last executing test programs:

2m2.143485938s ago: executing program 32 (id=83):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)

2m1.117514445s ago: executing program 33 (id=118):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0xa000000, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="020a0600060000002abd7000ffdbdf2504001743"], 0x30}}, 0x44880)

1m53.741569394s ago: executing program 34 (id=370):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000200)=r1}, 0x20)
r2 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x5, @local, 0x1}, 0x1c)
write$binfmt_aout(r2, 0x0, 0x28)

1m46.583464491s ago: executing program 35 (id=566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
openat(0xffffffffffffff9c, &(0x7f0000000c80)='./file0\x00', 0x840, 0xe1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r2, &(0x7f0000000000)='./file0\x00', 0x5)

1m36.884832848s ago: executing program 36 (id=835):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xbb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
listen(r1, 0x3)

1m29.933094461s ago: executing program 37 (id=1035):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)=[{0x0, 0x1b8}], 0x1}, 0x0)

54.675244146s ago: executing program 38 (id=2257):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000004000000029600008500000001000000", @ANYRES32, @ANYBLOB="000000000000000051b995eac651bac1c0e42b00", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r2}, 0x38)

35.062086026s ago: executing program 2 (id=2852):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000170000009500000000000000133629fb8c30"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000400)={r2, r1, 0x25, 0x2, @void}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3}, &(0x7f0000000500), &(0x7f0000000540)}, 0x20)
syz_emit_ethernet(0x36, &(0x7f0000000100)={@link_local, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "fca33f", 0x0, 0x2c, 0x0, @remote, @local}}}}, 0x0)

35.048548436s ago: executing program 2 (id=2853):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

34.985639858s ago: executing program 2 (id=2854):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000340), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f0000000d00)=[{&(0x7f0000000100)="89e7ee2c7cdad9b4b47380c988ca", 0xe}], 0x1)

34.920742519s ago: executing program 2 (id=2856):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x60400)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18d811, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

34.906237539s ago: executing program 2 (id=2857):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x3, 0x1, 0x201}, 0x14}, 0x1, 0x0, 0x0, 0x9884}, 0x80)

34.81359356s ago: executing program 2 (id=2858):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x842080, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000180)=@known='trusted.syz\x00')

34.81342485s ago: executing program 39 (id=2858):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x842080, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000180)=@known='trusted.syz\x00')

33.645716699s ago: executing program 6 (id=2890):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
shutdown(r0, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCDARP(r3, 0x8953, &(0x7f0000000100)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x0, @remote}, 0x0, {0x2, 0xffff, @initdev={0xac, 0x1e, 0x2, 0x0}}, 'syz_tun\x00'})

33.61727167s ago: executing program 6 (id=2891):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))

33.59620081s ago: executing program 6 (id=2892):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x48, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000000))

33.572238941s ago: executing program 6 (id=2893):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000080), 0x2, 0x51a, &(0x7f0000000a00)="$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")
syz_clone(0x44208400, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
ioctl$RTC_SET_TIME(r0, 0x5452, &(0x7f0000000000)={0x3e, 0x7, 0x5, 0x10, 0xfffffffe, 0x3, 0x0, 0x11, 0x1})

33.352451224s ago: executing program 6 (id=2897):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)

33.121603408s ago: executing program 6 (id=2903):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x20802, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000140), 0x12)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000040))

33.121461278s ago: executing program 40 (id=2903):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x20802, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000140), 0x12)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000040))

33.078256649s ago: executing program 8 (id=2906):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x1c}, 0x1c}}, 0x40)

33.049624169s ago: executing program 8 (id=2907):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
socket(0xa, 0x2400000001, 0x0)
openat$khugepaged_scan(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001100)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac85800000000000000024e16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0fe8a7d06d7535f7866907dc6751dfb292f7d3acec77f5efad9c11650300000000000000649c1cfd138d5521f9451759c3421eed73d5661cfeecf9c66cf6dd6dcd54c3b3ff02000000d7c983c044c03bf3cc2367a48dfe3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff050011bbecc2f4a37c9af2551ce935b0f327cb3f011a7d069111d5a34ed09baafa9e87110bd5602e2fd5234712596b696418f163d1a13ed38ae89d24e1cebfba2fc7925bfacbb031e7743f541cd0aed4af7588c8e1b44ccb19e810879b70a70000000000000000000000d7900a820b63278f4e9a217b98000000002a92895614cd50cbe43a1ed25268816b00000000000009d27d753a30a1420cfd9e1f84d8271ff6606b2a44bc47b24a48435bd8a568669596e9e08679b3ce48e90defb6670c3d62ad0a97aec773713a66b207000000000000001d24291c25449f106a99893ed20fa7a050fbbef90327e827e513e96068fd1e8a43e89f9c050022a961546ed5365470fa503c1fac35b903e10c62bebc943c17ff1432d0881406bc176e3e69ee52b59d13182e1f24ed200ada12f7a1525320e71666f472a97214d0b2874df30ed5eb1affb87ba55b2d72078e9f40e4ffff06aabca77e64c988dd413230d60a7f7681314df1c2a0f4249c7be5329ac624fb2997df9e6867053a4b239d17ba83b498812a8f57b9b52ebc8b327a967e41f61fe4382601bff5f5dbcd3d50a065bcc67943ba05f3a5366ca6d291f931d9cde41bdabdae4717317621abaa7179e2d44f8ebca654f9e4571963a3f198769e309fc99f6320f47140bb9a5e359804c2653d19462139d5c505dc6e4f178c9a098b51333cccfe0d2eb41dd079de3cfa60365787ca4b8eb920a06969c5da49fc87d37f18205f4b5c0f44d16a2d9f2bc894dfd78e819e54e79eb5ceb91451149e099e47b94fd53ed2dd33d43d8c681e027175e8d281ba4ac708543bc3f9e8e35532b7b90eee5df24d5ec9cd4e33a79f5b123cf15edeb8b0ee7cafbfebb907ccee427f3616d6fd9015432977a55aa000"/849], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
mlockall(0x7)
munlockall()

32.943373661s ago: executing program 8 (id=2908):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x1a00040, &(0x7f0000000100)={[{@utf8}, {@rodir}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@shortname_win95}, {@uni_xlateno}, {@fat=@nocase}, {@fat=@codepage={'codepage', 0x3d, '737'}}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}]}, 0x3, 0x350, &(0x7f0000000580)="$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")
process_vm_writev(0x0, &(0x7f0000000100)=[{&(0x7f0000000040)=""/170, 0xaa}], 0x1, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
rename(0x0, 0x0)

32.729134135s ago: executing program 8 (id=2911):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x21891c, &(0x7f0000000080)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200}}, {@noblock_validity}, {@mblk_io_submit}, {@nodiscard}, {@noinit_itable}, {@abort}, {@nouid32}, {@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xf}, 0x32}]}, 0x1c, 0x4f1, &(0x7f0000000b40)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000067c0), 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="78000000000000000200000000000004ff00000000000013000045c33a0a1b351f"], 0x0, 0x0, 0x0, 0x0})
getdents(r2, 0x0, 0x0)

32.268796872s ago: executing program 8 (id=2923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000300)={[{@mblk_io_submit}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@nodelalloc}, {@acl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}], [{@pcr={'pcr', 0x3d, 0x18}}, {@dont_measure}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnHy2zb2TXi6X27tpLpdLC+I0raTYIthKxY0LQbdCQzopIdMPkkhNmsVE/wFR14IbQS1KF3bdjYJbN1q3FhdCkdgoiGjkzEeSJjNJ2k5yYvL7wZvzvvOcOe/z5DBzzgszE8CeNZD9SSMORcT5JKJQfzyNiO5qrzeiUttvYX525Jf52ZEkFhdf/jGJJCLuz8+ONI6V1LcH6oPeiPjquST+8ebaeSenZ8aHy+XSRH18bOrS1WOT0zNPjl0avli6WLp8/OTTQyeGTg6eGmpbrb9+d+bWz/994fvKbx/9fuOndz5I4kz01WMr66hX/dgGYmDpf7JSZ0QMt+H4O0FHvZ6VdSadGzwp3eKkAABoKV1xD/evKERHLN+8FeLzr3NNDgAAAGiLxY6IRQAAAGCXS6z/AQAAYJdrfA7g/vzsSKPl+4mE7XXvbET01+pfqLdapDMq1W1vdEXE/vtJrPxaa1J72mMbiIi73576NGvR5HvIW60yFxH/bnb+k2r9/fVvQq+uP42IwTbMP7Bq/Feq/0wb5s+7fgD2pttnaxeytde/dOn+J5pc/zqbXLseRd7Xv8b938Ka+7/l+jta3P+9tMk5rn/43rVWsaz+Z249/0mjZfNn28cq6iHcm4v4T2ez+pOl+pMW9Z/f5ByFP66VWsXyrn/x/Ygj0bz+hmT93yc6NjpWLg3W/jadY+7LoY9bzZ93/dn539+i/o3O/9UHjtT6R31ePXfuZqvYxvWnP3Qnr1R73fVHXh+empo4HtGdvLj28RPr19vYp3GMrP6j/1v/9d+s/uw9oVL/P2SVz9W32fiNVXM+e+P6Z+vVn6398jz/Fx7x/L+1yTn+/8XbR1vFVq5/s5bNfzeprYUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCGNiL5I0mJEJNV+mhaLEQci4p+xPy1fmZx6YvTKa5cvZLGI/uhKR8fKpcGIKNTGSTY+Xu0vj0+sGj8VEQcj4t3Cvuq4OHKlfCHv4gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhyICL6IkmLEZFGxEIhTYvFvLMCAAAA2q4/7wQAAACALWf9DwAAALuf9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb7ODh23eSiKic3ldtme56rCvXzICtluadAJCbjrwTAHLTmXcCQG4eco3vdgF2oWSDeG/LSE/bcwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg5zpy6PadJCIqp/dVW6a7Hutq+ozD25gdsJXSvBMActOxXrBz+/IAtp+XOOxdzdf4wF6SbBDvXd6n8mCkZ8tyAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDn6au2JC1GRFrtp2mxGPG3iOiPrmR0rFwajIi/R8Q3ha6ebNyTd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC03eT0zPhwuVya0NHRybeT7Iw0ap2835kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMjD5PTM+HC5XJqYzDsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIG+T0zPjw+VyaWITnZsPs/OKTt41AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQnz8DAAD//9b4DfQ=")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x400}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

31.931886887s ago: executing program 8 (id=2932):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)={'c', ' *:* ', 'r\x00'}, 0x8)
write$tun(r0, &(0x7f0000001380)={@val={0x6f01, 0x800}, @val={0x1, 0x4, 0x0, 0x0, 0x20}, @mpls={[], @ipv4=@gre={{0x5, 0x4, 0x3, 0x33, 0x58, 0x64, 0x0, 0x4, 0x2f, 0x0, @loopback, @private=0x3}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x2}, {0x1, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0x8, 0x88be, 0x2, {{0xc, 0x1, 0x6b, 0x2, 0x0, 0x2, 0x2, 0x1}, 0x1, {0x3}}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x4, 0x0, 0x0, 0x2, 0x5, 0x2}, 0x2, {0x8, 0x6518, 0x2, 0x13, 0x0, 0x0, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x1}}}}}, 0x66)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f0000000080), &(0x7f0000000280)=@tcp6, 0x1}, 0x20)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

