][ T3911] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  309.275350][ T3913] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.985: invalid indirect mapped block 2 (level 2)
[  309.284061][ T3911] System zones: 1-12
[  309.297470][ T3913] EXT4-fs (loop1): Remounting filesystem read-only
[  309.302184][ T3911] EXT4-fs (loop3): orphan cleanup on readonly fs
[  309.308604][ T3913] EXT4-fs (loop1): 1 truncate cleaned up
[  309.320574][ T3913] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  309.320758][ T3911] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.988: bg 0: block 361: padding at end of block bitmap is not set
[  309.331888][ T3913] EXT4-fs (loop1): unmounting filesystem.
[  309.344172][ T3911] EXT4-fs (loop3): Remounting filesystem read-only
[  309.356337][ T3911] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  309.365588][ T3911] EXT4-fs (loop3): Remounting filesystem read-only
[  309.372231][ T3911] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.988: invalid indirect mapped block 12 (level 1)
[  309.385944][ T3911] EXT4-fs (loop3): Remounting filesystem read-only
[  309.392667][ T3911] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.988: invalid indirect mapped block 2 (level 2)
[  309.412236][ T3911] EXT4-fs (loop3): Remounting filesystem read-only
[  309.419174][ T3911] EXT4-fs (loop3): 1 truncate cleaned up
[  309.424921][ T3911] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  309.434124][ T3911] EXT4-fs (loop3): unmounting filesystem.
[  309.438329][ T3913] loop1: detected capacity change from 0 to 512
[  309.447123][ T3913] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  309.455573][ T3913] EXT4-fs (loop1): invalid journal inode
[  309.461704][ T3913] EXT4-fs (loop1): can't get journal size
[  309.479044][ T3913] EXT4-fs (loop1): 1 truncate cleaned up
[  309.486559][ T3913] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  309.496189][ T3913] EXT4-fs (loop1): unmounting filesystem.
[  309.498996][ T3911] loop3: detected capacity change from 0 to 512
[  309.509006][ T3911] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  309.518227][ T3911] EXT4-fs (loop3): invalid journal inode
[  309.523992][ T3911] EXT4-fs (loop3): can't get journal size
[  309.531942][ T3911] EXT4-fs (loop3): 1 truncate cleaned up
[  309.538702][ T3911] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  309.554598][ T3911] EXT4-fs (loop3): unmounting filesystem.
[  310.031487][  T335] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  310.626590][  T335] usb 3-1: Using ep0 maxpacket: 32
[  310.633406][ T3956] loop4: detected capacity change from 0 to 256
[  310.633454][  T335] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.643950][ T3956] FAT-fs (loop4): Unrecognized mount option "shortname=l" or missing value
[  310.650982][  T335] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.669863][  T335] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  310.679111][  T335] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.688044][  T335] usb 3-1: config 0 descriptor??
[  310.694014][  T335] hub 3-1:0.0: USB hub found
[  310.938605][  T475] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  311.316740][  T475] usb 5-1: Using ep0 maxpacket: 32
[  311.324558][  T475] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.415808][  T475] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  311.497571][  T475] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  311.525218][  T475] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.561329][   T28] audit: type=1400 audit(1760441864.433:206): avc:  denied  { ioctl } for  pid=3971 comm="syz.3.1000" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=27074 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  311.597480][  T475] usb 5-1: config 0 descriptor??
[  311.618336][  T475] hub 5-1:0.0: USB hub found
[  312.019186][  T335] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  312.037536][  T335] usbhid 3-1:0.0: can't add hid device: -71
[  312.043619][  T335] usbhid: probe of 3-1:0.0 failed with error -71
[  312.114767][  T475] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  312.117091][  T335] usb 3-1: USB disconnect, device number 11
[  312.125536][  T475] usbhid 5-1:0.0: can't add hid device: -71
[  312.134760][  T475] usbhid: probe of 5-1:0.0 failed with error -71
[  312.166943][  T475] usb 5-1: USB disconnect, device number 16
[  312.690397][ T3986] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  312.701854][ T3986] FAT-fs (loop7): unable to read boot sector
[  312.719712][ T3986] loop3: detected capacity change from 0 to 512
[  312.740401][ T3986] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  312.758461][ T3986] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  312.767162][ T3986] System zones: 1-12
[  312.771724][ T3986] EXT4-fs (loop3): orphan cleanup on readonly fs
[  312.795781][ T3986] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1005: bg 0: block 361: padding at end of block bitmap is not set
[  312.810697][ T3986] EXT4-fs (loop3): Remounting filesystem read-only
[  312.819649][ T3986] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  312.833281][ T3986] EXT4-fs (loop3): Remounting filesystem read-only
[  312.842014][ T3986] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1005: invalid indirect mapped block 12 (level 1)
[  312.856095][ T3986] EXT4-fs (loop3): Remounting filesystem read-only
[  312.862719][ T3986] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1005: invalid indirect mapped block 2 (level 2)
[  312.876240][ T3986] EXT4-fs (loop3): Remounting filesystem read-only
[  312.883319][ T3986] EXT4-fs (loop3): 1 truncate cleaned up
[  312.889229][ T3986] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  312.909312][ T3986] EXT4-fs (loop3): unmounting filesystem.
[  313.064648][ T3986] loop3: detected capacity change from 0 to 512
[  313.118271][ T3986] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  313.130472][ T3986] EXT4-fs (loop3): invalid journal inode
[  313.136369][ T3986] EXT4-fs (loop3): can't get journal size
[  313.143839][ T3986] EXT4-fs (loop3): 1 truncate cleaned up
[  313.149810][ T3986] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  313.159374][ T3986] EXT4-fs (loop3): unmounting filesystem.
[  313.542201][  T475] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  313.780305][ T4009] xt_hashlimit: size too large, truncated to 1048576
[  313.925159][  T475] usb 2-1: device descriptor read/64, error -71
[  314.416518][  T475] usb 2-1: device descriptor read/64, error -71
[  314.576520][  T315] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  314.706551][  T475] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  315.397005][  T315] usb 3-1: Using ep0 maxpacket: 32
[  315.403358][  T315] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  315.426586][  T315] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  315.436762][  T315] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  315.445919][  T315] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.459665][  T315] usb 3-1: config 0 descriptor??
[  315.466505][  T475] usb 2-1: device descriptor read/64, error -71
[  315.473396][  T315] hub 3-1:0.0: USB hub found
[  315.746574][  T475] usb 2-1: device descriptor read/64, error -71
[  315.817934][ T4035] tipc: Started in network mode
[  315.822902][ T4035] tipc: Node identity , cluster identity 4711
[  315.829311][ T4035] tipc: Failed to set node id, please configure manually
[  315.836541][ T4035] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  315.897085][  T475] usb usb2-port1: attempt power cycle
[  316.018942][  T315] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  316.033514][  T315] usbhid 3-1:0.0: can't add hid device: -71
[  316.039922][  T315] usbhid: probe of 3-1:0.0 failed with error -71
[  316.208102][  T315] usb 3-1: USB disconnect, device number 12
[  317.596023][ T4053] tipc: Started in network mode
[  317.601415][ T4053] tipc: Node identity , cluster identity 4711
[  317.607583][ T4053] tipc: Failed to set node id, please configure manually
[  317.614696][ T4053] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  318.900926][   T28] audit: type=1400 audit(1760441871.773:207): avc:  denied  { append } for  pid=4059 comm="syz.0.1024" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  318.924825][ T4062] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  319.049432][ T4062] FAT-fs (loop7): unable to read boot sector
[  319.989600][ T4068] tipc: Started in network mode
[  319.994500][ T4068] tipc: Node identity , cluster identity 4711
[  320.000880][ T4068] tipc: Failed to set node id, please configure manually
[  320.007952][ T4068] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  320.189950][ T4066] loop3: detected capacity change from 0 to 512
[  320.236251][ T4066] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  320.279050][ T4066] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  320.287525][ T4066] System zones: 1-12
[  320.292103][ T4066] EXT4-fs (loop3): orphan cleanup on readonly fs
[  320.299335][ T4066] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1025: bg 0: block 361: padding at end of block bitmap is not set
[  320.321260][ T4066] EXT4-fs (loop3): Remounting filesystem read-only
[  320.366206][ T4066] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  320.375523][ T4066] EXT4-fs (loop3): Remounting filesystem read-only
[  320.382280][ T4066] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1025: invalid indirect mapped block 12 (level 1)
[  320.396073][ T4066] EXT4-fs (loop3): Remounting filesystem read-only
[  320.403265][ T4066] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1025: invalid indirect mapped block 2 (level 2)
[  320.420860][ T4086] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  320.428349][ T4066] EXT4-fs (loop3): Remounting filesystem read-only
[  320.435190][ T4066] EXT4-fs (loop3): 1 truncate cleaned up
[  320.441631][ T4066] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  320.451259][ T4066] EXT4-fs (loop3): unmounting filesystem.
[  320.472391][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  320.480889][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  320.489337][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  320.499731][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  320.508378][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  320.518220][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  320.526751][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  320.532885][ T4062] loop3: detected capacity change from 0 to 512
[  320.535311][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  320.551149][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  320.557815][ T4062] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  320.559173][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  320.574953][ T4062] EXT4-fs (loop3): invalid journal inode
[  320.582092][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[  320.583100][ T4062] EXT4-fs (loop3): can't get journal size
[  320.590643][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[  320.603588][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[  320.612083][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[  320.620065][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[  320.620130][ T4062] EXT4-fs (loop3): 1 truncate cleaned up
[  320.628082][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[  320.636528][ T4062] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  320.650525][ T4062] EXT4-fs (loop3): unmounting filesystem.
[  320.652601][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[  320.665909][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[  320.674896][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[  320.683115][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[  320.691817][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[  320.700263][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[  320.729031][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth17: link becomes ready
[  320.760080][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth16: link becomes ready
[  321.036608][  T475] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  321.232388][ T4086] syz.0.1031 (4086) used greatest stack depth: 20768 bytes left
[  321.256645][  T475] usb 5-1: Using ep0 maxpacket: 16
[  321.264773][  T475] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  321.314644][  T475] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  321.456779][  T475] usb 5-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  321.596149][  T475] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.727322][  T475] usb 5-1: config 0 descriptor??
[  321.893038][ T4109] device syzkaller0 entered promiscuous mode
[  321.894106][   T28] audit: type=1400 audit(1760441874.763:208): avc:  denied  { ioctl } for  pid=4108 comm="syz.1.1037" path="socket:[26156]" dev="sockfs" ino=26156 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  322.174698][ T4106] syz.2.1035 (4106) used greatest stack depth: 20688 bytes left
[  322.217948][ T4093] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  322.236271][ T4093] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  322.247682][ T4093] netlink: 'syz.4.1033': attribute type 6 has an invalid length.
[  322.672200][   T28] audit: type=1400 audit(1760441875.423:209): avc:  denied  { setopt } for  pid=4118 comm="syz.2.1040" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  322.765665][   T28] audit: type=1400 audit(1760441875.543:210): avc:  denied  { read } for  pid=4118 comm="syz.2.1040" name="rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  322.910592][  T475] usbhid 5-1:0.0: can't add hid device: -71
[  322.929094][  T475] usbhid: probe of 5-1:0.0 failed with error -71
[  323.001141][  T475] usb 5-1: USB disconnect, device number 17
[  323.135361][ T4134] FAULT_INJECTION: forcing a failure.