31.897601848s ago: executing program 41 (id=2932):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)={'c', ' *:* ', 'r\x00'}, 0x8)
write$tun(r0, &(0x7f0000001380)={@val={0x6f01, 0x800}, @val={0x1, 0x4, 0x0, 0x0, 0x20}, @mpls={[], @ipv4=@gre={{0x5, 0x4, 0x3, 0x33, 0x58, 0x64, 0x0, 0x4, 0x2f, 0x0, @loopback, @private=0x3}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x2}, {0x1, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0x8, 0x88be, 0x2, {{0xc, 0x1, 0x6b, 0x2, 0x0, 0x2, 0x2, 0x1}, 0x1, {0x3}}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x4, 0x0, 0x0, 0x2, 0x5, 0x2}, 0x2, {0x8, 0x6518, 0x2, 0x13, 0x0, 0x0, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x1}}}}}, 0x66)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f0000000080), &(0x7f0000000280)=@tcp6, 0x1}, 0x20)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

29.894639311s ago: executing program 3 (id=2990):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20181, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x528, 0x1a0, 0x388, 0xd0, 0x0, 0x0, 0x458, 0x458, 0x458, 0x458, 0x458, 0x6, 0x0, {[{{@ipv6={@empty, @loopback, [0x0, 0x0, 0xffffffff], [0xffffffff, 0x0, 0xff], 'vxcan1\x00', 'dvmrp0\x00', {}, {}, 0x3b}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x96e}}}, {{@ipv6={@mcast2, @rand_addr=' \x01\x00', [0xffffff00], [0x0, 0xffffff00, 0x0, 0xffffffff], 'batadv_slave_1\x00', 'syzkaller0\x00', {}, {}, 0x2}, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x4}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x1a0}}, {{@ipv6={@dev={0xfe, 0x80, '\x00', 0x1c}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [], [0xff, 0x0, 0xff], 'vxcan1\x00', 'vlan1\x00', {}, {0xff}, 0x62, 0x0, 0x0, 0x1}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@remote, @ipv4=@initdev={0xac, 0x1e, 0xfc, 0x0}, 0x0, 0x2}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x588)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x48, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x4)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x41, 0x3, 0x3, '\x00', 0x8})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

29.777548413s ago: executing program 3 (id=2991):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r2=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r2, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r0, &(0x7f0000002140)={0x20, 0x0, r3, {0x0, 0x0, 0x2b085bdb}}, 0x20)
read$FUSE(r0, &(0x7f000000ce00)={0x2020, 0x0, <r4=>0x0}, 0x2020)
getdents64(r1, 0x0, 0x300)
write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0x10, 0x0, r4}, 0x10)

29.600207355s ago: executing program 3 (id=2992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000000))

29.521786997s ago: executing program 3 (id=2993):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000400)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)

29.488671048s ago: executing program 3 (id=2995):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff6f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000340)='leases_conflict\x00', r2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

29.381554239s ago: executing program 3 (id=2996):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="17000000000000000084000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000006c0), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000400)={r0, 0x0, 0x20000000}, 0x20)

29.3452081s ago: executing program 42 (id=2996):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="17000000000000000084000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000006c0), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000400)={r0, 0x0, 0x20000000}, 0x20)

4.731045622s ago: executing program 5 (id=3744):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x80, &(0x7f0000000240), 0x1, 0x52c, &(0x7f0000002080)="$eJzs3d9rLFcdAPDvzGbT3HtzzVZFasW22EpS7N1NGtsGkbaC6FNBre9pTDYhZJMN2U29CUUTBF8FERV88skXoX+AIP0TRCjou6goorf6qB3Z2Yl2091k701y997k84HJnjNnZr7nDNnZ+XGYE8CV9VREvBoRpYh4NiKmivlpRExExGInc9Bd7r07by13piSy7PW/J5EU84621cmPRcSN7ir5+t/4asS3kg/Hbe3tbyw1GvWdIl9rb27XWnv7t9Y3l9bqa/Wt+fm5FxdeWnhhYTYrnKmdlYh4+ct//vEPfvGVl3/93Lf/sPjXme90qvXFTySfSiLeTiKWzxRggG7Ty/m+ONLZRzsXEWwESkV7yqVR1wQAgGF0zvM/GhGfyc//p6KUn80BAAAAl0n2ymT8O4nIBps5oQwAAAB4CKQRMRlJWi36AkxGmlar3T68H4/raaPZan9utbm7tdIpi6hEOV1db9Rni77ClSgnnfxc0cf2KP/8sfx8RDwaET+aupbnq8vNxsqob34AAADAFXHjyd7r/39NpXkaAAAAuGQqAzMAAADAZdHvkv/7N0dQEQAAAODCHA63mJEBAAAA4OH0tdde60zZ0TjeK2/u7W4037y1Um9tVDd3l6vLzZ3t6lqzuZa/s2/ztO01ms3tz8fW7u1au95q11p7+4ubzd2t9uJ6zxDYAAAAwH306JPv/D6JiIMvXMunKN4DCNDjT6OuAHCeSqOuADAyeZ/eN0ZdC2AUyqcuodc/XHbJKeUDO+/85vzrAgAAXIzpT/Y8/89vB4wXZaffGwAeZvr6AMDV4+keXF3lKLnMhyvuI92PRwaV3/3z/+NnFll2TxUDAADOzWQ+JWm1eBY4GWlarUbczIcFLCer6436bHF98Lup8iOd/Fy+ZnJqn2EAAAAAAAAAAAAAAAAAAAAAAAAAoCvLksgAAACASy0i/UuSv80/YnrqmcneuwPHRv362es/ub3Ubu/MRYwn/5jqzBqPiPZPi/nPZ4YEAAAAgAdA9zq9+JwbdW0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuGzeu/PW8tHUUzBxsXH/9qWIqPSLP1aEnohyRFz/ZxJjH1gviYjSOcQ/OIyIx/rFT+L9LMsqRS36xb92wfEr+a7pHz+NiBvnEB+usnc6x59X+33/0ngq/+z//RsrprMafPxL/3f8Kw04/twcMsbj775dGxj/MOLxsf7Hn6P4STd+EsfiPz1k/De+ub8/qCz7ecR039+fpCdWrb25XWvt7d9a31xaq6/Vt+bn515ceGnhhYXZ2up6o1787Rvjh5/+1fsntf/6gPiV3vZ/aP8/M2T7//Pu7Tsf6ybLx8vGDyNmnu7/+/vYgPhp8dv32SLdKZ8+Sh900x/0xC9/+8RJ7V8Z0P6JU9o/M2T7n/369/445KIAwH3Q2tvfWGo06jsnJCaGWOY+J155MKpxQYkHcIefnLgZZ91O9t3u/+PZtnPmahxLZGdZfSzuaq3nrvUrGr+L7+n5JkZ5VAIAAC7C/0/6O7ksGXV9AAAAAAAAAAAAAAAAAAAA4Cq6xzeETUTE0Asfj3kwmqYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJzovwEAAP//JtLV4Q==")
llistxattr(0x0, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0xc8)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x985640, 0x0)

4.567995125s ago: executing program 5 (id=3749):
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffffed7a00000800395032303030"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
getresuid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000180))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

4.520879615s ago: executing program 5 (id=3750):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x7, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000cc0)=@newqdisc={0x50, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0x4}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

4.503411686s ago: executing program 5 (id=3751):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

4.486059136s ago: executing program 5 (id=3752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
process_mrelease(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = inotify_init()
inotify_add_watch(r3, &(0x7f0000000280)='.\x00', 0x25000001)

4.437591317s ago: executing program 5 (id=3753):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd9c, @void, @value}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

4.437372177s ago: executing program 43 (id=3753):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd9c, @void, @value}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

2.358432621s ago: executing program 9 (id=3811):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

2.325789531s ago: executing program 9 (id=3812):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
r3 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x2a, &(0x7f0000000300)={0x0, {{0xa, 0x0, 0x0, @mcast1, 0x10000008}}}, 0x88)

2.324526711s ago: executing program 4 (id=3813):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000740)=@can_newroute={0x34, 0x18, 0x1, 0x70bd27, 0x25dfdbfd, {0x1d, 0x1, 0x5}, [@CGW_CS_XOR={0x8, 0x5, {0x3, 0x6, 0x8, 0x3}}, @CGW_MOD_AND={0x15, 0x1, {{{0x0, 0x0, 0x1}, 0x8, 0x2, 0x0, 0x0, "05159c4da88dcefb"}, 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x6000005}, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00'}, 0x10)
pipe2$9p(&(0x7f0000001900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

2.263489733s ago: executing program 9 (id=3814):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socket$inet6(0xa, 0x3, 0xff)
r1 = socket$key(0xf, 0x3, 0x2)
syncfs(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
tkill(0x0, 0x2e)
sendmsg$key(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x2, 0x9, 0x4, 0x3, 0x2, 0x0, 0x70bd25, 0x25dfdbfd}, 0x10}}, 0x4000)

2.232438933s ago: executing program 4 (id=3817):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x20000000000000d8, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000925e850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000500)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

2.231340023s ago: executing program 9 (id=3818):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.217948743s ago: executing program 9 (id=3820):
openat$kvm(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x800000000003)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000010bd28710000000000000109022400010000000009040100010300000009210200000122050009058103"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f00000002c0)={0x2c, &(0x7f0000000080)={0x0, 0xd, 0x5, {0x5, 0x22, "4a20ee"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)

2.157061974s ago: executing program 4 (id=3822):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
getresuid(0x0, 0x0, &(0x7f00000004c0))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)

2.129798835s ago: executing program 4 (id=3824):
io_setup(0x23, &(0x7f0000000280)=<r0=>0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000700)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
ioctl$BINDER_WRITE_READ(r3, 0x40046208, 0x0)

2.068112505s ago: executing program 4 (id=3826):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
open(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x1a1342, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x22b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xfffc, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x3}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f0000000280)={0x2c, &(0x7f0000000600)={0x40, 0xc, 0x7, {0x7, 0x23, "d9a31e4e4f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

1.559032534s ago: executing program 1 (id=3840):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x2, 0x4, 0x4, 0x143, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
setresuid(0xee01, 0xee01, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)

1.543406184s ago: executing program 1 (id=3841):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
read$FUSE(r0, &(0x7f0000001900)={0x2020}, 0x2020)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1.426988186s ago: executing program 1 (id=3842):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r0, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
setsockopt$sock_int(r1, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4)
bind$inet(r1, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000000200)=[{0x6}]}, 0x10)
listen(r1, 0x0)

1.425839366s ago: executing program 1 (id=3843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
syz_usb_connect$uac1(0x3, 0x9c, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8a, 0x3, 0x1, 0x0, 0xb0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{}, [@extension_unit={0xb, 0x24, 0x8, 0x0, 0x0, 0x0, "822c81fb"}, @mixer_unit={0x5}, @input_terminal={0xc}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x3}, @as_header={0x7, 0x24, 0x1, 0x0, 0x0, 0x1}]}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x0, 0x0, 0x0, {0x7, 0x25, 0x1, 0x82}}}}}}}]}}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0xdb7f128e20c1c876, 0x0, 0x0, &(0x7f0000002dc0)=""/4096, 0x1000}, 0x40002140)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)

913.440885ms ago: executing program 1 (id=3863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
readv(r2, &(0x7f0000000240)=[{&(0x7f0000000140)=""/201, 0x20}], 0x6)
mremap(&(0x7f0000638000/0x1000)=nil, 0x6aa000, 0x2000, 0x3, &(0x7f00005c0000/0x2000)=nil)

822.278006ms ago: executing program 0 (id=3866):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @random="a538ae464632", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x1, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @broadcast, @multicast1}, {0x11, 0x7c, 0x0, @dev={0xac, 0x14, 0x14, 0x16}}}}}}, 0x0)

798.607666ms ago: executing program 0 (id=3868):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0x20002078)

729.505058ms ago: executing program 0 (id=3870):
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x583a, 0x5, 0x9, 0xe55, 0x6, 0x2, 0x1040, 0x4, 0x0, 0x32a, 0xfffffffffffffffe, 0xffffffff, 0x1, 0x9, 0x5, 0x6a], 0x1, 0x1000d6})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

704.437898ms ago: executing program 0 (id=3872):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0xfffffe00, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r3 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r4 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc3}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd707bc34d7cf6e02368007000000009badb48b1dd499d2eff56da9c5d2e46d82ea00c508ba6062696138", 0x3b}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x4, r4, r3, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x4, r2, r2, 0x0, 0x0)

673.575448ms ago: executing program 0 (id=3873):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'wg2\x00', <r3=>0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r1, r3, 0x25, 0x0, @val=@iter={0x0}}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x1000000, 0x0, {0x0, 0x0, 0x74, r3}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
close(r5)

669.596819ms ago: executing program 7 (id=3874):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$inet(r0, 0x0, 0x24000000)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xfff1, 0xffff}, {0x1b6dd91e85e94ce1}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@delchain={0x2c, 0x2e, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff3, 0xffff}, {0x0, 0xe}}, [@TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x2c}}, 0x0)

624.331619ms ago: executing program 7 (id=3875):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
prlimit64(0x0, 0xe, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2})

556.17714ms ago: executing program 7 (id=3876):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7ffb, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

554.98387ms ago: executing program 0 (id=3877):
r0 = socket$netlink(0x10, 0x3, 0x4)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @multicast2}, 0x3}}, 0x2e)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0x62, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000fb5d7d086d04c308166b0102030109025000010000000009041f0000ff0100000a24010400050201020724070500000508240805040004960d2406010103020001000600060924030505030605810924030601010405050724040501009cbd89"], 0x0)

510.887701ms ago: executing program 7 (id=3878):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x2000000000000178, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x1}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

509.722021ms ago: executing program 7 (id=3879):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0xab, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x22, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0xffffffff}, 0xc)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

470.890422ms ago: executing program 7 (id=3880):
syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, &(0x7f0000000440)={[{@fault_injection={'fault_injection', 0x3d, 0x4ee}}, {@extent_cache}, {@block_mode}, {@six_active_logs}, {@six_active_logs}, {@nodiscard}, {@jqfmt_vfsv1}, {@noacl}, {@checkpoint_diasble}, {@alloc_mode_def}, {@noextent_cache}, {@nouser_xattr}, {@jqfmt_vfsold}, {@fastboot}, {@memory_low}, {@inline_xattr_size={'inline_xattr_size', 0x3d, 0x9}}]}, 0x1, 0x5505, &(0x7f0000002480)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x31})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

158.519407ms ago: executing program 9 (id=3881):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fadvise64(0xffffffffffffffff, 0x80000000, 0x3, 0x4)
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffdeffffe]}, 0x0, 0x8)
r1 = gettid()
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
tkill(r1, 0x29)

107.845778ms ago: executing program 4 (id=3882):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000010280)={0x8, 0x0, 0x100, 0x1, 0x5, "90897f0000030000000000f4ff1d277fffffeb"})
r1 = dup(r0)
ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000080)={0x9, 0x2, 0x0, 0x82fa, 0x1a, "e8540000808000"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x6040802)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4bb, &(0x7f0000000580)="$eJzs3cuLXFUaAPCvqtLP9EweMwxJBiaBDGQepKsfDOmemcUMDMzMIjBMwI1CbLsrbUx1V9NVHdNNFh3dZeFCFAVx4d6/wI1ZGQVxrXtxIRGNLagglNxbVUm/KpaxUyV9fz+o9Dn33NR3Thff4da59/YNILNOJf/kIkYi4oOIONSobt3hVOPHxt3rs8krF/X6hc9z6X5JvbVr6/8djIj1iBiMiP//O+Kp3M641dW1KzPlcmm5WS/WFpaK1dW1s5cXZuZL86XF8alz09NTY5MT03s21psvPHPz/Fv/7X/z6+fv3H7xnbeTbo002zaPYy81ht4XRzZtOxARf38UwXqg0BzPUK87wkNJPr9fRcTpNP8PRSH9NIEsqNfr9e/qA+2a1+vAvpVPj4Fz+dGIaJTz/6qPNo7hfx3D+XKlWvvzpcrK4lzjWPlw9OUvXS6XxprfFQ5HXy6pj6fl+/WJbfXJiPQY+KXCUFofna2U57o71QHbHNyW/18V8vnRpBJ/6nXXgG7wlR+yS/5Ddsl/yC75D9kl/yG75D9kl/yH7JL/kF3yH7JL/kN2yX/IpP+dP5+86q373+eurq5cqVw9O5fMCQsrs6OzleWl0flKZT69Z2fhh96vXKksjf8lVq4Va6VqrVhdXbu4UFlZrF1M7+u/WOrryqiAThw5eeujXESs/3UofSX6m21yFfa3ej0Xvb4HGeiNQq8nIKBnLP1BdvmOD+zyJ3q3GGzXsLT3fQG6I9/rDgA9c+a483+QVdb/Ibus/0N2OcYHrP9D9lj/h+wa2fn8r/T5P7/Y9OyusYj4ZUR8WOgbaD3rC9gP8p/mmsf/Zw79fmR7a3/um/QUQX9EPPvahVeuzdRqy+PJ9i/uba+92tw+0Yv+A51q5WkrjwGA7Nq4e3229epm3M/+2bgIYWf8A821ycH0HOXwRm7LtQq5Pbp2Yf1GRBzbLX6u+bzzxpmP4Y3CjvhHmz9zjbdI+3sgfW56d+If3xT/d5vin/jJvxXIhlvJ/DO2W/7l05yOe/m3df4Z2aNrJ9rPf/l781+hzfx3ssMYT7/+3Cdt49+IOLFr/Fa8wTTW9vhJ3850GP/OE4/9pl1b/Y3G++wWvyUpFWsLS8Xq6trZ9O/IzZcWx6fOTU9PjU1OTBfTNepia6V6p78de//2g8Y/3CZ+u/H/o9mnP3Y4/m9/+97jpx4Q/w+nd//8j7aJnxj6EU/o/3Li4yfbtSXx59qMP78z/rvD0WqNmOwwfvXl/wx0uCsA0AXV1bUrM+VyaVlBQeEhCgM/j27seaHXMxPwqN1P+l73BAAAAAAAAAAAAOhUNy4n7vUYAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD2g+8DAAD//3bC1tg=")
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x7f)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000002c0)=0xff)

0s ago: executing program 1 (id=3883):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000600)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000380)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x800, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r3])
statfs(&(0x7f00000001c0)='./file0\x00', 0x0)

kernel console output (not intermixed with test programs):