[  323.135361][ T4134] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  323.148777][ T4134] CPU: 0 PID: 4134 Comm: syz.3.1042 Not tainted syzkaller #0
[  323.156195][ T4134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  323.166318][ T4134] Call Trace:
[  323.169893][ T4134]  <TASK>
[  323.172890][ T4134]  __dump_stack+0x21/0x24
[  323.177283][ T4134]  dump_stack_lvl+0xee/0x150
[  323.182012][ T4134]  ? __cfi_dump_stack_lvl+0x8/0x8
[  323.187167][ T4134]  ? _parse_integer+0x2a/0x40
[  323.191890][ T4134]  dump_stack+0x15/0x24
[  323.196173][ T4134]  should_fail_ex+0x3d4/0x520
[  323.200987][ T4134]  should_fail+0xb/0x10
[  323.205204][ T4134]  should_fail_usercopy+0x1a/0x20
[  323.210361][ T4134]  _copy_from_user+0x1e/0xc0
[  323.215086][ T4134]  ___sys_sendmsg+0x155/0x290
[  323.219824][ T4134]  ? __sys_sendmsg+0x270/0x270
[  323.224665][ T4134]  ? __kasan_check_write+0x14/0x20
[  323.229809][ T4134]  ? proc_fail_nth_write+0x17a/0x1f0
[  323.235140][ T4134]  ? vfs_write+0x9d6/0xca0
[  323.239618][ T4134]  ? __fdget+0x19c/0x220
[  323.243899][ T4134]  __x64_sys_sendmsg+0x1f0/0x2c0
[  323.248893][ T4134]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[  323.254409][ T4134]  ? fpregs_assert_state_consistent+0xb1/0xe0
[  323.260709][ T4134]  x64_sys_call+0x171/0x9a0
[  323.265258][ T4134]  do_syscall_64+0x4c/0xa0
[  323.269812][ T4134]  ? clear_bhb_loop+0x30/0x80
[  323.274622][ T4134]  ? clear_bhb_loop+0x30/0x80
[  323.279436][ T4134]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  323.285457][ T4134] RIP: 0033:0x7fb7e6d8eec9
[  323.290006][ T4134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.310850][ T4134] RSP: 002b:00007fb7e7ce7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  323.320093][ T4134] RAX: ffffffffffffffda RBX: 00007fb7e6fe6090 RCX: 00007fb7e6d8eec9
[  323.328457][ T4134] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000009
[  323.336549][ T4134] RBP: 00007fb7e7ce7090 R08: 0000000000000000 R09: 0000000000000000
[  323.344641][ T4134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.352651][ T4134] R13: 00007fb7e6fe6128 R14: 00007fb7e6fe6090 R15: 00007ffe27b63398
[  323.360854][ T4134]  </TASK>
[  324.366589][  T335] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  324.468982][ T4159] tipc: Started in network mode
[  324.474028][ T4159] tipc: Node identity , cluster identity 4711
[  324.480218][ T4159] tipc: Failed to set node id, please configure manually
[  324.487453][ T4159] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  324.746550][  T335] usb 2-1: Using ep0 maxpacket: 16
[  324.758454][  T335] usb 2-1: config 0 has an invalid interface number: 79 but max is 0
[  324.776769][  T335] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  324.797463][  T335] usb 2-1: config 0 has no interface number 0
[  324.806897][  T335] usb 2-1: New USB device found, idVendor=1b3d, idProduct=0196, bcdDevice= 0.04
[  324.815966][  T335] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  324.846520][  T335] usb 2-1: SerialNumber: syz
[  324.851825][  T335] usb 2-1: config 0 descriptor??
[  324.866578][  T335] hub 2-1:0.79: bad descriptor, ignoring hub
[  324.872668][  T335] hub: probe of 2-1:0.79 failed with error -5
[  324.880688][  T335] ftdi_sio 2-1:0.79: FTDI USB Serial Device converter detected
[  324.889145][  T335] usb 2-1: Detected SIO
[  324.894242][  T335] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  325.071954][ T4163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1050'.
[  325.094336][ T4163] tipc: Started in network mode
[  325.126963][ T4163] tipc: Node identity , cluster identity 4711
[  325.159809][ T4163] tipc: Failed to set node id, please configure manually
[  325.188285][  T315] usb 2-1: USB disconnect, device number 13
[  325.235124][ T4163] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  325.248460][ T4175] FAULT_INJECTION: forcing a failure.
[  325.248460][ T4175] name failslab, interval 1, probability 0, space 0, times 1
[  325.261613][  T315] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  325.281602][  T315] ftdi_sio 2-1:0.79: device disconnected
[  325.340015][ T4175] CPU: 1 PID: 4175 Comm: syz.4.1053 Not tainted syzkaller #0
[  325.347449][ T4175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  325.357544][ T4175] Call Trace:
[  325.360851][ T4175]  <TASK>
[  325.363815][ T4175]  __dump_stack+0x21/0x24
[  325.368189][ T4175]  dump_stack_lvl+0xee/0x150
[  325.372894][ T4175]  ? __cfi_dump_stack_lvl+0x8/0x8
[  325.377951][ T4175]  dump_stack+0x15/0x24
[  325.382149][ T4175]  should_fail_ex+0x3d4/0x520
[  325.387227][ T4175]  ? prepare_creds+0x2f/0x640
[  325.391952][ T4175]  __should_failslab+0xac/0xf0
[  325.396767][ T4175]  should_failslab+0x9/0x20
[  325.401309][ T4175]  kmem_cache_alloc+0x3b/0x330
[  325.406119][ T4175]  prepare_creds+0x2f/0x640
[  325.410658][ T4175]  ? ns_capable_setid+0x8f/0xf0
[  325.415641][ T4175]  __sys_setresgid+0x619/0x990
[  325.420449][ T4175]  __x64_sys_setresgid+0x7a/0x90
[  325.425436][ T4175]  x64_sys_call+0x808/0x9a0
[  325.429986][ T4175]  do_syscall_64+0x4c/0xa0
[  325.434451][ T4175]  ? clear_bhb_loop+0x30/0x80
[  325.439166][ T4175]  ? clear_bhb_loop+0x30/0x80
[  325.443883][ T4175]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.449817][ T4175] RIP: 0033:0x7f5350f8eec9
[  325.454266][ T4175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.473900][ T4175] RSP: 002b:00007f5351ee5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000077
[  325.482350][ T4175] RAX: ffffffffffffffda RBX: 00007f53511e5fa0 RCX: 00007f5350f8eec9
[  325.490363][ T4175] RDX: 0000000000000000 RSI: 000000000000ee01 RDI: 000000000000ee00
[  325.498458][ T4175] RBP: 00007f5351ee5090 R08: 0000000000000000 R09: 0000000000000000
[  325.506464][ T4175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.514472][ T4175] R13: 00007f53511e6038 R14: 00007f53511e5fa0 R15: 00007ffee3e6cfa8
[  325.522493][ T4175]  </TASK>
[  325.851508][ T4182] xt_hashlimit: size too large, truncated to 1048576
[  326.166499][ T3692] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  326.358261][ T3692] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.376503][ T3692] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.396569][ T3692] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  326.430886][ T3692] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  326.449437][ T3692] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.478434][ T3692] usb 5-1: config 0 descriptor??
[  326.620242][   T28] audit: type=1400 audit(1760441879.493:211): avc:  denied  { mounton } for  pid=4200 comm="syz.3.1063" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=47 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  326.620303][ T4207] 9pnet: Could not find request transport: rdma
[  326.732967][   T28] audit: type=1400 audit(1760441879.583:212): avc:  denied  { write } for  pid=4202 comm="syz.2.1064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  327.076531][ T3692] plantronics 0003:047F:FFFF.0001: unknown main item tag 0xd
[  327.088775][ T3692] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  327.106983][ T3692] plantronics 0003:047F:FFFF.0001: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  327.496367][ T4215] tipc: Started in network mode
[  327.501399][ T4215] tipc: Node identity , cluster identity 4711
[  327.507661][ T4215] tipc: Failed to set node id, please configure manually
[  327.514826][ T4215] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  327.554908][  T315] usb 5-1: USB disconnect, device number 18
[  328.420078][ T4228] xt_hashlimit: size too large, truncated to 1048576
[  328.441331][ T4230] xt_hashlimit: size too large, truncated to 1048576
[  328.506533][  T315] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  328.666500][  T315] usb 4-1: device descriptor read/64, error -71
[  328.966502][  T315] usb 4-1: device descriptor read/64, error -71
[  329.084788][ T4249] xt_hashlimit: size too large, truncated to 1048576
[  329.256508][  T315] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  329.416496][  T315] usb 4-1: device descriptor read/64, error -71
[  329.686490][  T315] usb 4-1: device descriptor read/64, error -71
[  329.796546][ T3692] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  329.806610][  T315] usb usb4-port1: attempt power cycle
[  330.286807][ T3692] usb 2-1: Using ep0 maxpacket: 16
[  330.301250][ T4262] tipc: Started in network mode
[  330.325483][ T4262] tipc: Node identity , cluster identity 4711
[  330.331757][ T4262] tipc: Failed to set node id, please configure manually
[  330.338967][ T4262] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  330.348376][ T3692] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  330.359486][ T3692] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  330.366522][  T315] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  330.370074][ T3692] usb 2-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00
[  330.386535][ T3692] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.400376][ T3692] usb 2-1: config 0 descriptor??
[  330.407554][  T315] usb 4-1: device descriptor read/8, error -71
[  330.611838][  T315] usb 4-1: device descriptor read/8, error -71
[  331.272117][ T4276] loop3: detected capacity change from 0 to 512
[  331.304351][ T4276] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  331.313757][ T4276] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.340654][ T4252] syz.1.1076[4252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.340738][ T4252] syz.1.1076[4252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.363795][ T3692] usbhid 2-1:0.0: can't add hid device: -71
[  331.394077][   T28] audit: type=1400 audit(1760441884.263:213): avc:  denied  { read write } for  pid=4275 comm="syz.3.1083" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  331.552309][   T28] audit: type=1400 audit(1760441884.303:214): avc:  denied  { open } for  pid=4275 comm="syz.3.1083" path="/230/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  331.594979][ T4284] netlink: 'syz.3.1083': attribute type 11 has an invalid length.
[  331.723846][ T3692] usbhid: probe of 2-1:0.0 failed with error -71
[  331.731321][ T3692] usb 2-1: USB disconnect, device number 14
[  331.755264][   T28] audit: type=1400 audit(1760441884.623:215): avc:  denied  { read } for  pid=4275 comm="syz.3.1083" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  331.780612][   T28] audit: type=1400 audit(1760441884.623:216): avc:  denied  { ioctl } for  pid=4275 comm="syz.3.1083" path="/230/file1/bus" dev="loop3" ino=18 ioctlcmd=0xaf04 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  331.783568][ T4287] xt_hashlimit: size too large, truncated to 1048576
[  331.941621][ T4291] loop1: detected capacity change from 0 to 16
[  331.979167][ T4291] erofs: Unknown parameter '€Ð\Ô
s­Ááÿšoa}^Yò/'
[  332.155793][ T4295] fuse: Invalid rootmode
[  332.187952][  T283] EXT4-fs (loop3): unmounting filesystem.
[  332.223393][ T4297] overlayfs: './file0' not a directory
[  332.346529][ T3692] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  332.726104][ T4304] xt_hashlimit: size too large, truncated to 1048576
[  332.876525][ T3692] usb 1-1: Using ep0 maxpacket: 16
[  332.882793][ T3692] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  333.290344][ T4311] xt_hashlimit: size too large, truncated to 1048576
[  333.309535][ T3692] usb 1-1: config 0 has no interface number 0
[  333.322204][ T3692] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  333.342878][ T3692] usb 1-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[  333.361913][ T3692] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.378705][ T3692] usb 1-1: Product: syz
[  333.387499][ T3692] usb 1-1: Manufacturer: syz
[  333.397743][ T3692] usb 1-1: SerialNumber: syz
[  333.417751][ T3692] usb 1-1: config 0 descriptor??
[  333.442454][ T3692] snd-usb-audio: probe of 1-1:0.1 failed with error -2
[  333.460555][  T450] udevd[450]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.1/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  333.540394][ T4316] tipc: Started in network mode
[  333.554787][ T4316] tipc: Node identity , cluster identity 4711
[  333.569413][ T4316] tipc: Failed to set node id, please configure manually
[  333.613646][   T28] audit: type=1400 audit(1760441886.463:217): avc:  denied  { map } for  pid=4322 comm="syz.4.1094" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  333.747406][ T4316] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  333.951900][ T4330] loop4: detected capacity change from 0 to 1024
[  334.049033][ T4330] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  334.080954][ T4330] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.178870][ T4323] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  334.289708][   T28] audit: type=1400 audit(1760441887.163:218): avc:  denied  { write } for  pid=4292 comm="syz.0.1086" name="001" dev="devtmpfs" ino=176 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  334.700755][   T28] audit: type=1400 audit(1760441887.193:219): avc:  denied  { ioctl } for  pid=4292 comm="syz.0.1086" path="socket:[27877]" dev="sockfs" ino=27877 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  334.726909][  T284] EXT4-fs (loop4): unmounting filesystem.
[  334.776088][   T28] audit: type=1400 audit(1760441887.533:220): avc:  denied  { ioctl } for  pid=4322 comm="syz.4.1094" path="/222/file1/file1" dev="loop4" ino=15 ioctlcmd=0x660b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  334.819011][ T4293] loop0: detected capacity change from 0 to 512
[  334.896765][ T4349] loop1: detected capacity change from 0 to 1024
[  334.906031][ T4293] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  334.931977][ T4349] EXT4-fs: Ignoring removed bh option
[  334.940809][ T4293] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.954921][ T4293] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 87 vs 96 free clusters
[  334.971466][ T4293] Quota error (device loop0): write_blk: dquota write failed
[  334.979690][ T4293] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  334.990618][ T4293] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  334.999139][ T4349] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  335.000689][ T4293] EXT4-fs error (device loop0): ext4_acquire_dquot:6803: comm syz.0.1086: Failed to acquire dquot type 1
[  335.032289][ T4349] process 'syz.1.1099' launched './file2' with NULL argv: empty string added
[  335.042217][   T28] audit: type=1400 audit(1760441887.913:221): avc:  denied  { execute } for  pid=4348 comm="syz.1.1099" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  335.076585][ T3692] usb 1-1: USB disconnect, device number 12
[  335.104546][ T4349] xt_TCPMSS: Only works on TCP SYN packets
[  335.335386][ T4366] xt_hashlimit: size too large, truncated to 1048576
[  336.617707][  T282] EXT4-fs (loop1): unmounting filesystem.
[  336.721829][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.860287][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  336.860341][   T28] audit: type=1400 audit(1760441889.553:227): avc:  denied  { bind } for  pid=4374 comm="syz.3.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  336.892652][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  336.924065][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  336.937756][  T285] EXT4-fs (loop0): unmounting filesystem.
[  336.942819][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  336.961244][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  336.969917][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  336.972515][   T28] audit: type=1400 audit(1760441889.563:228): avc:  denied  { setopt } for  pid=4374 comm="syz.3.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  336.978710][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  337.006852][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  337.016310][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  337.025456][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  337.033798][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  337.041795][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[  337.049932][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[  337.057819][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[  337.070982][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[  337.079192][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[  337.087403][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[  337.131054][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[  337.141459][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[  337.152480][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[  337.163242][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[  337.172797][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth15: link becomes ready
[  337.188506][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[  337.269892][ T4388] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1108'.
[  337.336749][  T475] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  337.479572][ T4387] loop1: detected capacity change from 0 to 512
[  337.511692][   T28] audit: type=1400 audit(1760441890.383:229): avc:  denied  { mount } for  pid=4394 comm="syz.0.1111" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  337.667160][  T475] usb 3-1: Using ep0 maxpacket: 32
[  337.673773][  T475] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.740113][  T475] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  337.750553][   T28] audit: type=1400 audit(1760441890.563:230): avc:  denied  { mount } for  pid=4379 comm="syz.1.1106" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  337.814453][  T475] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  337.845363][  T475] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.867113][   T28] audit: type=1400 audit(1760441890.653:231): avc:  denied  { unmount } for  pid=282 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  337.909696][ T4409] loop0: detected capacity change from 0 to 512
[  337.939491][  T475] usb 3-1: config 0 descriptor??
[  337.951176][   T28] audit: type=1400 audit(1760441890.703:232): avc:  denied  { map } for  pid=4406 comm="syz.0.1115" path="socket:[27981]" dev="sockfs" ino=27981 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  337.976324][   T28] audit: type=1400 audit(1760441890.703:233): avc:  denied  { read write } for  pid=4406 comm="syz.0.1115" path="socket:[27981]" dev="sockfs" ino=27981 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  338.000625][   T28] audit: type=1400 audit(1760441890.703:234): avc:  denied  { create } for  pid=4406 comm="syz.0.1115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  338.022073][  T475] hub 3-1:0.0: USB hub found
[  338.028098][   T28] audit: type=1400 audit(1760441890.703:235): avc:  denied  { setopt } for  pid=4406 comm="syz.0.1115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  338.048079][   T28] audit: type=1400 audit(1760441890.703:236): avc:  denied  { map } for  pid=4406 comm="syz.0.1115" path="socket:[27982]" dev="sockfs" ino=27982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  338.048652][ T4409] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  338.347155][ T4409] EXT4-fs (loop0): unmounting filesystem.
[  338.360584][ T4399] tipc: Started in network mode
[  338.397864][ T4399] tipc: Node identity , cluster identity 4711
[  338.424445][ T4399] tipc: Failed to set node id, please configure manually
[  338.446151][ T4399] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  338.590724][  T475] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  338.609939][  T475] usbhid 3-1:0.0: can't add hid device: -71
[  338.618065][  T475] usbhid: probe of 3-1:0.0 failed with error -71
[  338.691989][  T475] usb 3-1: USB disconnect, device number 13
[  338.697517][ T4422] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1118'.
[  338.778681][ T4426] xt_hashlimit: size too large, truncated to 1048576
[  338.872300][ T4431] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1120'.
[  340.583982][ T4444] netlink: 'syz.4.1123': attribute type 9 has an invalid length.
[  340.602631][ T4444] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1123'.
[  341.495286][ T4460] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1127'.
[  341.792584][ T4476] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1131'.
[  341.832051][ T4479] tipc: Started in network mode
[  341.848166][ T4479] tipc: Node identity , cluster identity 4711
[  341.866546][ T4479] tipc: Failed to set node id, please configure manually
[  341.906574][ T4479] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  342.492286][ T4488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1134'.
[  342.513489][ T4488] loop1: detected capacity change from 0 to 1024
[  342.520969][ T4488] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 143833713099145219)!
[  342.550151][ T4488] EXT4-fs (loop1): group descriptors corrupted!
[  342.706878][ T4492] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1136'.
[  343.246511][  T315] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  343.449086][  T315] usb 4-1: unable to get BOS descriptor or descriptor too short
[  343.473797][  T315] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  343.499921][  T315] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  343.521255][  T315] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  343.543645][  T315] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.563193][  T315] usb 4-1: Product: syz
[  343.572843][  T315] usb 4-1: Manufacturer: syz
[  343.583416][  T315] usb 4-1: SerialNumber: syz
[  344.050379][ T4510] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1141'.
[  344.176940][ T4499] tmpfs: Unknown parameter 'nolazytimeÃs¸¾>�&rTOÿ_ç'
[  344.421737][ T4524] loop1: detected capacity change from 0 to 512
[  344.422088][ T4524] ext4: Unknown parameter 'uid<00000000000000000000'
[  344.500354][ T4522] loop0: detected capacity change from 0 to 4096
[  344.536274][ T4522] EXT4-fs: Ignoring removed mblk_io_submit option
[  344.569120][  T339] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  344.580046][ T4522] EXT4-fs (loop0): Test dummy encryption mode enabled
[  344.593181][  T315] usb 4-1: 0:2 : does not exist
[  344.611877][  T315] usb 4-1: USB disconnect, device number 13
[  344.629328][ T4522] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  344.828828][   T28] kauditd_printk_skb: 6 callbacks suppressed
[  344.828845][   T28] audit: type=1400 audit(1760441897.703:243): avc:  denied  { read } for  pid=4521 comm="syz.0.1145" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  344.894820][ T4532] loop4: detected capacity change from 0 to 128
[  344.896655][   T28] audit: type=1400 audit(1760441897.703:244): avc:  denied  { open } for  pid=4521 comm="syz.0.1145" path="/dev/ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  344.905264][ T4532] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  344.938103][ T4532] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  344.951422][   T28] audit: type=1400 audit(1760441897.703:245): avc:  denied  { ioctl } for  pid=4521 comm="syz.0.1145" path="/dev/ppp" dev="devtmpfs" ino=158 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  344.983135][    T8] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  344.992858][   T28] audit: type=1400 audit(1760441897.713:246): avc:  denied  { ioctl } for  pid=4521 comm="syz.0.1145" path="socket:[28723]" dev="sockfs" ino=28723 ioctlcmd=0x8940 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  345.019718][   T28] audit: type=1400 audit(1760441897.823:247): avc:  denied  { mount } for  pid=4531 comm="syz.4.1146" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  345.077957][   T28] audit: type=1400 audit(1760441897.853:248): avc:  denied  { unmount } for  pid=284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  345.143467][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  345.168855][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  345.181501][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  345.991963][ T4539] loop3: detected capacity change from 0 to 4096
[  346.000906][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  346.007674][ T4539] EXT4-fs: Ignoring removed mblk_io_submit option
[  346.009761][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  346.032341][ T4539] EXT4-fs (loop3): Test dummy encryption mode enabled
[  346.032692][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  346.083287][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  346.091826][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  346.097066][ T4539] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  346.100957][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  346.117588][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  346.125368][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  346.133553][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[  346.135946][ T4548] loop1: detected capacity change from 0 to 512
[  346.141541][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[  346.155330][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[  346.163213][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[  346.171099][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[  346.179150][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[  346.196354][ T4548] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  346.224552][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[  346.243268][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[  346.251138][ T4548] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  346.265244][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[  346.265292][ T4548] System zones: 
[  346.273261][  T684] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[  346.276546][ T4548] 1-12
[  346.290406][ T4548] EXT4-fs (loop1): orphan cleanup on readonly fs
[  346.298265][ T4548] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1152: bg 0: block 361: padding at end of block bitmap is not set
[  346.313423][ T4548] EXT4-fs (loop1): Remounting filesystem read-only
[  346.320449][ T4548] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  346.329729][ T4548] EXT4-fs (loop1): Remounting filesystem read-only
[  346.336696][ T4548] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1152: invalid indirect mapped block 12 (level 1)
[  346.353763][ T4548] EXT4-fs (loop1): Remounting filesystem read-only
[  346.360547][ T4548] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1152: invalid indirect mapped block 2 (level 2)
[  346.377528][ T4546] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1151'.
[  346.388705][ T4548] EXT4-fs (loop1): Remounting filesystem read-only
[  346.395921][ T4548] EXT4-fs (loop1): 1 truncate cleaned up
[  346.402209][ T4548] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  346.411706][ T4548] EXT4-fs (loop1): unmounting filesystem.
[  346.475260][ T4548] loop1: detected capacity change from 0 to 512
[  346.485187][ T4548] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  346.494721][ T4548] EXT4-fs (loop1): invalid journal inode
[  346.501734][ T4548] EXT4-fs (loop1): can't get journal size
[  346.519959][ T4548] EXT4-fs (loop1): 1 truncate cleaned up
[  346.526168][ T4548] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  346.539248][ T4548] EXT4-fs (loop1): unmounting filesystem.
[  346.714936][  T283] EXT4-fs (loop3): unmounting filesystem.
[  347.395768][  T285] EXT4-fs (loop0): unmounting filesystem.
[  347.430519][ T4574] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1157'.