mpat=0 ip=0x7fe39a027169 code=0x7ffc0000
[   88.288172][ T4671] xt_hashlimit: size too large, truncated to 1048576
[   88.564742][ T4695] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1851: inode #1: comm syz.5.1851: iget: illegal inode #
[   88.587841][ T4695] EXT4-fs (loop5): Remounting filesystem read-only
[   88.601095][ T4695] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1851: error while reading EA inode 1 err=-117
[   88.625534][ T4695] EXT4-fs error (device loop5): ext4_evict_inode:294: comm syz.5.1851: couldn't truncate inode 15 (err -30)
[   88.637133][ T4695] EXT4-fs (loop5): 1 orphan inode deleted
[   88.642972][ T4695] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobarrier,max_batch_time=0x0000000000000007,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,nombcache,usrjquota=,errors=remount-ro,max_dir_size_kb=0x0000000000000076,journal_dev=0x0000000000000002
[   88.884866][ T4735] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1866'.
[   88.947325][ T4745] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1870'.
[   88.995880][ T4742] EXT4-fs (loop8): #blocks per group too big: 83894272
[   89.353509][ T4781] syz.4.1887[4781] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.353571][ T4781] syz.4.1887[4781] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.468849][ T4790] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1891'.
[   90.066950][ T4862] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1923'.
[   90.411094][  T650] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   90.781222][  T650] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[   90.796718][  T650] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.831064][  T650] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[   90.851048][  T650] usb 5-1: New USB device found, idVendor=056a, idProduct=0301, bcdDevice= 0.00
[   90.880164][  T650] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.901286][  T650] usb 5-1: config 0 descriptor??
[   90.911192][  T299] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   91.151181][  T299] usb 6-1: Using ep0 maxpacket: 16
[   91.251172][  T650] usbhid 5-1:0.0: can't add hid device: -71
[   91.256994][  T650] usbhid: probe of 5-1:0.0 failed with error -71
[   91.270803][  T650] usb 5-1: USB disconnect, device number 6
[   91.276782][  T299] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   91.287076][  T299] usb 6-1: config 0 has no interfaces?
[   91.293576][  T299] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   91.303665][  T299] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.321557][  T299] usb 6-1: config 0 descriptor??
[   91.568960][   T51] usb 6-1: USB disconnect, device number 6
[   91.624685][ T4956] netlink: 'syz.8.1964': attribute type 12 has an invalid length.
[   91.654822][ T4959] syz.8.1965[4959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.654883][ T4959] syz.8.1965[4959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.753427][ T4964] device ip6gretap0 entered promiscuous mode
[   91.981849][   T24] kauditd_printk_skb: 96 callbacks suppressed
[   91.981863][   T24] audit: type=1326 audit(1743704315.654:6262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.4.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578e2dc169 code=0x7ffc0000
[   92.025984][   T24] audit: type=1326 audit(1743704315.684:6263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.4.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f578e2dc169 code=0x7ffc0000
[   92.052541][   T24] audit: type=1326 audit(1743704315.684:6264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.4.1973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f578e2dc169 code=0x7ffc0000
[   92.246476][ T4992] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1979'.
[   92.346525][ T5000] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1983'.
[   92.393752][ T5005] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1985'.
[   92.547359][   T24] audit: type=1400 audit(1743704316.214:6265): avc:  denied  { shutdown } for  pid=5015 comm="syz.4.1990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   92.721600][   T51] kernel read not supported for file inotify (pid: 51 comm: kworker/0:2)
[   92.796898][ T5037] netlink: 'syz.1.1999': attribute type 16 has an invalid length.
[   92.804727][ T5037] netlink: 'syz.1.1999': attribute type 1 has an invalid length.
[   92.812315][ T5030] EXT4-fs (loop5): Ignoring removed orlov option
[   92.819045][ T5037] netlink: 'syz.1.1999': attribute type 2 has an invalid length.
[   92.821719][ T5039] syz.4.2000[5039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.826834][ T5037] netlink: 64114 bytes leftover after parsing attributes in process `syz.1.1999'.
[   92.831906][ T5039] syz.4.2000[5039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.848387][ T5030] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,min_batch_time=0x0000000000000004,,errors=continue
[   92.899528][ T5030] EXT4-fs (loop5): shut down requested (2)
[   92.908194][   T24] audit: type=1400 audit(1743704316.574:6266): avc:  denied  { create } for  pid=5045 comm="syz.8.2003" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   92.984129][ T5052] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[   93.002707][   T24] audit: type=1400 audit(1743704316.674:6267): avc:  denied  { map } for  pid=5051 comm="syz.5.2005" path="/327/file0/blkio.bfq.io_serviced" dev="loop5" ino=1048646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   93.027567][   T24] audit: type=1400 audit(1743704316.674:6268): avc:  denied  { write } for  pid=5051 comm="syz.5.2005" path="/327/file0/blkio.bfq.io_serviced" dev="loop5" ino=1048646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   93.135621][ T5059] device syzkaller0 entered promiscuous mode
[   93.202230][  T650] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   93.211107][  T779] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[   93.571143][  T779] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   93.581305][  T779] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[   93.601161][  T650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   93.611224][  T650] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   93.619911][  T650] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   93.628945][  T650] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.637653][  T650] usb 5-1: config 0 descriptor??
[   93.661246][  T779] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   93.670553][  T779] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   93.678438][  T779] usb 9-1: SerialNumber: syz
[   93.928093][   T24] audit: type=1326 audit(1743704317.594:6269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5092 comm="syz.5.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[   93.954530][   T24] audit: type=1326 audit(1743704317.624:6270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5092 comm="syz.5.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[   93.978549][  T779] usb 9-1: 0:2 : does not exist
[   93.989736][   T24] audit: type=1326 audit(1743704317.624:6271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5092 comm="syz.5.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[   94.000341][  T779] usb 9-1: USB disconnect, device number 8
[   94.489421][ T5102] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[   94.509009][ T5102] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[   94.536348][ T5102] F2FS-fs (loop5): invalid crc value
[   94.547077][ T5102] F2FS-fs (loop5): Found nat_bits in checkpoint
[   94.584339][ T5149] netlink: 'syz.8.2045': attribute type 4 has an invalid length.
[   94.597831][ T5102] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[   94.611049][ T5102] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[   94.611945][ T5149] netlink: 'syz.8.2045': attribute type 4 has an invalid length.
[   94.869248][ T5170] syz.5.2051[5170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.869331][ T5170] syz.5.2051[5170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.972443][ T5184] xt_bpf: check failed: parse error
[   95.160937][ T5187] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[   95.174671][ T5187] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[   95.184038][ T5187] F2FS-fs (loop8): invalid crc value
[   95.190753][ T5187] F2FS-fs (loop8): Found nat_bits in checkpoint
[   95.234582][ T5187] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[   95.241715][ T5187] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[   95.405377][ T5210] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2069'.
[   95.618397][ T5187] attempt to access beyond end of device
[   95.618397][ T5187] loop8: rw=2049, want=40432, limit=40427
[   95.681335][    T7] F2FS-fs (loop8): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   95.690078][    T7] F2FS-fs (loop8): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   95.903028][ T5239] overlayfs: failed to clone lowerpath
[   95.913495][  T522] usb 5-1: USB disconnect, device number 7
[   95.995272][ T5253] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2088'.
[   96.039765][ T5259] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2091'.
[   96.081457][ T5260] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.090883][ T5260] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[   96.104154][ T5260] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[   96.113743][ T5260] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   96.121730][ T5260] System zones: 0-2, 18-18, 34-34
[   96.160248][ T5260] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   96.190459][ T5260] EXT4-fs (loop5): 1 truncate cleaned up
[   96.202183][ T5260] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[   96.295220][ T5288] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue
[   96.463909][ T5324] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[   96.831084][  T522] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[   97.042102][ T5353] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[   97.062763][ T5353] EXT4-fs (loop4): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc,,errors=continue
[   97.085129][   T24] kauditd_printk_skb: 107 callbacks suppressed
[   97.085141][   T24] audit: type=1400 audit(1743704320.754:6379): avc:  denied  { remount } for  pid=5352 comm="syz.4.2130" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   97.112047][ T5353] EXT4-fs (loop4): re-mounted. Opts: (null)
[   97.191140][  T522] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[   97.214331][  T522] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.231700][  T522] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[   97.271134][  T522] usb 9-1: New USB device found, idVendor=056a, idProduct=0301, bcdDevice= 0.00
[   97.285870][  T522] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.315222][  T522] usb 9-1: config 0 descriptor??
[   97.372496][ T5371] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5371 comm=syz.4.2138
[   97.385061][ T5371] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5371 comm=syz.4.2138
[   97.475034][ T5376] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   97.651203][  T522] usbhid 9-1:0.0: can't add hid device: -71
[   97.658786][  T522] usbhid: probe of 9-1:0.0 failed with error -71
[   97.663246][ T5395] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[   97.667128][  T522] usb 9-1: USB disconnect, device number 9
[   97.732234][   T24] audit: type=1400 audit(1743704321.404:6380): avc:  denied  { bind } for  pid=5400 comm="syz.2.2149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   98.115636][   T24] audit: type=1326 audit(1743704321.784:6381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5365 comm="syz.1.2135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7fc00000
[   98.182604][  T325] kernel write not supported for file bpf-prog (pid: 325 comm: kworker/0:3)
[   98.214296][   T24] audit: type=1326 audit(1743704321.884:6382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.273576][   T24] audit: type=1326 audit(1743704321.884:6383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.376726][   T24] audit: type=1326 audit(1743704321.884:6384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.435563][   T24] audit: type=1326 audit(1743704321.884:6385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.447976][ T5433] SELinux: failed to load policy
[   98.522583][   T24] audit: type=1326 audit(1743704321.884:6386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.581241][   T24] audit: type=1326 audit(1743704321.884:6387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.636164][   T24] audit: type=1326 audit(1743704321.904:6388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5425 comm="syz.8.2158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[   98.716509][ T5450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5450 comm=syz.8.2168
[   98.824417][ T5464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5464 comm=syz.2.2176
[   98.955418][ T5466] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb899c415, utbl_chksum : 0xe619d30d)
[   98.969253][ T5474] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2180'.
[   99.052389][ T5473] EXT4-fs error (device loop8): ext4_orphan_get:1395: inode #15: comm syz.8.2179: casefold flag without casefold feature
[   99.065051][ T5473] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: inode #12: comm syz.8.2179: missing EA_INODE flag
[   99.077095][ T5473] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.2179: error while reading EA inode 12 err=-117
[   99.089540][ T5458] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504)
[   99.101175][ T5473] EXT4-fs (loop8): 1 orphan inode deleted
[   99.106749][ T5473] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue
[   99.107392][ T5458] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[   99.125757][ T5458] F2FS-fs (loop5): invalid crc value
[   99.177805][ T5458] F2FS-fs (loop5): Found nat_bits in checkpoint
[   99.237090][ T5458] F2FS-fs (loop5): Cannot turn on quotas: -2 on 1
[   99.255469][ T5458] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[   99.262673][ T5458] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[   99.291625][ T5486] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   99.363254][ T5458] attempt to access beyond end of device
[   99.363254][ T5458] loop5: rw=2049, want=45112, limit=40427
[   99.444721][ T5503] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2188: inode #1: comm syz.4.2188: iget: illegal inode #
[   99.521070][ T5503] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2188: error while reading EA inode 1 err=-117
[   99.541977][ T5503] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2188: inode #1: comm syz.4.2188: iget: illegal inode #
[   99.571366][ T5503] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2188: error while reading EA inode 1 err=-117
[   99.604195][ T5503] EXT4-fs (loop4): 1 orphan inode deleted
[   99.621459][ T5503] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue
[   99.665890][ T5519] netlink: 312 bytes leftover after parsing attributes in process `syz.8.2196'.
[   99.884875][ T5552] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2209'.
[  100.871424][ T5618] netlink: 'syz.2.2239': attribute type 12 has an invalid length.
[  100.939615][ T5625] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2242'.
[  101.022839][ T5634] device ip6gretap0 entered promiscuous mode
[  101.104187][ T5643] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2250'.
[  101.113396][ T5643] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  101.392987][ T5665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2262'.
[  101.404340][ T5665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2262'.
[  101.430307][ T5669] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  101.553487][ T5664] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.560369][ T5664] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.609027][ T5664] device bridge_slave_0 entered promiscuous mode
[  101.624647][ T5664] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.631636][ T5664] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.638966][ T5664] device bridge_slave_1 entered promiscuous mode
[  101.705835][ T5689] overlayfs: failed to clone upperpath