[  347.780478][ T4584] tipc: Started in network mode
[  347.785458][ T4584] tipc: Node identity , cluster identity 4711
[  347.791675][ T4584] tipc: Failed to set node id, please configure manually
[  347.798924][ T4584] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  348.258505][ T4597] loop3: detected capacity change from 0 to 128
[  348.377023][ T4600] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  348.406558][ T4600] FAT-fs (loop1): unable to read boot sector
[  348.435685][ T4600] loop0: detected capacity change from 0 to 512
[  348.483196][ T4600] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  348.500734][ T4600] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  348.529686][ T4600] System zones: 1-12
[  348.534510][ T4600] EXT4-fs (loop0): orphan cleanup on readonly fs
[  348.563844][ T4600] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1165: bg 0: block 361: padding at end of block bitmap is not set
[  348.579425][ T4600] EXT4-fs (loop0): Remounting filesystem read-only
[  348.586184][ T4600] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  348.595513][ T4600] EXT4-fs (loop0): Remounting filesystem read-only
[  348.602485][ T4600] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1165: invalid indirect mapped block 12 (level 1)
[  348.617629][ T4600] EXT4-fs (loop0): Remounting filesystem read-only
[  348.624412][ T4600] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1165: invalid indirect mapped block 2 (level 2)
[  348.638472][ T4600] EXT4-fs (loop0): Remounting filesystem read-only
[  348.645401][ T4600] EXT4-fs (loop0): 1 truncate cleaned up
[  348.651847][ T4600] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  348.662279][ T4600] EXT4-fs (loop0): unmounting filesystem.
[  348.713153][ T4600] loop0: detected capacity change from 0 to 512
[  348.778115][ T4600] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  348.802588][ T4600] EXT4-fs (loop0): invalid journal inode
[  348.815209][ T4600] EXT4-fs (loop0): can't get journal size
[  348.871747][ T4600] EXT4-fs (loop0): 1 truncate cleaned up
[  348.877583][ T4600] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  348.878057][ T4606] loop1: detected capacity change from 0 to 512
[  348.913946][ T4600] EXT4-fs (loop0): unmounting filesystem.
[  348.950143][ T4606] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  348.992711][ T4606] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  349.003026][ T4606] System zones: 1-12
[  349.011543][ T4606] EXT4-fs (loop1): orphan cleanup on readonly fs
[  349.026712][ T4606] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1166: bg 0: block 361: padding at end of block bitmap is not set
[  349.056264][ T4606] EXT4-fs (loop1): Remounting filesystem read-only
[  349.063124][ T4606] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  349.082075][ T4606] EXT4-fs (loop1): Remounting filesystem read-only
[  349.090044][ T4606] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1166: invalid indirect mapped block 12 (level 1)
[  349.113725][ T4606] EXT4-fs (loop1): Remounting filesystem read-only
[  349.120457][ T4606] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1166: invalid indirect mapped block 2 (level 2)
[  349.144177][ T4606] EXT4-fs (loop1): Remounting filesystem read-only
[  349.154396][ T4606] EXT4-fs (loop1): 1 truncate cleaned up
[  349.166690][ T4606] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  349.185896][ T4606] EXT4-fs (loop1): unmounting filesystem.
[  349.218893][ T4610] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1167'.
[  349.271079][ T4606] loop1: detected capacity change from 0 to 512
[  349.292119][ T4606] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  349.301584][ T4606] EXT4-fs (loop1): invalid journal inode
[  349.307662][ T4606] EXT4-fs (loop1): can't get journal size
[  349.322262][ T4606] EXT4-fs (loop1): 1 truncate cleaned up
[  349.328541][ T4606] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  349.328696][   T28] audit: type=1400 audit(1760441902.203:249): avc:  denied  { ioctl } for  pid=4612 comm="syz.2.1168" path="socket:[28432]" dev="sockfs" ino=28432 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  349.365630][ T4606] EXT4-fs (loop1): unmounting filesystem.
[  349.395873][   T28] audit: type=1400 audit(1760441902.243:250): avc:  denied  { setopt } for  pid=4612 comm="syz.2.1168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  349.736583][   T28] audit: type=1400 audit(1760441902.603:251): avc:  denied  { mount } for  pid=4621 comm="syz.0.1170" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  349.813204][   T28] audit: type=1400 audit(1760441902.633:252): avc:  denied  { mounton } for  pid=4621 comm="syz.0.1170" path="/214/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1
[  350.159035][ T4629] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1171'.
[  350.556328][   T28] audit: type=1400 audit(1760441903.423:253): avc:  denied  { unmount } for  pid=285 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  350.876510][   T24] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  351.000188][ T4651] loop4: detected capacity change from 0 to 256
[  351.006966][ T4651] FAT-fs (loop4): Unrecognized mount option "" or missing value
[  351.266207][  T450] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  351.297760][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  351.309023][   T24] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  351.410609][ T4655] tipc: Started in network mode
[  351.415539][ T4655] tipc: Node identity , cluster identity 4711
[  351.421695][ T4655] tipc: Failed to set node id, please configure manually
[  351.428901][ T4655] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  351.704597][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.709252][ T4657] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.726921][   T24] usb 1-1: config 0 descriptor??
[  351.735402][ T4657] FAT-fs (loop3): unable to read boot sector
[  351.749814][ T4657] loop1: detected capacity change from 0 to 512
[  351.757997][ T4657] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  351.771830][ T4657] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  351.786572][ T4657] System zones: 1-12
[  351.791308][ T4657] EXT4-fs (loop1): orphan cleanup on readonly fs
[  351.807420][ T4657] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1180: bg 0: block 361: padding at end of block bitmap is not set
[  351.825418][ T4657] EXT4-fs (loop1): Remounting filesystem read-only
[  351.832114][ T4657] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  351.843197][ T4657] EXT4-fs (loop1): Remounting filesystem read-only
[  351.846280][ T4665] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1182'.
[  351.849921][ T4657] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1180: invalid indirect mapped block 12 (level 1)
[  351.876571][ T4657] EXT4-fs (loop1): Remounting filesystem read-only
[  351.883940][ T4657] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1180: invalid indirect mapped block 2 (level 2)
[  351.897597][ T4657] EXT4-fs (loop1): Remounting filesystem read-only
[  351.904262][ T4657] EXT4-fs (loop1): 1 truncate cleaned up
[  351.910083][ T4657] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  351.919011][ T4657] EXT4-fs (loop1): unmounting filesystem.
[  351.986308][ T4657] loop1: detected capacity change from 0 to 512
[  352.005199][ T4657] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  352.048316][ T4657] EXT4-fs (loop1): invalid journal inode
[  352.076285][ T4657] EXT4-fs (loop1): can't get journal size
[  352.086255][ T4657] EXT4-fs (loop1): 1 truncate cleaned up
[  352.092254][ T4657] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  352.102391][ T4657] EXT4-fs (loop1): unmounting filesystem.
[  352.136100][   T24] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor
[  352.155512][   T24] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0002/input/input20
[  352.239066][   T28] audit: type=1400 audit(1760441905.113:254): avc:  denied  { read } for  pid=87 comm="acpid" name="event3" dev="devtmpfs" ino=1176 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  352.240276][   T24] keytouch 0003:0926:3333.0002: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  352.269019][   T28] audit: type=1400 audit(1760441905.113:255): avc:  denied  { open } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1176 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  352.297740][   T28] audit: type=1400 audit(1760441905.113:256): avc:  denied  { ioctl } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1176 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  352.645930][ T4681] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1185'.
[  352.770405][ T4688] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1186'.
[  352.783285][ T4688] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1186'.
[  353.415959][ T4699] loop2: detected capacity change from 0 to 256
[  354.492417][ T4699] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  354.888451][  T335] usb 1-1: USB disconnect, device number 13
[  355.187351][ T4716] tipc: Started in network mode
[  355.192258][ T4716] tipc: Node identity , cluster identity 4711
[  355.220852][ T4716] tipc: Failed to set node id, please configure manually
[  355.244993][ T4716] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  355.282740][ T4718] tipc: Started in network mode
[  355.297870][ T4718] tipc: Node identity , cluster identity 4711
[  355.316581][ T4718] tipc: Failed to set node id, please configure manually
[  355.346998][ T4718] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  355.356762][  T306] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  355.557595][  T306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  355.579494][  T306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  355.609532][  T306] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  355.649615][  T306] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  355.689444][  T306] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.726879][  T306] usb 3-1: config 0 descriptor??
[  355.904621][ T4728] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1198'.
[  355.978225][ T4730] loop4: detected capacity change from 0 to 256
[  356.020653][ T4730] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  356.128681][   T28] audit: type=1400 audit(1760441909.003:257): avc:  denied  { mounton } for  pid=4729 comm="syz.4.1199" path="/246/file0/file1" dev="loop4" ino=1048606 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  356.153154][   T28] audit: type=1400 audit(1760441909.013:258): avc:  denied  { unmount } for  pid=284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  356.476514][   T28] audit: type=1400 audit(1760441909.023:259): avc:  denied  { unmount } for  pid=284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  356.508775][  T306] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  356.519511][  T306] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  356.528669][  T306] plantronics 0003:047F:FFFF.0003: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  356.611893][   T28] audit: type=1400 audit(1760441909.483:260): avc:  denied  { read } for  pid=4734 comm="syz.4.1201" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  356.717255][   T28] audit: type=1326 audit(1760441909.523:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4734 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350f8eec9 code=0x7ffc0000
[  356.816085][   T28] audit: type=1326 audit(1760441909.523:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4734 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5350f8eec9 code=0x7ffc0000
[  356.959517][  T306] usb 3-1: USB disconnect, device number 14
[  357.217218][ T4757] loop1: detected capacity change from 0 to 512
[  357.245088][ T4757] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  357.268323][ T4757] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  357.282242][ T4757] System zones: 1-12
[  357.292175][ T4757] EXT4-fs (loop1): orphan cleanup on readonly fs
[  357.306636][ T4757] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1206: bg 0: block 361: padding at end of block bitmap is not set
[  357.326707][ T4757] EXT4-fs (loop1): Remounting filesystem read-only
[  357.333402][ T4757] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  357.342653][ T4757] EXT4-fs (loop1): Remounting filesystem read-only
[  357.349539][ T4757] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1206: invalid indirect mapped block 12 (level 1)
[  357.389925][ T4757] EXT4-fs (loop1): Remounting filesystem read-only
[  357.403635][ T4757] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1206: invalid indirect mapped block 2 (level 2)
[  357.448344][ T4757] EXT4-fs (loop1): Remounting filesystem read-only
[  357.456184][ T4757] EXT4-fs (loop1): 1 truncate cleaned up
[  357.465386][ T4757] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  357.479980][ T4757] EXT4-fs (loop1): unmounting filesystem.
[  357.557928][ T4754] loop1: detected capacity change from 0 to 512
[  357.586080][ T4754] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  357.597782][ T4766] tipc: Started in network mode
[  357.620863][ T4766] tipc: Node identity , cluster identity 4711
[  357.630493][ T4754] EXT4-fs (loop1): invalid journal inode
[  357.636314][ T4754] EXT4-fs (loop1): can't get journal size
[  357.644489][ T4766] tipc: Failed to set node id, please configure manually
[  357.659719][ T4766] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  357.673237][ T4770] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1210'.
[  357.683011][ T4754] EXT4-fs (loop1): 1 truncate cleaned up
[  357.694713][ T4754] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  357.721185][ T4754] EXT4-fs (loop1): unmounting filesystem.
[  358.600729][ T4785] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  358.627560][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  358.640071][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  358.712324][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  358.727915][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  359.054170][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  359.062875][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  359.071508][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  359.080172][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  359.092423][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  359.092846][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  359.108049][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[  359.120827][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[  359.128560][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth7: link becomes ready
[  359.136186][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth6: link becomes ready
[  359.144106][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth9: link becomes ready
[  359.151909][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth8: link becomes ready
[  359.159693][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth11: link becomes ready
[  359.167581][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth10: link becomes ready
[  359.175332][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth13: link becomes ready
[  359.183487][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth12: link becomes ready
[  359.245984][ T4794] tipc: Started in network mode
[  359.251213][ T4794] tipc: Node identity 96a7bf63ebed, cluster identity 4711
[  359.258691][ T4794] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  359.272415][ T4793] tipc: Resetting bearer <eth:syzkaller0>
[  359.304511][ T4793] tipc: Disabling bearer <eth:syzkaller0>
[  359.358847][ T4803] bridge: RTM_NEWNEIGH with invalid ether address
[  359.838451][ T4813] xt_TCPMSS: Only works on TCP SYN packets
[  360.336612][  T315] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  360.413190][ T4818] kvm: pic: non byte write
[  360.501553][ T4823] FAULT_INJECTION: forcing a failure.
[  360.501553][ T4823] name failslab, interval 1, probability 0, space 0, times 0
[  360.514470][ T4823] CPU: 1 PID: 4823 Comm: syz.0.1223 Not tainted syzkaller #0
[  360.521966][ T4823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  360.532043][ T4823] Call Trace:
[  360.535342][ T4823]  <TASK>
[  360.538281][ T4823]  __dump_stack+0x21/0x24
[  360.542713][ T4823]  dump_stack_lvl+0xee/0x150
[  360.547390][ T4823]  ? __cfi_dump_stack_lvl+0x8/0x8
[  360.552501][ T4823]  dump_stack+0x15/0x24
[  360.556695][ T4823]  should_fail_ex+0x3d4/0x520
[  360.561631][ T4823]  ? prepare_creds+0x2f/0x640
[  360.566337][ T4823]  __should_failslab+0xac/0xf0
[  360.571229][ T4823]  should_failslab+0x9/0x20
[  360.575779][ T4823]  kmem_cache_alloc+0x3b/0x330
[  360.580677][ T4823]  prepare_creds+0x2f/0x640
[  360.585193][ T4823]  copy_creds+0xe4/0x640
[  360.589619][ T4823]  copy_process+0x828/0x3480
[  360.594226][ T4823]  ? _raw_spin_unlock+0x4c/0x70
[  360.599142][ T4823]  ? raw_irqentry_exit_cond_resched+0x29/0x30
[  360.605250][ T4823]  ? irqentry_exit+0x37/0x40
[  360.609905][ T4823]  ? sysvec_reschedule_ipi+0x78/0x80
[  360.615208][ T4823]  ? idle_dummy+0x10/0x10
[  360.619576][ T4823]  kernel_clone+0x23a/0x810
[  360.624095][ T4823]  ? __cfi_kernel_clone+0x10/0x10
[  360.629139][ T4823]  ? __kasan_check_write+0x14/0x20
[  360.634257][ T4823]  ? mutex_unlock+0x89/0x220
[  360.638997][ T4823]  __x64_sys_clone+0x168/0x1b0
[  360.643847][ T4823]  ? __cfi___x64_sys_clone+0x10/0x10
[  360.649151][ T4823]  ? __kasan_check_write+0x14/0x20
[  360.654272][ T4823]  ? fpregs_restore_userregs+0x128/0x260
[  360.659915][ T4823]  ? switch_fpu_return+0xe/0x10
[  360.664776][ T4823]  x64_sys_call+0x990/0x9a0
[  360.669385][ T4823]  do_syscall_64+0x4c/0xa0
[  360.673805][ T4823]  ? clear_bhb_loop+0x30/0x80
[  360.678666][ T4823]  ? clear_bhb_loop+0x30/0x80
[  360.683369][ T4823]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  360.689283][ T4823] RIP: 0033:0x7f5ed7f8eec9
[  360.693703][ T4823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.713630][ T4823] RSP: 002b:00007f5ed69d5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  360.722149][ T4823] RAX: ffffffffffffffda RBX: 00007f5ed81e6180 RCX: 00007f5ed7f8eec9
[  360.730214][ T4823] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000041200000
[  360.738303][ T4823] RBP: 00007f5ed69d6090 R08: 0000000000000000 R09: 0000000000000000
[  360.746294][ T4823] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  360.754370][ T4823] R13: 00007f5ed81e6218 R14: 00007f5ed81e6180 R15: 00007ffd33929208
[  360.762360][ T4823]  </TASK>
[  360.807053][  T315] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  360.941953][  T315] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  361.028261][  T315] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  361.059591][  T315] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  361.076491][  T315] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.084663][  T315] usb 3-1: Product: syz
[  361.090241][  T315] usb 3-1: Manufacturer: syz
[  361.105541][  T315] usb 3-1: SerialNumber: syz
[  361.127178][  T315] hub 3-1:1.0: bad descriptor, ignoring hub
[  361.137331][ T4831] tipc: Started in network mode
[  361.139317][  T315] hub: probe of 3-1:1.0 failed with error -5
[  361.154480][   T28] audit: type=1400 audit(1760441914.023:263): avc:  denied  { unmount } for  pid=4832 comm="syz.1.1226" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  361.162735][ T4831] tipc: Node identity , cluster identity 4711
[  361.204942][   T28] audit: type=1326 audit(1760441914.073:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.218428][ T4831] tipc: Failed to set node id, please configure manually
[  361.254064][ T4831] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  361.292338][   T28] audit: type=1326 audit(1760441914.103:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.815482][   T28] audit: type=1326 audit(1760441914.103:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.871846][   T28] audit: type=1326 audit(1760441914.103:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.920237][   T28] audit: type=1326 audit(1760441914.103:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.944163][   T28] audit: type=1326 audit(1760441914.103:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  361.971896][   T28] audit: type=1326 audit(1760441914.103:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  362.008357][   T28] audit: type=1326 audit(1760441914.103:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  362.039446][   T28] audit: type=1326 audit(1760441914.103:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4835 comm="syz.1.1227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f028bd8eec9 code=0x7ffc0000
[  362.182826][ T4853] netlink: 'syz.3.1231': attribute type 1 has an invalid length.
[  362.799321][ T4853] netlink: 'syz.3.1231': attribute type 2 has an invalid length.
[  362.807859][ T4849] tipc: Started in network mode
[  362.812874][ T4849] tipc: Node identity , cluster identity 4711
[  362.819124][ T4849] tipc: Failed to set node id, please configure manually
[  362.826201][ T4849] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  362.835193][ T4856] netlink: 'syz.3.1231': attribute type 1 has an invalid length.
[  363.585527][ T4853] loop3: detected capacity change from 0 to 512
[  363.591998][ T4856] netlink: 'syz.3.1231': attribute type 2 has an invalid length.
[  363.606882][ T4853] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  363.618351][ T4853] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  363.629559][  T315] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 15 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  363.633165][ T4853] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.1231: corrupted in-inode xattr
[  363.656804][ T4861] tipc: Started in network mode
[  363.662129][ T4861] tipc: Node identity , cluster identity 4711
[  363.668572][ T4861] tipc: Failed to set node id, please configure manually
[  363.675633][ T4861] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  363.684821][  T315] usb 3-1: USB disconnect, device number 15
[  363.708612][  T315] usblp0: removed
[  363.713794][ T4853] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1231: couldn't read orphan inode 15 (err -117)
[  363.726208][ T4853] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  363.780747][ T4853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4853 comm=syz.3.1231
[  363.798900][ T4873] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  363.809594][ T4873] FAT-fs (loop9): unable to read boot sector
[  363.820601][ T4873] loop4: detected capacity change from 0 to 512
[  363.827918][ T4858] loop0: detected capacity change from 0 to 512
[  363.836063][ T4873] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  363.847815][ T4873] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  363.856540][ T4873] System zones: 1-12
[  363.862633][ T4873] EXT4-fs (loop4): orphan cleanup on readonly fs
[  363.878688][ T4881] FAULT_INJECTION: forcing a failure.
[  363.878688][ T4881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.968272][ T4881] CPU: 1 PID: 4881 Comm: syz.0.1237 Not tainted syzkaller #0
[  363.975794][ T4881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  363.986167][ T4881] Call Trace:
[  363.989733][ T4881]  <TASK>
[  363.992687][ T4881]  __dump_stack+0x21/0x24
[  363.997043][ T4881]  dump_stack_lvl+0xee/0x150
[  364.001669][ T4881]  ? __cfi_dump_stack_lvl+0x8/0x8
[  364.006769][ T4881]  dump_stack+0x15/0x24
[  364.011034][ T4881]  should_fail_ex+0x3d4/0x520
[  364.015753][ T4881]  should_fail+0xb/0x10
[  364.019929][ T4881]  should_fail_usercopy+0x1a/0x20
[  364.024999][ T4881]  copyin+0x20/0xa0
[  364.028913][ T4881]  _copy_from_iter+0x3e2/0xfd0
[  364.033708][ T4881]  ? __cfi__copy_from_iter+0x10/0x10
[  364.039020][ T4881]  ? __kasan_check_write+0x14/0x20
[  364.044162][ T4881]  ? __build_skb_around+0x24f/0x470
[  364.049583][ T4881]  ? check_stack_object+0x81/0x140
[  364.054784][ T4881]  ? __check_object_size+0x45a/0x600
[  364.060189][ T4881]  netlink_sendmsg+0x72c/0xbc0
[  364.065028][ T4881]  ? __cfi_netlink_sendmsg+0x10/0x10
[  364.070458][ T4881]  ? security_socket_sendmsg+0x93/0xb0
[  364.076001][ T4881]  ? __cfi_netlink_sendmsg+0x10/0x10
[  364.079918][ T4873] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1235: bg 0: block 361: padding at end of block bitmap is not set
[  364.081398][ T4881]  ____sys_sendmsg+0x5a9/0x990
[  364.100515][ T4881]  ? __sys_sendmsg_sock+0x40/0x40
[  364.104801][ T4873] EXT4-fs (loop4): Remounting filesystem read-only
[  364.106019][ T4881]  ? import_iovec+0x7c/0xb0
[  364.117062][ T4881]  ___sys_sendmsg+0x21c/0x290
[  364.121492][ T4873] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  364.121775][ T4881]  ? __sys_sendmsg+0x270/0x270
[  364.135233][ T4881]  ? __kasan_check_write+0x14/0x20
[  364.140361][ T4881]  ? proc_fail_nth_write+0x17a/0x1f0
[  364.145713][ T4881]  ? vfs_write+0x9d6/0xca0
[  364.150182][ T4881]  ? __fdget+0x19c/0x220
[  364.154467][ T4881]  __x64_sys_sendmsg+0x1f0/0x2c0
[  364.159419][ T4881]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[  364.164909][ T4881]  ? fpregs_assert_state_consistent+0xb1/0xe0
[  364.170986][ T4881]  x64_sys_call+0x171/0x9a0
[  364.175500][ T4881]  do_syscall_64+0x4c/0xa0
[  364.180271][ T4881]  ? clear_bhb_loop+0x30/0x80
[  364.185134][ T4881]  ? clear_bhb_loop+0x30/0x80
[  364.189870][ T4881]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  364.195788][ T4881] RIP: 0033:0x7f5ed7f8eec9
[  364.200415][ T4881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.220032][ T4881] RSP: 002b:00007f5ed8d4e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  364.228456][ T4881] RAX: ffffffffffffffda RBX: 00007f5ed81e5fa0 RCX: 00007f5ed7f8eec9
[  364.236703][ T4881] RDX: 0000000024040084 RSI: 0000200000006040 RDI: 0000000000000003
[  364.244698][ T4881] RBP: 00007f5ed8d4e090 R08: 0000000000000000 R09: 0000000000000000
[  364.252697][ T4881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.260772][ T4881] R13: 00007f5ed81e6038 R14: 00007f5ed81e5fa0 R15: 00007ffd33929208
[  364.268758][ T4881]  </TASK>
[  364.277158][  T283] EXT4-fs (loop3): unmounting filesystem.