[  101.729165][ T5664] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.736153][ T5664] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.743363][ T5664] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.750276][ T5664] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.761612][ T5687] EXT4-fs (loop5): Ignoring removed mblk_io_submit option
[  101.792693][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.800828][ T5687] EXT4-fs (loop5): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc,,errors=continue
[  101.820931][  T419] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.836053][  T419] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.851966][ T5687] EXT4-fs (loop5): re-mounted. Opts: (null)
[  101.862435][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  101.871837][  T419] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.878885][  T419] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.887099][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  101.895241][  T419] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.902100][  T419] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.917151][ T5703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2276'.
[  101.942379][ T5704] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2276'.
[  101.958882][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  101.971379][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  101.989465][   T49] device veth1_macvtap left promiscuous mode
[  101.995697][   T49] device veth0_vlan left promiscuous mode
[  102.370100][ T5729] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2287'.
[  102.387970][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  102.397043][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  102.408054][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  102.416031][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  102.426957][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  102.439595][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  102.449007][ T5664] device veth0_vlan entered promiscuous mode
[  102.471718][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  102.480055][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  102.490642][ T5664] device veth1_macvtap entered promiscuous mode
[  102.499613][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  102.507210][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  102.515660][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  102.534415][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  102.542732][   T24] kauditd_printk_skb: 65 callbacks suppressed
[  102.542745][   T24] audit: type=1400 audit(2000000000.930:6454): avc:  denied  { mount } for  pid=5664 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  102.581577][   T24] audit: type=1400 audit(2000000000.960:6455): avc:  denied  { mounton } for  pid=5664 comm="syz-executor" path="/root/syzkaller.zY0VKY/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  102.608477][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  102.724447][   T24] audit: type=1326 audit(2000000001.110:6456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  102.763978][   T24] audit: type=1326 audit(2000000001.140:6457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  102.793841][   T24] audit: type=1326 audit(2000000001.140:6458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  102.848962][   T24] audit: type=1326 audit(2000000001.140:6459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  102.893152][ T5759] device pim6reg1 entered promiscuous mode
[  102.901471][   T24] audit: type=1326 audit(2000000001.140:6460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  102.939015][   T24] audit: type=1326 audit(2000000001.140:6461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  103.009070][   T24] audit: type=1326 audit(2000000001.140:6462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  103.038502][   T24] audit: type=1326 audit(2000000001.140:6463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5753 comm="syz.1.2296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  103.358849][ T5800] syz.5.2316[5800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.358900][ T5800] syz.5.2316[5800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.415235][ T5802] netem: incorrect gi model size
[  103.461678][ T5802] netem: change failed
[  103.643978][ T5819] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: comm syz.8.2325: inode #1: comm syz.8.2325: iget: illegal inode #
[  103.674529][ T5833] overlayfs: failed to clone upperpath
[  103.697926][ T5819] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.2325: error while reading EA inode 1 err=-117
[  103.721141][ T5819] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: comm syz.8.2325: inode #1: comm syz.8.2325: iget: illegal inode #
[  103.773935][ T5819] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.2325: error while reading EA inode 1 err=-117
[  103.796720][ T5819] EXT4-fs (loop8): 1 orphan inode deleted
[  103.802338][ T5819] EXT4-fs (loop8): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue
[  103.834453][ T5842] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2334'.
[  103.911785][ T5851] IPv4: Oversized IP packet from 127.202.26.0
[  104.866740][ T5899] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2357'.
[  104.932342][ T5912] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5912 comm=syz.5.2364
[  104.961269][ T5914] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5914 comm=syz.3.2365
[  105.024722][ T5924] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2369'.
[  105.024811][ T5926] incfs: Error accessing: ./file0.
[  105.038970][ T5926] incfs: mount failed -20
[  105.102120][ T5930] tipc: Started in network mode
[  105.106881][ T5930] tipc: Own node identity ac14140f, cluster identity 4711
[  105.141802][ T5930] tipc: New replicast peer: 255.255.255.255
[  105.147774][ T5930] tipc: Enabled bearer <udp:syz2>, priority 10
[  105.236082][ T5946] device vlan2 entered promiscuous mode
[  105.491402][ T5969] Â: renamed from pim6reg1
[  105.629558][ T5980] netem: change failed
[  105.927551][ T5998] F2FS-fs (loop8): Found nat_bits in checkpoint
[  105.961344][ T5998] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  106.241217][ T1699] attempt to access beyond end of device
[  106.241217][ T1699] loop8: rw=2049, want=45104, limit=40427
[  106.271042][  T780] tipc: 32-bit node address hash set to f1414ac
[  106.725188][ T6073] 9pnet: p9_fd_create_tcp (6073): problem connecting socket to 127.0.0.1
[  106.745064][ T6069]  loop8: p1 < > p4
[  106.755768][ T6069] loop8: p4 size 8388608 extends beyond EOD, truncated
[  106.798371][   T95]  loop8: p1 < > p4
[  106.805432][   T95] loop8: p4 size 8388608 extends beyond EOD, truncated
[  106.813024][ T6082] __nla_validate_parse: 1 callbacks suppressed
[  106.813032][ T6082] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2435'.
[  106.859132][   T95]  loop8: p1 < > p4
[  106.864264][   T95] loop8: p4 size 8388608 extends beyond EOD, truncated
[  106.926675][  T342] udevd[342]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  106.938585][ T1471] udevd[1471]: inotify_add_watch(7, /dev/loop8p4, 10) failed: No such file or directory
[  106.958902][  T342] udevd[342]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  106.971636][ T1471] udevd[1471]: inotify_add_watch(7, /dev/loop8p4, 10) failed: No such file or directory
[  107.005688][ T6097] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2442'.
[  107.019508][ T6097] HTB: quantum of class 801B000C is small. Consider r2q change.
[  107.032315][ T6100] bridge: RTM_NEWNEIGH with invalid ether address
[  107.414499][ T6142] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2146808755 (274791520640 ns) > initial count (3605032832 ns). Using initial count to start timer.
[  107.511343][ T6149] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  107.526197][ T6149] EXT4-fs (loop5): orphan cleanup on readonly fs
[  107.542665][ T6149] EXT4-fs error (device loop5): ext4_orphan_get:1395: inode #16: comm syz.5.2463: casefold flag without casefold feature
[  107.563198][ T6149] EXT4-fs error (device loop5): ext4_orphan_get:1395: inode #16: comm syz.5.2463: unexpected EA_INODE flag
[  107.593910][ T6149] EXT4-fs error (device loop5): ext4_orphan_get:1400: comm syz.5.2463: couldn't read orphan inode 16 (err -117)
[  107.615785][ T6149] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  107.642085][ T6149] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  107.796170][ T6163] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue
[  107.811269][ T6163] ext4 filesystem being mounted at /417/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.931323][   T24] kauditd_printk_skb: 86 callbacks suppressed
[  107.931337][   T24] audit: type=1400 audit(2000000006.320:6550): avc:  denied  { append } for  pid=6167 comm="syz.5.2471" name="001" dev="devtmpfs" ino=173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  108.225075][ T6191] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1554 sclass=netlink_route_socket pid=6191 comm=syz.8.2478
[  108.327191][ T6199] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2483'.
[  108.357214][  T511] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=511 comm=kworker/1:4
[  108.382448][ T6201] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[  108.594761][ T6215] overlayfs: failed to clone upperpath
[  108.911850][ T6233] EXT4-fs (loop5): Ignoring removed oldalloc option
[  108.921138][ T6233] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  108.945036][ T6233] EXT4-fs (loop5): 1 truncate cleaned up
[  108.961352][ T6233] EXT4-fs (loop5): mounted filesystem without journal. Opts: quota,oldalloc,barrier=0x0000000000000003,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue
[  109.057167][  T525] EXT4-fs error (device loop5): mb_free_blocks:1524: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  109.394946][   T24] audit: type=1326 audit(2000000007.780:6551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.446291][   T24] audit: type=1326 audit(2000000007.810:6552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.486719][ T6263] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2511'.
[  109.501226][   T24] audit: type=1326 audit(2000000007.810:6553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.525162][   T24] audit: type=1326 audit(2000000007.810:6554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.588059][   T24] audit: type=1326 audit(2000000007.810:6555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.652053][ T6270] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  109.671040][   T24] audit: type=1326 audit(2000000007.810:6556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.694608][   T24] audit: type=1326 audit(2000000007.810:6557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  109.720772][ T6270] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3342: comm syz.5.2514: Allocating blocks 497-513 which overlap fs metadata
[  109.753100][ T6270] EXT4-fs (loop5): pa ffff88810ffb57e0: logic 16, phys. 145, len 23
[  109.761084][ T6270] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 1
[  109.809790][ T6277] netlink: 'syz.1.2516': attribute type 12 has an invalid length.
[  109.893575][ T6281] syz.1.2518[6281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.893630][ T6281] syz.1.2518[6281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.931822][ T6281] syz.1.2518[6281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.961785][ T6281] syz.1.2518[6281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.982100][ T6281] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2518'.
[  110.042748][   T24] audit: type=1326 audit(2000000008.430:6558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6287 comm="syz.5.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  110.111783][   T24] audit: type=1326 audit(2000000008.430:6559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6287 comm="syz.5.2521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  110.316497][ T6314] EXT4-fs (loop8): Test dummy encryption mode enabled
[  110.344664][ T6314] EXT4-fs (loop8): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  110.731560][ T6357] IPv6: sit3: Disabled Multicast RS
[  110.852165][ T6363]  loop8: p1 < > p3
[  110.859185][ T6363] loop8: p3 size 134217728 extends beyond EOD, truncated
[  110.957869][ T1471] udevd[1471]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  110.959073][  T342] udevd[342]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  111.269030][ T6407] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=6407 comm=syz.3.2571
[  111.331076][ T6407] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=6407 comm=syz.3.2571
[  111.594966][ T6426] syz.3.2578[6426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.595027][ T6426] syz.3.2578[6426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.819693][ T6410] F2FS-fs (loop5): Found nat_bits in checkpoint
[  111.904506][ T6439] device syzkaller0 entered promiscuous mode
[  111.959200][ T6410] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  112.123272][ T6455] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2590'.
[  112.187497][ T6463] device xfrm0 entered promiscuous mode
[  112.317957][ T6481] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2601'.
[  112.431470][ T6497] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  112.571088][  T650] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  112.721049][   T51] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  112.811148][  T650] usb 9-1: Using ep0 maxpacket: 8
[  112.931124][  T650] usb 9-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  112.940037][  T650] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.952999][  T650] usb 9-1: config 0 descriptor??
[  112.981187][   T51] usb 6-1: Using ep0 maxpacket: 8
[  113.101104][   T51] usb 6-1: config 0 has no interfaces?
[  113.106948][   T51] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  113.115880][   T51] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.124514][   T51] usb 6-1: config 0 descriptor??
[  113.211194][  T650] asix 9-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  113.375815][   T24] kauditd_printk_skb: 73 callbacks suppressed
[  113.375828][   T24] audit: type=1400 audit(2000000011.750:6633): avc:  denied  { execmem } for  pid=6492 comm="syz.5.2606" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  113.421100][  T650] asix 9-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  113.442842][  T650] asix 9-1:0.0 (unnamed net_device) (uninitialized): Error reading PHYID register: ffffffe0
[  113.472359][  T299] usb 6-1: USB disconnect, device number 7
[  113.535025][ T6526] syz.3.2618 uses obsolete (PF_INET,SOCK_PACKET)
[  113.794206][ T6516] mmap: syz.1.2614 (6516): VmData 167485440 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  113.832873][ T6533] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  113.841075][   T51] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  113.841139][ T6533] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  114.078445][ T6556] overlayfs: failed to clone upperpath
[  114.091124][   T51] usb 4-1: Using ep0 maxpacket: 32
[  114.211187][   T51] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.228140][   T51] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.250156][   T51] usb 4-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  114.270344][   T51] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.289823][   T51] usb 4-1: config 0 descriptor??
[  114.361169][  T650] asix 9-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  114.374848][  T650] asix 9-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  114.387827][  T650] asix: probe of 9-1:0.0 failed with error -71
[  114.402207][  T650] usb 9-1: USB disconnect, device number 10
[  114.667949][   T24] audit: type=1326 audit(2000000013.050:6634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.701262][   T24] audit: type=1326 audit(2000000013.080:6635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.727035][   T24] audit: type=1326 audit(2000000013.080:6636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.757355][ T6603] xt_hashlimit: size too large, truncated to 1048576