[  364.286791][ T4873] EXT4-fs (loop4): Remounting filesystem read-only
[  364.302260][ T4873] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1235: invalid indirect mapped block 12 (level 1)
[  364.321713][ T4873] EXT4-fs (loop4): Remounting filesystem read-only
[  364.328377][ T4873] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1235: invalid indirect mapped block 2 (level 2)
[  364.342576][ T4873] EXT4-fs (loop4): Remounting filesystem read-only
[  364.349406][ T4873] EXT4-fs (loop4): 1 truncate cleaned up
[  364.355233][ T4873] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  364.364498][ T4873] EXT4-fs (loop4): unmounting filesystem.
[  364.436409][ T4873] loop4: detected capacity change from 0 to 512
[  364.443925][ T4873] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  364.453145][ T4873] EXT4-fs (loop4): invalid journal inode
[  364.459099][ T4873] EXT4-fs (loop4): can't get journal size
[  364.466412][ T4873] EXT4-fs (loop4): 1 truncate cleaned up
[  364.486603][ T4873] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  364.501804][ T4873] EXT4-fs (loop4): unmounting filesystem.
[  364.752041][ T4897] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  365.227786][ T4910] loop4: detected capacity change from 0 to 256
[  365.259345][ T4910] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  367.996606][ T4937] device dummy0 entered promiscuous mode
[  368.729577][ T4937] device macsec1 entered promiscuous mode
[  368.751015][ T4937] device dummy0 left promiscuous mode
[  368.913423][ T4949] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  368.936503][ T4949] FAT-fs (loop7): unable to read boot sector
[  368.951271][ T4949] loop3: detected capacity change from 0 to 512
[  368.970660][ T4949] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  368.981163][ T4955] bridge: RTM_NEWNEIGH with invalid ether address
[  368.988815][ T4954] device pim6reg1 entered promiscuous mode
[  369.001290][ T4949] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  369.016532][ T4949] System zones: 1-12
[  369.021023][ T4949] EXT4-fs (loop3): orphan cleanup on readonly fs
[  369.036817][ T4949] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1255: bg 0: block 361: padding at end of block bitmap is not set
[  369.108788][ T4958] device syz_tun entered promiscuous mode
[  369.117772][ T4949] EXT4-fs (loop3): Remounting filesystem read-only
[  369.124332][ T4949] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  369.185350][ T4958] device syz_tun left promiscuous mode
[  369.194343][ T4949] EXT4-fs (loop3): Remounting filesystem read-only
[  369.209062][ T4949] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1255: invalid indirect mapped block 12 (level 1)
[  369.226412][ T4949] EXT4-fs (loop3): Remounting filesystem read-only
[  369.236618][ T4949] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1255: invalid indirect mapped block 2 (level 2)
[  369.257182][ T4949] EXT4-fs (loop3): Remounting filesystem read-only
[  369.263862][ T4949] EXT4-fs (loop3): 1 truncate cleaned up
[  369.292844][ T4949] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  369.314239][ T4949] EXT4-fs (loop3): unmounting filesystem.
[  369.339756][ T4967] tipc: Started in network mode
[  369.358830][ T4967] tipc: Node identity , cluster identity 4711
[  369.377879][ T4949] loop3: detected capacity change from 0 to 512
[  369.393362][ T4949] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  369.416036][ T4967] tipc: Failed to set node id, please configure manually
[  369.453645][ T4967] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  369.466706][ T4949] EXT4-fs (loop3): invalid journal inode
[  369.473051][ T4949] EXT4-fs (loop3): can't get journal size
[  369.507461][ T4949] EXT4-fs (loop3): 1 truncate cleaned up
[  369.514312][ T4949] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  369.534038][ T4949] EXT4-fs (loop3): unmounting filesystem.
[  369.603583][ T4974] 9pnet_fd: Insufficient options for proto=fd
[  370.435031][ T4976] device pim6reg1 entered promiscuous mode
[  370.474842][ T4976] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1263'.
[  370.521186][ T4976] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1263'.
[  370.551598][ T4976] device veth0 entered promiscuous mode
[  370.568805][ T4975] device veth0 left promiscuous mode
[  370.714647][ T4997] capability: warning: `syz.0.1270' uses deprecated v2 capabilities in a way that may be insecure
[  371.101346][ T5008] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1273'.
[  371.655643][ T5018] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  371.691187][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  371.760416][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth14: link becomes ready
[  372.055471][ T5033] loop0: detected capacity change from 0 to 128
[  372.155714][ T5033] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.196855][ T5033] EXT4-fs (loop0): Test dummy encryption mode enabled
[  372.218403][ T5033] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  372.237306][ T5033] ext4 filesystem being mounted at /233/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  372.322559][  T285] EXT4-fs (loop0): unmounting filesystem.
[  372.762775][ T5055] loop3: detected capacity change from 0 to 2048
[  372.782523][ T5055] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  372.791331][ T5055] ext4 filesystem being mounted at /271/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.842432][ T5055] EXT4-fs (loop3): shut down requested (1)
[  372.857561][   T28] kauditd_printk_skb: 60 callbacks suppressed
[  372.857576][   T28] audit: type=1400 audit(2000000003.630:333): avc:  denied  { read } for  pid=84 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  372.876574][ T5055] fs-verity: sha512 using implementation "sha512-avx2"
[  372.928110][  T283] EXT4-fs (loop3): unmounting filesystem.
[  372.951532][   T28] audit: type=1400 audit(2000000003.630:334): avc:  denied  { search } for  pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  373.022087][   T28] audit: type=1400 audit(2000000003.630:335): avc:  denied  { write } for  pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  373.105610][   T28] audit: type=1400 audit(2000000003.630:336): avc:  denied  { add_name } for  pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  373.153003][   T28] audit: type=1400 audit(2000000003.630:337): avc:  denied  { create } for  pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  373.174104][   T28] audit: type=1400 audit(2000000003.630:338): avc:  denied  { append open } for  pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  373.197754][   T28] audit: type=1400 audit(2000000003.630:339): avc:  denied  { getattr } for  pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  373.387155][ T5074] tipc: Started in network mode
[  373.409314][ T5074] tipc: Node identity , cluster identity 4711
[  373.435094][ T5074] tipc: Failed to set node id, please configure manually
[  373.471058][ T5074] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  373.928488][  T306] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  375.345946][ T5106] tipc: Started in network mode
[  375.351424][ T5106] tipc: Node identity , cluster identity 4711
[  375.357594][ T5106] tipc: Failed to set node id, please configure manually
[  375.364652][ T5106] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  375.397684][  T306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  375.439158][  T306] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  375.533120][  T306] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.555528][  T306] usb 3-1: config 0 descriptor??
[  375.576481][   T28] audit: type=1400 audit(2000000006.340:340): avc:  denied  { create } for  pid=5115 comm="syz.0.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  375.635568][   T28] audit: type=1400 audit(2000000006.340:341): avc:  denied  { write } for  pid=5115 comm="syz.0.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  376.323130][  T306] keytouch 0003:0926:3333.0004: fixing up Keytouch IEC report descriptor
[  376.333337][  T306] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0004/input/input22
[  376.440433][  T306] keytouch 0003:0926:3333.0004: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  376.736067][ T5137] loop3: detected capacity change from 0 to 256
[  376.754463][ T5137] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  376.767420][ T5139] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1310'.
[  376.796489][  T306] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  377.022727][ T5147] tipc: Started in network mode
[  377.027759][ T5147] tipc: Node identity , cluster identity 4711
[  377.033928][ T5147] tipc: Failed to set node id, please configure manually
[  377.041147][ T5147] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  377.247354][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.283585][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  377.303922][  T306] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  377.327838][  T306] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  377.353552][  T306] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.429273][  T306] usb 1-1: config 0 descriptor??
[  378.262801][ T5172] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1318'.
[  378.273037][   T28] audit: type=1400 audit(2000000009.040:342): avc:  denied  { map } for  pid=5165 comm="syz.3.1318" path="socket:[30449]" dev="sockfs" ino=30449 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  378.280130][  T306] plantronics 0003:047F:FFFF.0005: unknown main item tag 0xd
[  378.308553][  T306] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  378.318751][  T306] plantronics 0003:047F:FFFF.0005: hiddev96,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  378.348577][  T306] usb 1-1: USB disconnect, device number 14
[  378.381362][ T5175] fido_id[5175]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  378.420859][ T5177] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1321'.
[  378.443376][ T5179] bridge: RTM_NEWNEIGH with invalid ether address
[  378.521337][ T3692] usb 3-1: USB disconnect, device number 16
[  378.761819][ T5186] loop4: detected capacity change from 0 to 256
[  378.774747][ T5186] FAT-fs (loop4): Unrecognized mount option "shortname=l" or missing value
[  381.666581][  T525] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  381.883931][ T5207] tipc: Started in network mode
[  381.889269][ T5207] tipc: Node identity , cluster identity 4711
[  381.895442][ T5207] tipc: Failed to set node id, please configure manually
[  381.902855][ T5207] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  382.196500][  T525] usb 5-1: Using ep0 maxpacket: 32
[  382.203716][  T525] usb 5-1: device descriptor read/all, error -71
[  382.291449][ T5214] FAULT_INJECTION: forcing a failure.