[  114.779349][   T24] audit: type=1326 audit(2000000013.080:6637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.803151][ T6605] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2656'.
[  114.812600][   T24] audit: type=1326 audit(2000000013.080:6638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.813387][   T51] greenasia 0003:0E8F:0012.0002: hidraw0: USB HID v0.00 Device [HID 0e8f:0012] on usb-dummy_hcd.3-1/input0
[  114.881090][   T24] audit: type=1326 audit(2000000013.080:6639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.885550][   T51] greenasia 0003:0E8F:0012.0002: no inputs found
[  114.916918][   T24] audit: type=1326 audit(2000000013.080:6640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.940874][   T24] audit: type=1326 audit(2000000013.080:6641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  114.964350][   T24] audit: type=1326 audit(2000000013.080:6642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6598 comm="syz.1.2653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  115.035883][  T299] usb 4-1: USB disconnect, device number 2
[  115.663286][ T6680] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2689'.
[  115.677934][ T6682] syz.3.2690[6682] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.677996][ T6682] syz.3.2690[6682] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.697933][ T6680] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2689'.
[  115.719833][ T6682] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  115.737245][ T6682] FAT-fs (loop7): unable to read boot sector
[  115.923978][ T6701] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  115.990591][ T6708] xt_hashlimit: size too large, truncated to 1048576
[  116.011723][ T6710] overlayfs: failed to clone upperpath
[  116.260116][ T6726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2709'.
[  116.269606][ T6726] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2709'.
[  117.078142][ T6795] netlink: 'syz.5.2739': attribute type 12 has an invalid length.
[  117.283086][ T6804] attempt to access beyond end of device
[  117.283086][ T6804] loop5: rw=0, want=129, limit=128
[  117.489988][ T6827] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2752'.
[  117.871169][   T15] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  118.131116][   T15] usb 6-1: Using ep0 maxpacket: 16
[  118.251123][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.291035][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.311070][   T15] usb 6-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  118.320120][   T15] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.344866][   T15] usb 6-1: config 0 descriptor??
[  118.425245][   T24] kauditd_printk_skb: 100 callbacks suppressed
[  118.425259][   T24] audit: type=1326 audit(2000000016.810:6743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.473539][   T24] audit: type=1326 audit(2000000016.850:6744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.498198][   T24] audit: type=1326 audit(2000000016.850:6745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.523862][   T24] audit: type=1326 audit(2000000016.850:6746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.558886][   T24] audit: type=1326 audit(2000000016.850:6747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.586433][   T24] audit: type=1326 audit(2000000016.850:6748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.614178][   T24] audit: type=1326 audit(2000000016.850:6749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.639587][   T24] audit: type=1326 audit(2000000016.850:6750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.663310][   T24] audit: type=1326 audit(2000000016.850:6751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.693753][   T24] audit: type=1326 audit(2000000016.850:6752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6895 comm="syz.8.2785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f157a9d3169 code=0x7ffc0000
[  118.813723][   T15] gt683r_led 0003:1770:FF00.0003: unbalanced delimiter at end of report description
[  118.837539][   T15] gt683r_led 0003:1770:FF00.0003: hid parsing failed
[  118.865432][   T15] gt683r_led: probe of 0003:1770:FF00.0003 failed with error -22
[  119.016464][   T15] usb 6-1: USB disconnect, device number 8
[  119.084255][ T6925] device syzkaller0 entered promiscuous mode
[  119.107166][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2797'.
[  119.116619][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2797'.
[  119.126102][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2797'.
[  119.273671][ T6942] device ip6gretap0 entered promiscuous mode
[  119.321892][  T325] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  119.571034][  T325] usb 9-1: Using ep0 maxpacket: 16
[  119.599796][ T6965] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2814'.
[  119.609136][ T6965] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2814'.
[  119.691576][  T325] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  119.702749][  T325] usb 9-1: config 0 has no interfaces?
[  119.708160][  T325] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  119.717819][  T325] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.726805][  T325] usb 9-1: config 0 descriptor??
[  119.911071][   T15] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  119.985254][  T522] usb 9-1: USB disconnect, device number 11
[  120.271130][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  120.291189][   T15] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.309344][   T15] usb 6-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[  120.319393][   T15] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.327940][   T15] usb 6-1: config 0 descriptor??
[  120.352535][ T7004] syz.3.2830[7004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.352598][ T7004] syz.3.2830[7004] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  120.640247][ T7038] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  120.725729][ T7044] FAT-fs (loop8): Unrecognized mount option "shortname=mixe" or missing value
[  120.802442][   T15] hid-led 0003:1294:1320.0004: hidraw0: USB HID v0.00 Device [HID 1294:1320] on usb-dummy_hcd.5-1/input0
[  120.815319][   T15] hid-led 0003:1294:1320.0004: Riso Kagaku Webmail Notifier initialized
[  120.832210][ T7044] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2848'.
[  120.955341][ T7059] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  120.970245][ T7059] device syzkaller0 entered promiscuous mode
[  120.987600][ T7058] tipc: Resetting bearer <eth:syzkaller0>
[  121.007223][ T7058] tipc: Disabling bearer <eth:syzkaller0>
[  121.009857][  T522] usb 6-1: USB disconnect, device number 9
[  121.021752][  T299] leds riso_kagaku0:blue: Setting an LED's brightness failed (-38)
[  121.029875][  T299] leds riso_kagaku0:green: Setting an LED's brightness failed (-38)
[  121.038125][  T299] leds riso_kagaku0:red: Setting an LED's brightness failed (-38)
[  121.198872][ T7068] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.205792][ T7068] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.213272][ T7068] device bridge_slave_0 entered promiscuous mode
[  121.219951][ T7068] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.227028][ T7068] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.237416][ T7068] device bridge_slave_1 entered promiscuous mode
[  121.302320][ T7068] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.309215][ T7068] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.316506][ T7068] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.323569][ T7068] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.341608][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  121.348968][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.356455][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.365362][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  121.373574][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  121.381563][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.388483][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.397422][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  121.405673][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  121.414005][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.420865][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.432992][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  121.440930][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  121.450116][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  121.458062][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  121.471568][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  121.480005][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  121.491272][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  121.499033][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  121.507445][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  121.514715][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  121.522587][ T7068] device veth0_vlan entered promiscuous mode
[  121.532775][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  121.540726][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  121.549777][ T7068] device veth1_macvtap entered promiscuous mode
[  121.570868][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  121.571059][  T650] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  121.579012][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  121.596743][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  121.605568][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  121.618780][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  121.941128][  T650] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  121.958760][  T650] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.968519][  T650] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  122.002381][  T650] usb 4-1: New USB device found, idVendor=0458, idProduct=0087, bcdDevice= 0.00
[  122.012784][  T650] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.025838][  T650] usb 4-1: config 0 descriptor??
[  122.071254][  T325] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  122.331369][  T325] usb 6-1: Using ep0 maxpacket: 32
[  122.462875][ T7147] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue
[  122.472608][ T7147] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.481531][  T325] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.495316][  T325] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.501885][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.505161][  T325] usb 6-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[  122.517037][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.520527][  T325] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.527139][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.527153][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.527171][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.547304][  T325] usb 6-1: config 0 descriptor??
[  122.559380][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.566030][  T650] kye 0003:0458:0087.0005: unknown main item tag 0x0
[  122.577963][  T650] kye 0003:0458:0087.0005: hidraw0: USB HID v10.00 Device [HID 0458:0087] on usb-dummy_hcd.3-1/input0
[  122.628138][ T7068] EXT4-fs error (device loop6): ext4_lookup:1827: inode #2: comm syz-executor: '.' linked to parent dir
[  122.649553][ T7068] EXT4-fs error (device loop6): ext4_lookup:1827: inode #2: comm syz-executor: '.' linked to parent dir
[  122.760357][   T51] usb 4-1: USB disconnect, device number 3
[  122.905951][ T7174] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7174 comm=syz.8.2906
[  122.999043][ T7172] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.016357][ T7172] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.028086][ T7172] device bridge_slave_0 entered promiscuous mode
[  123.039166][ T7172] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.047469][ T7159] overlayfs: failed to clone upperpath
[  123.048910][ T7181] FAT-fs (loop8): Directory bread(block 64) failed
[  123.053736][ T7172] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.062566][  T325] input: HID 054c:03d5 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:054C:03D5.0006/input/input5
[  123.078906][ T7181] FAT-fs (loop8): Directory bread(block 65) failed
[  123.079750][  T325] sony 0003:054C:03D5.0006: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.5-1/input0
[  123.086042][ T7181] FAT-fs (loop8): Directory bread(block 66) failed
[  123.099689][ T7172] device bridge_slave_1 entered promiscuous mode
[  123.124275][ T7181] FAT-fs (loop8): Directory bread(block 67) failed
[  123.131132][ T7181] FAT-fs (loop8): Directory bread(block 68) failed
[  123.137647][ T7181] FAT-fs (loop8): Directory bread(block 69) failed
[  123.144423][ T7181] FAT-fs (loop8): Directory bread(block 70) failed
[  123.151131][ T7181] FAT-fs (loop8): Directory bread(block 71) failed
[  123.158275][ T7181] FAT-fs (loop8): Directory bread(block 72) failed
[  123.164790][ T7181] FAT-fs (loop8): Directory bread(block 73) failed
[  123.210430][ T7172] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.217351][ T7172] bridge0: port 2(bridge_slave_1) entered forwarding state
[  123.224482][ T7172] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.231328][ T7172] bridge0: port 1(bridge_slave_0) entered forwarding state
[  123.279386][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  123.294481][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  123.325450][  T780] usb 6-1: USB disconnect, device number 10
[  123.332055][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  123.354731][ T7191] EXT4-fs (loop8): Ignoring removed mblk_io_submit option
[  123.365009][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  123.387568][ T7191] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  123.397791][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  123.423732][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  123.435090][ T7191] __quota_error: 131 callbacks suppressed
[  123.435107][ T7191] Quota error (device loop8): do_check_range: Getting dqdh_next_free 15 out of range 0-5
[  123.455695][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  123.463496][ T7191] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  123.471690][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  123.480775][ T7191] EXT4-fs error (device loop8): ext4_acquire_dquot:6219: comm syz.8.2911: Failed to acquire dquot type 1
[  123.496076][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  123.501976][ T7191] EXT4-fs (loop8): Remounting filesystem read-only
[  123.511192][ T7191] EXT4-fs (loop8): 1 truncate cleaned up
[  123.516750][ T7191] EXT4-fs (loop8): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000200,noblock_validity,mblk_io_submit,nodiscard,noinit_itable,abort,nouid32,errors=remount-ro,max_dir_size_kb=0x000000000000000f2
[  123.544853][ T7172] device veth0_vlan entered promiscuous mode
[  123.565668][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  123.574136][ T7206] overlayfs: failed to clone upperpath
[  123.588531][ T7206] overlayfs: failed to clone lowerpath
[  123.589174][ T7172] device veth1_macvtap entered promiscuous mode
[  123.610065][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  123.634582][  T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  123.668586][   T24] audit: type=1326 audit(2000000022.050:6884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.706167][ T1699] EXT4-fs error (device loop8): ext4_ext_check_inode:500: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  123.745874][   T24] audit: type=1326 audit(2000000022.120:6885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.755659][ T1699] EXT4-fs (loop8): Remounting filesystem read-only
[  123.771313][   T24] audit: type=1326 audit(2000000022.120:6886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.776521][ T1699] EXT4-fs error (device loop8): ext4_ext_check_inode:500: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  123.822360][   T24] audit: type=1326 audit(2000000022.120:6887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.846535][   T24] audit: type=1326 audit(2000000022.120:6888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.872853][ T7222] syz.3.2925[7222] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.872914][ T7222] syz.3.2925[7222] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.884479][   T24] audit: type=1326 audit(2000000022.120:6889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.921194][   T24] audit: type=1326 audit(2000000022.120:6890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  123.945531][   T24] audit: type=1326 audit(2000000022.120:6891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7215 comm="syz.3.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f608556e169 code=0x7ffc0000