[  382.291449][ T5214] name failslab, interval 1, probability 0, space 0, times 0
[  382.324580][ T5214] CPU: 0 PID: 5214 Comm: syz.2.1333 Not tainted syzkaller #0
[  382.332110][ T5214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  382.342401][ T5214] Call Trace:
[  382.345865][ T5214]  <TASK>
[  382.348829][ T5214]  __dump_stack+0x21/0x24
[  382.353247][ T5214]  dump_stack_lvl+0xee/0x150
[  382.357874][ T5214]  ? __cfi_dump_stack_lvl+0x8/0x8
[  382.362937][ T5214]  ? avc_has_perm+0x158/0x240
[  382.367731][ T5214]  dump_stack+0x15/0x24
[  382.371922][ T5214]  should_fail_ex+0x3d4/0x520
[  382.376643][ T5214]  __should_failslab+0xac/0xf0
[  382.381506][ T5214]  ? __kthread_create_on_node+0x123/0x520
[  382.387403][ T5214]  should_failslab+0x9/0x20
[  382.392121][ T5214]  __kmem_cache_alloc_node+0x3d/0x2c0
[  382.397559][ T5214]  ? __kthread_create_on_node+0x123/0x520
[  382.403617][ T5214]  kmalloc_trace+0x29/0xb0
[  382.408319][ T5214]  ? __cfi_vhost_worker+0x10/0x10
[  382.413579][ T5214]  __kthread_create_on_node+0x123/0x520
[  382.419169][ T5214]  ? kthread_create_on_node+0x120/0x120
[  382.424849][ T5214]  ? memcpy+0x56/0x70
[  382.428869][ T5214]  ? avc_has_extended_perms+0x95f/0xdc0
[  382.434474][ T5214]  ? __cfi_vhost_worker+0x10/0x10
[  382.439721][ T5214]  kthread_create_on_node+0xda/0x120
[  382.445060][ T5214]  ? __kasan_check_write+0x14/0x20
[  382.450240][ T5214]  ? __cfi_kthread_create_on_node+0x10/0x10
[  382.456260][ T5214]  ? _raw_spin_unlock+0x4c/0x70
[  382.461320][ T5214]  vhost_dev_set_owner+0x235/0xa20
[  382.466493][ T5214]  ? __cfi_vhost_dev_set_owner+0x10/0x10
[  382.472169][ T5214]  vhost_dev_ioctl+0xbe/0xf70
[  382.476889][ T5214]  ? has_cap_mac_admin+0x330/0x330
[  382.482105][ T5214]  ? security_file_permission+0x94/0xb0
[  382.487728][ T5214]  ? __cfi_vhost_dev_ioctl+0x10/0x10
[  382.493235][ T5214]  ? mutex_lock+0x8d/0x1a0
[  382.497682][ T5214]  ? __cfi_mutex_lock+0x10/0x10
[  382.502574][ T5214]  ? selinux_file_ioctl+0x377/0x480
[  382.507800][ T5214]  vhost_vsock_dev_ioctl+0x21d/0xd90
[  382.513236][ T5214]  ? __cfi_vhost_vsock_dev_ioctl+0x10/0x10
[  382.519167][ T5214]  ? __fget_files+0x2d5/0x330
[  382.523871][ T5214]  ? security_file_ioctl+0x95/0xc0
[  382.529012][ T5214]  ? __cfi_vhost_vsock_dev_ioctl+0x10/0x10
[  382.534863][ T5214]  __se_sys_ioctl+0x12f/0x1b0
[  382.539654][ T5214]  __x64_sys_ioctl+0x7b/0x90
[  382.544292][ T5214]  x64_sys_call+0x58b/0x9a0
[  382.548829][ T5214]  do_syscall_64+0x4c/0xa0
[  382.553280][ T5214]  ? clear_bhb_loop+0x30/0x80
[  382.557987][ T5214]  ? clear_bhb_loop+0x30/0x80
[  382.562702][ T5214]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  382.568638][ T5214] RIP: 0033:0x7f7f3338eec9
[  382.573082][ T5214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.592724][ T5214] RSP: 002b:00007f7f3431d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.601264][ T5214] RAX: ffffffffffffffda RBX: 00007f7f335e5fa0 RCX: 00007f7f3338eec9
[  382.609364][ T5214] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000006
[  382.617447][ T5214] RBP: 00007f7f3431d090 R08: 0000000000000000 R09: 0000000000000000
[  382.625449][ T5214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.633626][ T5214] R13: 00007f7f335e6038 R14: 00007f7f335e5fa0 R15: 00007ffee7b0c138
[  382.641649][ T5214]  </TASK>
[  382.696277][ T5224] overlayfs: failed to clone upperpath
[  382.704828][   T28] audit: type=1400 audit(2000000013.470:343): avc:  denied  { ioctl } for  pid=5213 comm="syz.2.1333" path="/dev/input/event2" dev="devtmpfs" ino=275 ioctlcmd=0x4593 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  382.768082][ T5227] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  382.785045][ T5227] FAT-fs (loop3): unable to read boot sector
[  383.189898][ T5233] loop4: detected capacity change from 0 to 1024
[  383.197080][ T5233] EXT4-fs: Ignoring removed bh option
[  383.202595][ T5233] EXT4-fs: Ignoring removed nomblk_io_submit option
[  384.859274][ T5233] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  386.144831][  T284] EXT4-fs (loop4): unmounting filesystem.
[  386.152892][ T5267] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  386.163083][ T5267] FAT-fs (loop1): unable to read boot sector
[  386.175080][ T5267] loop0: detected capacity change from 0 to 512
[  386.187890][ T5267] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  386.208985][ T5271] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  386.217126][ T5267] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  386.227632][ T5272] fuse: Bad value for 'fd'
[  386.229365][ T5267] System zones: 1-12
[  386.236876][ T5267] EXT4-fs (loop0): orphan cleanup on readonly fs
[  386.243641][ T5267] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1346: bg 0: block 361: padding at end of block bitmap is not set
[  386.266929][ T5267] EXT4-fs (loop0): Remounting filesystem read-only
[  386.285289][ T5267] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  386.312613][ T5277] overlayfs: './file0' not a directory
[  386.320575][ T1359] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  386.329307][ T5267] EXT4-fs (loop0): Remounting filesystem read-only
[  386.346371][ T1359] IPv6: ADDRCONF(NETDEV_CHANGE): veth17: link becomes ready
[  386.358480][ T5267] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1346: invalid indirect mapped block 12 (level 1)
[  386.398891][ T1359] IPv6: ADDRCONF(NETDEV_CHANGE): veth16: link becomes ready
[  386.406951][ T1359] IPv6: ADDRCONF(NETDEV_CHANGE): veth19: link becomes ready
[  386.415214][ T1359] IPv6: ADDRCONF(NETDEV_CHANGE): veth18: link becomes ready
[  386.433090][ T5267] EXT4-fs (loop0): Remounting filesystem read-only
[  386.448152][ T5267] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1346: invalid indirect mapped block 2 (level 2)
[  386.466221][ T5267] EXT4-fs (loop0): Remounting filesystem read-only
[  386.474713][ T5267] EXT4-fs (loop0): 1 truncate cleaned up
[  386.496892][ T5267] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  386.580417][ T5267] EXT4-fs (loop0): unmounting filesystem.
[  386.818992][ T5267] loop0: detected capacity change from 0 to 512
[  386.825880][ T5267] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  386.835298][ T5267] EXT4-fs (loop0): invalid journal inode
[  386.841324][ T5267] EXT4-fs (loop0): can't get journal size
[  386.848563][ T5267] EXT4-fs (loop0): 1 truncate cleaned up
[  386.854333][ T5267] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  386.864000][ T5267] EXT4-fs (loop0): unmounting filesystem.
[  386.870617][ T5288] loop4: detected capacity change from 0 to 512
[  386.877914][ T5288] EXT4-fs: Ignoring removed orlov option
[  386.883640][ T5288] EXT4-fs: dax option not supported
[  386.907265][ T5290] loop4: detected capacity change from 0 to 256
[  386.914130][ T5290] FAT-fs (loop4): Unrecognized mount option "shortname=l" or missing value
[  387.638416][ T3692] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  387.783568][ T5306] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  387.837287][ T3692] usb 5-1: Using ep0 maxpacket: 32
[  387.843658][ T3692] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.035961][ T3692] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.048192][ T5313] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  388.056487][ T3692] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  388.065573][ T3692] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.074462][ T3692] usb 5-1: config 0 descriptor??
[  388.087185][ T3692] hub 5-1:0.0: USB hub found
[  388.588578][ T3692] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  388.611051][ T3692] usbhid 5-1:0.0: can't add hid device: -71
[  388.618784][ T3692] usbhid: probe of 5-1:0.0 failed with error -71
[  388.657564][ T3692] usb 5-1: USB disconnect, device number 21
[  388.756235][   T28] audit: type=1400 audit(2000000019.520:344): avc:  denied  { bind } for  pid=5318 comm="syz.2.1361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  388.781692][ T5323] FAULT_INJECTION: forcing a failure.
[  388.781692][ T5323] name failslab, interval 1, probability 0, space 0, times 0
[  388.795023][ T5323] CPU: 1 PID: 5323 Comm: syz.2.1361 Not tainted syzkaller #0
[  388.802436][ T5323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  388.812784][ T5323] Call Trace:
[  388.816106][ T5323]  <TASK>
[  388.819051][ T5323]  __dump_stack+0x21/0x24
[  388.823424][ T5323]  dump_stack_lvl+0xee/0x150
[  388.828038][ T5323]  ? __cfi_dump_stack_lvl+0x8/0x8
[  388.833089][ T5323]  dump_stack+0x15/0x24
[  388.837261][ T5323]  should_fail_ex+0x3d4/0x520
[  388.841975][ T5323]  __should_failslab+0xac/0xf0
[  388.846759][ T5323]  ? tracepoint_probe_unregister+0x1e6/0x8b0
[  388.852829][ T5323]  should_failslab+0x9/0x20
[  388.857348][ T5323]  __kmem_cache_alloc_node+0x3d/0x2c0
[  388.862742][ T5323]  ? __cfi_mutex_lock+0x10/0x10
[  388.867621][ T5323]  ? delete_node+0x2b3/0xa60
[  388.872407][ T5323]  ? tracepoint_probe_unregister+0x1e6/0x8b0
[  388.878407][ T5323]  __kmalloc+0xa1/0x1e0
[  388.882586][ T5323]  ? __cfi___bpf_trace_sched_switch+0x10/0x10
[  388.888805][ T5323]  tracepoint_probe_unregister+0x1e6/0x8b0
[  388.894666][ T5323]  bpf_probe_unregister+0x61/0x70
[  388.899799][ T5323]  bpf_raw_tp_link_release+0x63/0x90
[  388.905227][ T5323]  bpf_link_free+0x13a/0x390
[  388.909841][ T5323]  ? irqentry_exit+0x37/0x40
[  388.914458][ T5323]  ? sysvec_reschedule_ipi+0x78/0x80
[  388.919770][ T5323]  ? bpf_link_put_deferred+0x20/0x20
[  388.925085][ T5323]  bpf_link_release+0x15f/0x170
[  388.929975][ T5323]  ? __cfi_bpf_link_release+0x10/0x10
[  388.935827][ T5323]  __fput+0x1fc/0x8f0
[  388.939859][ T5323]  ____fput+0x15/0x20
[  388.943888][ T5323]  task_work_run+0x1db/0x240
[  388.948523][ T5323]  ? __cfi_task_work_run+0x10/0x10
[  388.953677][ T5323]  ? __cfi___close_range+0x10/0x10
[  388.958830][ T5323]  ? __kasan_check_read+0x11/0x20
[  388.963997][ T5323]  exit_to_user_mode_loop+0x9b/0xb0
[  388.966993][   T28] audit: type=1400 audit(2000000019.540:345): avc:  denied  { connect } for  pid=5318 comm="syz.2.1361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  388.969233][ T5323]  exit_to_user_mode_prepare+0x5a/0xa0
[  388.994293][ T5323]  syscall_exit_to_user_mode+0x1a/0x30
[  388.999764][ T5323]  do_syscall_64+0x58/0xa0
[  389.004182][ T5323]  ? clear_bhb_loop+0x30/0x80
[  389.008877][ T5323]  ? clear_bhb_loop+0x30/0x80
[  389.013647][ T5323]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  389.019575][ T5323] RIP: 0033:0x7f7f3338eec9
[  389.024068][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.043690][ T5323] RSP: 002b:00007f7f342fc038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  389.052110][ T5323] RAX: 0000000000000000 RBX: 00007f7f335e6090 RCX: 00007f7f3338eec9
[  389.060086][ T5323] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000000
[  389.068065][ T5323] RBP: 00007f7f342fc090 R08: 0000000000000000 R09: 0000000000000000
[  389.076140][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.084338][ T5323] R13: 00007f7f335e6128 R14: 00007f7f335e6090 R15: 00007ffee7b0c138
[  389.092324][ T5323]  </TASK>
[  389.096321][ T5323] CFI failure at __traceiter_sched_switch+0x9b/0xd0 (target: tp_stub_func+0x0/0x10; expected type: 0xee1f7a69)
[  389.097737][ T5289] CFI failure at __traceiter_sched_switch+0x9b/0xd0 (target: tp_stub_func+0x0/0x10; expected type: 0xee1f7a69)
[  389.108191][ T5323] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  389.125959][ T5323] CPU: 1 PID: 5323 Comm: syz.2.1361 Not tainted syzkaller #0
[  389.133360][ T5323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  389.143433][ T5323] RIP: 0010:__traceiter_sched_switch+0x9b/0xd0
[  389.149639][ T5323] Code: 80 3c 30 00 74 05 e8 04 74 69 00 49 8b 7d 08 44 89 e6 48 8b 55 c8 48 8b 4d c0 44 8b 45 d4 41 ba 97 85 e0 11 45 03 57 fc 74 02 <0f> 0b 41 ff d7 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74
[  389.169249][ T5323] RSP: 0018:ffffc900009d7850 EFLAGS: 00010096
[  389.175318][ T5323] RAX: 1ffff110234f8d86 RBX: ffff88811a7c6c28 RCX: ffff888114e1a880
[  389.183377][ T5323] RDX: ffff888119259440 RSI: 0000000000000001 RDI: ffffc90000a67000
[  389.191355][ T5323] RBP: ffffc900009d7890 R08: 0000000000000000 R09: fffffbfff0ee4dce
[  389.199370][ T5323] R10: 00000000b720eca3 R11: 1ffffffff0ee4dcd R12: 0000000000000001
[  389.207344][ T5323] R13: ffff88811a7c6c28 R14: dffffc0000000000 R15: ffffffff81713a50
[  389.215311][ T5323] FS:  00007f7f342fc6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  389.224235][ T5323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  389.230825][ T5323] CR2: 00007f7f342fcd58 CR3: 0000000121378000 CR4: 00000000003526a0
[  389.238806][ T5323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  389.246861][ T5323] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  389.254833][ T5323] Call Trace:
[  389.258115][ T5323]  <TASK>
[  389.261051][ T5323]  __schedule+0x1263/0x14e0
[  389.265581][ T5323]  ? release_firmware_map_entry+0x194/0x194
[  389.271615][ T5323]  ? ttwu_do_activate+0x174/0x280
[  389.276657][ T5323]  ? preempt_schedule+0xa7/0xb0
[  389.281520][ T5323]  preempt_schedule_common+0x9b/0xf0
[  389.286819][ T5323]  preempt_schedule+0xa7/0xb0
[  389.291511][ T5323]  ? __cfi_preempt_schedule+0x10/0x10
[  389.296952][ T5323]  ? autoremove_wake_function+0x37/0x110
[  389.302595][ T5323]  preempt_schedule_thunk+0x16/0x18
[  389.307812][ T5323]  _raw_spin_unlock_irqrestore+0x6f/0x80
[  389.313451][ T5323]  __wake_up+0x11b/0x190
[  389.317910][ T5323]  ? __cfi___wake_up+0x10/0x10
[  389.322787][ T5323]  ? __cfi__raw_write_lock_bh+0x10/0x10
[  389.328354][ T5323]  unix_release_sock+0x562/0xee0
[  389.333370][ T5323]  ? unix_stream_read_skb+0x2e0/0x2e0
[  389.338755][ T5323]  ? clear_nonspinnable+0x60/0x60
[  389.343790][ T5323]  unix_release+0x9d/0xd0
[  389.348215][ T5323]  sock_close+0xf1/0x290
[  389.352465][ T5323]  ? __cfi_sock_close+0x10/0x10
[  389.357328][ T5323]  __fput+0x1fc/0x8f0
[  389.361337][ T5323]  ____fput+0x15/0x20
[  389.365345][ T5323]  task_work_run+0x1db/0x240
[  389.369960][ T5323]  ? __cfi_task_work_run+0x10/0x10
[  389.375248][ T5323]  ? __cfi___close_range+0x10/0x10
[  389.380359][ T5323]  ? __kasan_check_read+0x11/0x20
[  389.385378][ T5323]  exit_to_user_mode_loop+0x9b/0xb0
[  389.390574][ T5323]  exit_to_user_mode_prepare+0x5a/0xa0
[  389.396140][ T5323]  syscall_exit_to_user_mode+0x1a/0x30
[  389.401632][ T5323]  do_syscall_64+0x58/0xa0
[  389.406046][ T5323]  ? clear_bhb_loop+0x30/0x80
[  389.410741][ T5323]  ? clear_bhb_loop+0x30/0x80
[  389.415417][ T5323]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  389.421306][ T5323] RIP: 0033:0x7f7f3338eec9
[  389.425723][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.445322][ T5323] RSP: 002b:00007f7f342fc038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  389.453730][ T5323] RAX: 0000000000000000 RBX: 00007f7f335e6090 RCX: 00007f7f3338eec9
[  389.461694][ T5323] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000000
[  389.469677][ T5323] RBP: 00007f7f342fc090 R08: 0000000000000000 R09: 0000000000000000
[  389.477719][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.485705][ T5323] R13: 00007f7f335e6128 R14: 00007f7f335e6090 R15: 00007ffee7b0c138
[  389.493693][ T5323]  </TASK>
[  389.496719][ T5323] Modules linked in:
[  389.500688][ T5323] ---[ end trace 0000000000000000 ]---
[  389.500722][ T5289] invalid opcode: 0000 [#2] PREEMPT SMP KASAN
[  389.506191][ T5323] RIP: 0010:__traceiter_sched_switch+0x9b/0xd0
[  389.512260][ T5289] CPU: 0 PID: 5289 Comm: syz.4.1352 Tainted: G      D            syzkaller #0
[  389.518406][ T5323] Code: 80 3c 30 00 74 05 e8 04 74 69 00 49 8b 7d 08 44 89 e6 48 8b 55 c8 48 8b 4d c0 44 8b 45 d4 41 ba 97 85 e0 11 45 03 57 fc 74 02 <0f> 0b 41 ff d7 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74
[  389.527321][ T5289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  389.546927][ T5323] RSP: 0018:ffffc900009d7850 EFLAGS: 00010096
[  389.556988][ T5289] RIP: 0010:__traceiter_sched_switch+0x9b/0xd0
[  389.563072][ T5323] RAX: 1ffff110234f8d86 RBX: ffff88811a7c6c28 RCX: ffff888114e1a880
[  389.569221][ T5289] Code: 80 3c 30 00 74 05 e8 04 74 69 00 49 8b 7d 08 44 89 e6 48 8b 55 c8 48 8b 4d c0 44 8b 45 d4 41 ba 97 85 e0 11 45 03 57 fc 74 02 <0f> 0b 41 ff d7 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74
[  389.577189][ T5323] RDX: ffff888119259440 RSI: 0000000000000001 RDI: ffffc90000a67000
[  389.596836][ T5289] RSP: 0018:ffffc9000075fa30 EFLAGS: 00010096
[  389.604813][ T5323] RBP: ffffc900009d7890 R08: 0000000000000000 R09: fffffbfff0ee4dce
[  389.604834][ T5323] R10: 00000000b720eca3 R11: 1ffffffff0ee4dcd R12: 0000000000000001
[  389.610893][ T5289] 
[  389.610899][ T5289] RAX: 1ffff110234f8d86 RBX: ffff88811a7c6c28 RCX: ffff88811a712880
[  389.618857][ T5323] R13: ffff88811a7c6c28 R14: dffffc0000000000 R15: ffffffff81713a50
[  389.626822][ T5289] RDX: ffff88811dc62880 RSI: 0000000000000000 RDI: ffffc90000a67000
[  389.629146][ T5323] FS:  00007f7f342fc6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  389.637114][ T5289] RBP: ffffc9000075fa70 R08: 0000000000002001 R09: fffffbfff0ee4dce
[  389.645343][ T5323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  389.653307][ T5289] R10: 00000000b720eca3 R11: 1ffffffff0ee4dcd R12: 0000000000000000
[  389.662403][ T5323] CR2: 00007f7f342fcd58 CR3: 0000000121378000 CR4: 00000000003526a0
[  389.670370][ T5289] R13: ffff88811a7c6c28 R14: dffffc0000000000 R15: ffffffff81713a50
[  389.677079][ T5323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  389.685062][ T5289] FS:  000055556663c500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  389.693045][ T5323] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  389.701027][ T5289] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  389.709783][ T5323] Kernel panic - not syncing: Fatal exception
[  389.718746][ T5289] CR2: 0000001b2eb11ff8 CR3: 000000011e6d5000 CR4: 00000000003526b0
[  389.718768][ T5289] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  389.718779][ T5289] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  389.718792][ T5289] Call Trace:
[  389.718800][ T5289]  <TASK>
[  389.718810][ T5289]  __schedule+0x1263/0x14e0
[  389.718839][ T5289]  ? release_firmware_map_entry+0x194/0x194
[  389.718866][ T5289]  ? hrtimer_start_range_ns+0xada/0xc10
[  389.718981][ T5289]  schedule+0xbd/0x170
[  389.719000][ T5289]  do_nanosleep+0x15f/0x590
[  389.719018][ T5289]  ? usleep_range_state+0x130/0x130
[  389.719034][ T5289]  ? memset+0x35/0x40
[  389.719050][ T5289]  ? hrtimer_init_sleeper+0x10c/0x370
[  389.719076][ T5289]  hrtimer_nanosleep+0x134/0x310
[  389.719103][ T5289]  ? __cfi_hrtimer_nanosleep+0x10/0x10
[  389.719129][ T5289]  ? __cfi_hrtimer_wakeup+0x10/0x10
[  389.719157][ T5289]  ? get_timespec64+0x10e/0x1a0
[  389.719183][ T5289]  ? __cfi_get_timespec64+0x10/0x10
[  389.719210][ T5289]  common_nsleep+0x8f/0xb0
[  389.719266][ T5289]  __se_sys_clock_nanosleep+0x2f7/0x380
[  389.719287][ T5289]  ? __x64_sys_clock_nanosleep+0xb0/0xb0
[  389.719307][ T5289]  ? do_user_addr_fault+0x9ac/0x1050
[  389.719332][ T5289]  __x64_sys_clock_nanosleep+0x9b/0xb0
[  389.719353][ T5289]  x64_sys_call+0x186/0x9a0
[  389.719374][ T5289]  do_syscall_64+0x4c/0xa0
[  389.719393][ T5289]  ? clear_bhb_loop+0x30/0x80
[  389.719417][ T5289]  ? clear_bhb_loop+0x30/0x80
[  389.719440][ T5289]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  389.719462][ T5289] RIP: 0033:0x7f5350fc1785
[  389.719479][ T5289] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[  389.719496][ T5289] RSP: 002b:00007ffee3e6d0a0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  389.719515][ T5289] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f5350fc1785
[  389.719528][ T5289] RDX: 00007ffee3e6d0e0 RSI: 0000000000000000 RDI: 0000000000000000
[  389.719541][ T5289] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000010cf0
[  389.719552][ T5289] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f53511e609c
[  389.719564][ T5289] R13: 00007f53511e6090 R14: ffffffffffffffff R15: 00007ffee3e6d220
[  389.719582][ T5289]  </TASK>
[  389.719588][ T5289] Modules linked in:
[  389.727748][ T5289] ---[ end trace 0000000000000000 ]---
[  389.727765][ T5289] RIP: 0010:__traceiter_sched_switch+0x9b/0xd0
[  389.727801][ T5289] Code: 80 3c 30 00 74 05 e8 04 74 69 00 49 8b 7d 08 44 89 e6 48 8b 55 c8 48 8b 4d c0 44 8b 45 d4 41 ba 97 85 e0 11 45 03 57 fc 74 02 <0f> 0b 41 ff d7 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74
[  389.727818][ T5289] RSP: 0018:ffffc900009d7850 EFLAGS: 00010096
[  389.727835][ T5289] RAX: 1ffff110234f8d86 RBX: ffff88811a7c6c28 RCX: ffff888114e1a880
[  389.727850][ T5289] RDX: ffff888119259440 RSI: 0000000000000001 RDI: ffffc90000a67000
[  389.727864][ T5289] RBP: ffffc900009d7890 R08: 0000000000000000 R09: fffffbfff0ee4dce
[  389.727878][ T5289] R10: 00000000b720eca3 R11: 1ffffffff0ee4dcd R12: 0000000000000001
[  389.727891][ T5289] R13: ffff88811a7c6c28 R14: dffffc0000000000 R15: ffffffff81713a50
[  389.727905][ T5289] FS:  000055556663c500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  389.727922][ T5289] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  389.727935][ T5289] CR2: 0000001b2eb11ff8 CR3: 000000011e6d5000 CR4: 00000000003526b0
[  389.727951][ T5289] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  389.727962][ T5289] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  390.906072][ T5323] Shutting down cpus with NMI
[  391.266372][ T5323] Kernel Offset: disabled
[  391.270699][ T5323] Rebooting in 86400 seconds..