[  124.179534][    T7] device bridge_slave_1 left promiscuous mode
[  124.206353][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.217146][    T7] device bridge_slave_0 left promiscuous mode
[  124.218476][ T7244] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  124.231998][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.240212][    T7] device veth1_macvtap left promiscuous mode
[  124.251094][    T7] device veth0_vlan left promiscuous mode
[  124.257031][ T7244] ext4 filesystem being mounted at /498/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.445637][ T7256] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.457534][ T7256] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.465184][ T7256] device bridge_slave_0 entered promiscuous mode
[  124.476004][ T7256] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.483346][ T7256] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.490834][ T7256] device bridge_slave_1 entered promiscuous mode
[  124.548685][ T7256] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.555610][ T7256] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.562788][ T7256] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.569643][ T7256] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.596503][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  124.607200][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.614934][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.629932][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  124.640629][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.647523][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.654831][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  124.663529][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.670712][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.694998][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  124.703211][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  124.718579][ T7256] device veth0_vlan entered promiscuous mode
[  124.725326][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  124.733972][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  124.741034][    T5] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  124.741599][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  124.756388][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  124.769558][ T7256] device veth1_macvtap entered promiscuous mode
[  124.777389][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  124.788602][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  124.797416][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  124.807011][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  124.815552][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  125.018304][ T7311] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3320863468 (425070523904 ns) > initial count (178564809728 ns). Using initial count to start timer.
[  125.133244][    T5] usb 1-1: config 1 has an invalid descriptor of length 32, skipping remainder of the config
[  125.143942][    T5] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  125.241351][    T5] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  125.250357][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  125.258767][    T5] usb 1-1: SerialNumber: syz
[  125.372099][ T7340] IPv4: Oversized IP packet from 127.202.26.0
[  125.561765][    T5] usb 1-1: 0:2 : does not exist
[  125.567842][    T5] usb 1-1: USB disconnect, device number 2
[  125.630416][ T7351] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.637526][ T7351] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.649755][ T7351] device bridge_slave_1 left promiscuous mode
[  125.655906][ T7351] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.663754][ T7351] device bridge_slave_0 left promiscuous mode
[  125.669719][ T7351] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.766891][ T7354] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  125.770274][ T7359] overlayfs: failed to clone upperpath
[  125.785290][  T342] udevd[342]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  125.828511][ T7363] tipc: Started in network mode
[  125.833671][ T7363] tipc: Own node identity @, cluster identity 4711
[  125.840106][ T7363] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  126.148855][ T7382] kvm: pic: non byte write
[  126.404114][ T7378] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  126.416210][ T7378] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  126.435755][ T7378] F2FS-fs (loop7): invalid crc value
[  126.466384][ T7378] F2FS-fs (loop7): Found nat_bits in checkpoint
[  126.521427][ T7378] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  126.528278][ T7378] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  126.611821][  T315] F2FS-fs (loop7): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  126.620776][  T315] F2FS-fs (loop7): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  126.755019][ T7404] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.762118][ T7404] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.769514][ T7404] device bridge_slave_0 entered promiscuous mode
[  126.787204][ T7404] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.801674][ T7404] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.809191][ T7404] device bridge_slave_1 entered promiscuous mode
[  126.919798][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  126.927504][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  126.952709][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  126.977918][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  126.988031][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.994928][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.002932][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  127.011329][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  127.019592][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.026594][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.047220][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  127.054911][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  127.063113][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  127.080109][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  127.093546][    T7] device bridge_slave_1 left promiscuous mode
[  127.100325][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.108511][    T7] device bridge_slave_0 left promiscuous mode
[  127.114685][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.122621][    T7] device veth1_macvtap left promiscuous mode
[  127.128448][    T7] device veth0_vlan left promiscuous mode
[  127.224436][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  127.232500][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  127.239664][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  127.250722][ T7404] device veth0_vlan entered promiscuous mode
[  127.266421][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  127.276054][ T7404] device veth1_macvtap entered promiscuous mode
[  127.287235][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  127.304113][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  127.329792][ T7442] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7442 comm=syz.1.3013
[  127.358230][ T7442] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7442 comm=syz.1.3013
[  127.471535][ T7453] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  127.763524][ T7494] device wg2 entered promiscuous mode
[  127.915693][ T7502] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7502 comm=syz.5.3038
[  128.372915][ T7540] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3054'.
[  128.511601][ T7542] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  128.519427][ T7542] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  128.528864][ T7542] F2FS-fs (loop5): invalid crc value
[  128.535965][ T7542] F2FS-fs (loop5): Found nat_bits in checkpoint
[  128.575196][ T7542] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  128.583199][ T7542] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  128.854071][   T24] kauditd_printk_skb: 69 callbacks suppressed
[  128.854084][   T24] audit: type=1400 audit(2000000027.240:6961): avc:  denied  { create } for  pid=7561 comm="syz.0.3061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  128.903488][   T24] audit: type=1400 audit(2000000027.270:6962): avc:  denied  { write } for  pid=7561 comm="syz.0.3061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  128.929439][   T24] audit: type=1400 audit(2000000027.270:6963): avc:  denied  { nlmsg_write } for  pid=7561 comm="syz.0.3061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  129.188745][ T7592] syz.1.3075[7592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.188806][ T7592] syz.1.3075[7592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.202618][ T7590] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7590 comm=syz.5.3074
[  129.323896][ T7605] kvm: MONITOR instruction emulated as NOP!
[  129.404763][ T7622] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3087'.
[  130.048688][ T7647] xt_hashlimit: size too large, truncated to 1048576
[  130.439774][ T7685] netlink: 96 bytes leftover after parsing attributes in process `syz.9.3113'.
[  130.877489][ T7694] overlayfs: failed to clone upperpath
[  131.232476][ T7761] tipc: Started in network mode
[  131.237350][ T7761] tipc: Own node identity ac14140f, cluster identity 4711
[  131.245734][ T7761] tipc: New replicast peer: 255.0.0.255
[  131.251248][ T7761] tipc: Enabled bearer <udp:s>, priority 10
[  131.370456][ T7773] x_tables: duplicate underflow at hook 4
[  131.415540][   T24] audit: type=1326 audit(2000000029.800:6964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.479983][   T24] audit: type=1326 audit(2000000029.830:6965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.480515][ T7784] overlayfs: failed to get inode (-116)
[  131.503677][   T24] audit: type=1326 audit(2000000029.830:6966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.532356][   T24] audit: type=1326 audit(2000000029.830:6967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.562681][   T24] audit: type=1326 audit(2000000029.830:6968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.565763][ T7784] overlayfs: failed to get inode (-116)
[  131.597718][   T24] audit: type=1326 audit(2000000029.830:6969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7cd00bcc1f code=0x7ffc0000
[  131.632857][ T7784] overlayfs: failed to get inode (-116)
[  131.645146][ T7784] overlayfs: failed to get inode (-116)
[  131.648998][   T24] audit: type=1326 audit(2000000029.830:6970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7777 comm="syz.0.3153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  131.903256][ T7813] 9pnet: p9_fd_create_tcp (7813): problem connecting socket to 127.0.0.1
[  132.344966][ T7867] syz.1.3194[7867] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.345029][ T7867] syz.1.3194[7867] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.381028][   T15] tipc: 32-bit node address hash set to f1414ac
[  132.463723][ T7871] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  132.480036][ T7871] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3195'.
[  132.489319][ T7871] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3195'.
[  132.858204][ T7884] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  132.871115][ T7884] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  132.894832][ T7884] F2FS-fs (loop7): invalid crc value
[  132.911548][ T7895] sch_fq: defrate 0 ignored.
[  132.928568][ T7884] F2FS-fs (loop7): Found nat_bits in checkpoint
[  133.001293][ T7884] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  133.008249][ T7884] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  133.305288][ T7907] FAT-fs (loop9): Directory bread(block 64) failed
[  133.313358][ T7907] FAT-fs (loop9): Directory bread(block 65) failed
[  133.320666][ T7907] FAT-fs (loop9): Directory bread(block 66) failed
[  133.337870][ T7907] FAT-fs (loop9): Directory bread(block 67) failed
[  133.350791][ T7907] FAT-fs (loop9): Directory bread(block 68) failed
[  133.357692][ T7907] FAT-fs (loop9): Directory bread(block 69) failed
[  133.364271][ T7907] FAT-fs (loop9): Directory bread(block 70) failed
[  133.370689][ T7907] FAT-fs (loop9): Directory bread(block 71) failed
[  133.377368][ T7907] FAT-fs (loop9): Directory bread(block 72) failed
[  133.384358][ T7907] FAT-fs (loop9): Directory bread(block 73) failed
[  133.502681][ T7929] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3217'.
[  133.606828][ T7942] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3222'.
[  133.660926][ T7950] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3226'.
[  133.690402][ T7950] device bridge_slave_1 left promiscuous mode
[  133.696514][ T7950] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.703878][  T383] usb 6-1: new full-speed USB device number 11 using dummy_hcd
[  133.712182][ T7950] bridge1: port 1(bridge_slave_1) entered blocking state
[  133.719023][ T7950] bridge1: port 1(bridge_slave_1) entered disabled state
[  133.726878][ T7950] device bridge_slave_1 entered promiscuous mode
[  133.762427][ T7935] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  133.769986][ T7935] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  133.784587][ T7935] F2FS-fs (loop9): invalid crc value
[  133.791626][ T7935] F2FS-fs (loop9): Found nat_bits in checkpoint
[  133.830063][ T7935] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  133.837144][ T7935] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  134.071092][  T383] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  134.091013][  T383] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  134.251123][  T383] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  134.265687][  T383] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.281048][  T383] usb 6-1: Product: syz
[  134.285440][  T383] usb 6-1: Manufacturer: syz
[  134.289869][  T383] usb 6-1: SerialNumber: syz
[  134.418722][ T7984] syz.9.3238[7984] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.418810][ T7984] syz.9.3238[7984] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.791121][  T383] usb 6-1: 0:2 : does not exist
[  134.878291][ T7997] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  134.898798][ T7997] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  134.919608][ T7997] F2FS-fs (loop9): invalid crc value
[  134.940126][ T7997] F2FS-fs (loop9): Found nat_bits in checkpoint
[  134.970471][ T8037] syz.1.3259[8037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.970522][ T8037] syz.1.3259[8037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.983630][ T7997] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  135.014605][   T24] kauditd_printk_skb: 67 callbacks suppressed
[  135.014618][   T24] audit: type=1400 audit(2000000033.400:7038): avc:  denied  { write } for  pid=8039 comm="syz.1.3260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  135.036658][ T7997] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  135.231533][  T383] usb 6-1: USB disconnect, device number 11
[  135.256270][ T8058] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  135.286795][ T8063] netlink: 'syz.1.3272': attribute type 6 has an invalid length.
[  135.292591][ T8058] EXT4-fs (loop7): 1 truncate cleaned up
[  135.308568][ T8058] EXT4-fs (loop7): mounted filesystem without journal. Opts: init_itable,resuid=0x0000000000000000,stripe=0x0000000000000000,,errors=continue
[  135.355443][ T8071] device gretap0 entered promiscuous mode
[  135.361241][ T8071] device vlan2 entered promiscuous mode
[  135.367320][ T8071] device gretap0 left promiscuous mode
[  135.765780][ T8114] overlayfs: failed to resolve './file1': -2
[  135.802710][   T24] audit: type=1326 audit(2000000034.180:7039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.830666][   T24] audit: type=1326 audit(2000000034.200:7040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.855294][   T24] audit: type=1326 audit(2000000034.200:7041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.879694][   T24] audit: type=1326 audit(2000000034.200:7042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.903465][   T24] audit: type=1326 audit(2000000034.200:7043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.930239][ T8122] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  135.946495][   T24] audit: type=1326 audit(2000000034.200:7044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  135.960224][ T8122] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  135.969869][   T24] audit: type=1326 audit(2000000034.200:7045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  136.002426][   T24] audit: type=1326 audit(2000000034.200:7046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  136.025719][   T24] audit: type=1326 audit(2000000034.200:7047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8120 comm="syz.5.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f996e2c01a3 code=0x7ffc0000
[  136.071845][ T8122] EXT4-fs error (device loop5): ext4_get_journal_inode:5243: inode #5: comm syz.5.3296: unexpected bad inode w/o EXT4_IGET_BAD
[  136.085964][ T8122] EXT4-fs (loop5): no journal found
[  136.091790][ T8122] EXT4-fs (loop5): can't get journal size
[  136.108325][ T8122] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000002,norecovery,min_batch_time=0x000000000000071d,abort,,errors=continue
[  136.566273][ T8167] overlayfs: failed to clone upperpath
[  136.614607][ T8171] device veth0_to_batadv entered promiscuous mode
[  136.644134][ T8174] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev 9p, type 9p) errno=-22
[  136.736748][ T8155] F2FS-fs (loop5): invalid crc value
[  136.754645][ T8155] F2FS-fs (loop5): Found nat_bits in checkpoint
[  136.769488][ T8189] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3325'.
[  136.789902][ T8155] F2FS-fs (loop5): Start checkpoint disabled!
[  136.805260][ T8155] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  137.025751][   T25] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  137.034685][ T8205] UHID_CREATE from different security context by process 1216 (syz.5.3331), this is not allowed.
[  137.046071][   T25] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  138.359357][ T8257] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3351'.
[  138.571907][  T779] kernel write not supported for file bpf-prog (pid: 779 comm: kworker/0:5)
[  139.015172][ T8291] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  139.024002][ T8291] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  139.033172][ T8291] FAT-fs (loop7): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  139.044165][ T8291] FAT-fs (loop7): error, fat_free: invalid cluster chain (i_pos 196)
[  139.059412][ T7256] FAT-fs (loop7): error, fat_free: invalid cluster chain (i_pos 196)
[  139.292489][ T8312] syz.0.3385[8312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.292574][ T8312] syz.0.3385[8312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.422479][ T8328] netlink: 'syz.0.3380': attribute type 4 has an invalid length.
[  139.445232][ T8328] netlink: 'syz.0.3380': attribute type 4 has an invalid length.
[  139.658108][ T8335] FAT-fs (loop5): bogus number of FAT sectors
[  139.664593][ T8335] FAT-fs (loop5): Can't find a valid FAT filesystem
[  139.755867][ T8335] erofs: (device loop5): check_layout_compatibility: unidentified incompatible feature 50000, please upgrade kernel version
[  140.232506][   T24] kauditd_printk_skb: 108 callbacks suppressed
[  140.232521][   T24] audit: type=1326 audit(2000000038.620:7156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8355 comm="syz.1.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.293044][   T24] audit: type=1326 audit(2000000038.620:7157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8355 comm="syz.1.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.316425][   T24] audit: type=1326 audit(2000000038.650:7158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8355 comm="syz.1.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.340344][   T24] audit: type=1326 audit(2000000038.650:7159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8355 comm="syz.1.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.364307][   T24] audit: type=1326 audit(2000000038.650:7160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8355 comm="syz.1.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.437966][ T8369] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  140.488989][ T8369] device syzkaller0 entered promiscuous mode
[  140.511141][ T8368] tipc: Resetting bearer <eth:syzkaller0>
[  140.546772][ T8368] tipc: Disabling bearer <eth:syzkaller0>
[  140.563947][ T8380] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  140.619032][ T8391] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8391 comm=syz.7.3408
[  140.638686][ T8395] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8395 comm=syz.1.3410
[  140.639371][ T8397] syz.0.3411[8397] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  140.651969][ T8397] syz.0.3411[8397] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  140.759178][   T24] audit: type=1326 audit(2000000039.140:7161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.795159][   T24] audit: type=1326 audit(2000000039.140:7162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.818574][   T24] audit: type=1326 audit(2000000039.140:7163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.842906][   T24] audit: type=1326 audit(2000000039.140:7164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.867300][   T24] audit: type=1326 audit(2000000039.140:7165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8408 comm="syz.1.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dee12b169 code=0x7ffc0000
[  140.962094][ T8425] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8425 comm=syz.1.3425
[  141.051061][  T779] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  141.069758][ T8431] netlink: 160 bytes leftover after parsing attributes in process `syz.1.3427'.
[  141.249566][ T8444] tipc: Failed to remove local publication {66,1,1}/3955100910
[  141.257384][ T8444] tipc: Failed to remove local publication {66,1,1}/3955100910
[  141.264846][ T8444] tipc: Failed to remove local publication {66,1,1}/3955100910
[  141.331030][  T779] usb 1-1: Using ep0 maxpacket: 32
[  141.350014][ T8446] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3434'.
[  141.400794][ T8451] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3435'.
[  141.428339][ T8455] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3438'.
[  141.449808][ T8457] tipc: Failed to remove local publication {66,1,1}/2407136528
[  141.462432][  T779] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[  141.472780][  T779] usb 1-1: config 0 has no interface number 0
[  141.532703][ T8464] netlink: 96 bytes leftover after parsing attributes in process `syz.1.3442'.
[  141.671118][  T779] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  141.680125][  T779] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.688109][  T779] usb 1-1: Product: syz
[  141.692161][  T779] usb 1-1: Manufacturer: syz
[  141.696693][  T779] usb 1-1: SerialNumber: syz
[  141.702070][  T779] usb 1-1: config 0 descriptor??
[  141.741582][  T779] smsc95xx v2.0.0
[  142.161142][  T779] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  142.171659][  T779] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  143.081505][  T779] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000020: -71
[  143.092331][  T779] smsc95xx: probe of 1-1:0.67 failed with error -71
[  143.106848][  T779] usb 1-1: USB disconnect, device number 3
[  143.249843][ T8537] overlayfs: failed to clone upperpath
[  143.402745][ T8550] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  143.498569][ T8553] EXT4-fs error (device loop5) in ext4_do_update_inode:5303: error 27
[  143.518952][ T8553] EXT4-fs error (device loop5): ext4_dirty_inode:6110: inode #3: comm syz.5.3482: mark_inode_dirty error
[  143.541529][ T8553] EXT4-fs error (device loop5) in ext4_do_update_inode:5303: error 27
[  143.559358][ T8553] EXT4-fs error (device loop5): __ext4_ext_dirty:182: inode #3: comm syz.5.3482: mark_inode_dirty error
[  143.590581][ T8553] EXT4-fs error (device loop5): ext4_acquire_dquot:6219: comm syz.5.3482: Failed to acquire dquot type 0
[  143.663120][ T8553] EXT4-fs (loop5): 1 orphan inode deleted
[  143.669156][ T8553] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  143.708694][ T8553] ext4 filesystem being mounted at /590/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.822028][ T8583] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3492'.
[  144.071869][ T8593] EXT4-fs (loop9): couldn't mount as ext3 due to feature incompatibilities
[  144.111701][ T8598] xt_bpf: check failed: parse error
[  144.518361][ T8631] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3515'.
[  144.548713][ T8629] EXT4-fs (loop9): Test dummy encryption mode enabled
[  144.557418][ T8629] EXT4-fs (loop9): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  144.715895][ T8645] EXT4-fs (loop9): error: could not find journal device path: error -2
[  144.859992][ T8666] 9pnet: p9_fd_create_tcp (8666): problem connecting socket to 127.0.0.1
[  145.166766][ T8700] netlink: 'syz.1.3546': attribute type 12 has an invalid length.
[  145.454876][ T8712] xt_hashlimit: size too large, truncated to 1048576
[  145.570786][   T24] kauditd_printk_skb: 216 callbacks suppressed
[  145.570799][   T24] audit: type=1326 audit(2000000043.950:7380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.600668][   T24] audit: type=1326 audit(2000000043.950:7381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.625315][   T24] audit: type=1326 audit(2000000043.960:7382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.648955][   T24] audit: type=1326 audit(2000000043.960:7383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.673045][   T24] audit: type=1326 audit(2000000043.960:7384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.701869][   T24] audit: type=1326 audit(2000000043.960:7385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.729349][   T24] audit: type=1326 audit(2000000043.960:7386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.753109][   T24] audit: type=1326 audit(2000000043.960:7387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.777744][   T24] audit: type=1326 audit(2000000043.960:7388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.802155][   T24] audit: type=1326 audit(2000000043.980:7389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8714 comm="syz.0.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd00be169 code=0x7ffc0000
[  145.903128][ T8730] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3558'.
[  145.925591][ T8730] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3558'.
[  145.980373][ T8739] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3562'.
[  146.176242][ T8756] netlink: 96 bytes leftover after parsing attributes in process `syz.9.3570'.
[  146.338072][  T419] attempt to access beyond end of device
[  146.338072][  T419] loop7: rw=1, want=1041, limit=128
[  146.368640][ T8772] syz.9.3578[8772] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.368701][ T8772] syz.9.3578[8772] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.382262][ T8772] device wg2 entered promiscuous mode
[  146.545919][ T8789] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  146.559710][ T8789] ext4 filesystem being mounted at /621/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.577726][ T8789] syz.5.3586 (pid 8789) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  146.590571][ T8789] fscrypt: Adiantum using implementation "adiantum(xchacha12-simd,aes-aesni,nhpoly1305-generic)"
[  147.009413][ T8839] FAT-fs (loop5): Directory bread(block 64) failed
[  147.016176][ T8839] FAT-fs (loop5): Directory bread(block 65) failed
[  147.023616][ T8839] FAT-fs (loop5): Directory bread(block 66) failed
[  147.030142][ T8839] FAT-fs (loop5): Directory bread(block 67) failed
[  147.037522][ T8839] FAT-fs (loop5): Directory bread(block 68) failed
[  147.045079][ T8839] FAT-fs (loop5): Directory bread(block 69) failed
[  147.052110][ T8839] FAT-fs (loop5): Directory bread(block 70) failed
[  147.058839][ T8839] FAT-fs (loop5): Directory bread(block 71) failed
[  147.066415][ T8839] FAT-fs (loop5): Directory bread(block 72) failed
[  147.073652][ T8839] FAT-fs (loop5): Directory bread(block 73) failed
[  147.135576][ T8858] device pim6reg1 entered promiscuous mode
[  147.179616][  T419] attempt to access beyond end of device
[  147.179616][  T419] loop5: rw=1, want=1288, limit=256
[  147.190429][  T419] attempt to access beyond end of device
[  147.190429][  T419] loop5: rw=1, want=1768, limit=256
[  147.201321][  T419] attempt to access beyond end of device
[  147.201321][  T419] loop5: rw=1, want=1928, limit=256
[  147.215118][  T419] attempt to access beyond end of device
[  147.215118][  T419] loop5: rw=1, want=11736, limit=256
[  147.233080][  T419] attempt to access beyond end of device
[  147.233080][  T419] loop5: rw=1, want=12888, limit=256
[  147.352695][ T8875] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3621'.
[  147.452594][ T8881] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  147.467511][ T8880] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.3624: bg 0: block 234: padding at end of block bitmap is not set
[  147.482197][ T8880] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 16 with error 28
[  147.494522][ T8880] EXT4-fs (loop5): This should not happen!! Data will be lost
[  147.494522][ T8880] 
[  147.504710][ T8880] EXT4-fs (loop5): Total free blocks count 0
[  147.510617][ T8880] EXT4-fs (loop5): Free/Dirty block details
[  147.516498][ T8880] EXT4-fs (loop5): free_blocks=0
[  147.521312][ T8880] EXT4-fs (loop5): dirty_blocks=32
[  147.526441][ T8880] EXT4-fs (loop5): Block reservation details
[  147.532279][ T8880] EXT4-fs (loop5): i_reserved_data_blocks=2
[  147.541551][  T419] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 66049 with max blocks 1 with error 28
[  147.554149][  T419] EXT4-fs (loop5): This should not happen!! Data will be lost
[  147.554149][  T419] 
[  147.796267][ T8901] netlink: 64 bytes leftover after parsing attributes in process `syz.5.3631'.
[  148.101248][ T8928] 9pnet: Could not find request transport: f0xffffffffffffffff
[  148.157382][ T8935] xt_bpf: check failed: parse error
[  148.232079][ T8916] F2FS-fs (loop5): fault_injection options not supported
[  148.242488][ T8916] F2FS-fs (loop5): invalid crc value
[  148.254431][ T8916] F2FS-fs (loop5): Found nat_bits in checkpoint
[  148.301356][ T8946] exfat: Deprecated parameter 'namecase'
[  148.316494][ T8951] kvm: pic: non byte write
[  148.320933][ T8916] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  148.329984][ T8946] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  148.486603][  T525] attempt to access beyond end of device
[  148.486603][  T525] loop5: rw=2049, want=45104, limit=40427
[  148.673372][ T8982] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3665'.
[  148.716585][ T8987] syz.9.3666[8987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  148.716648][ T8987] syz.9.3666[8987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  148.768604][ T8987] EXT4-fs (loop9): orphan cleanup on readonly fs
[  148.768889][ T8984] EXT4-fs (loop5): mounted filesystem without journal. Opts: nogrpid,journal_dev=0x0000000000000008,data_err=abort,,errors=continue
[  148.780754][ T8987] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.3666: bg 0: block 248: padding at end of block bitmap is not set
[  148.818395][ T8984] ext4 filesystem being mounted at /649/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  148.819186][ T8987] EXT4-fs error (device loop9): ext4_acquire_dquot:6219: comm syz.9.3666: Failed to acquire dquot type 1
[  148.879584][ T8987] EXT4-fs (loop9): 1 truncate cleaned up
[  148.886221][ T8987] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue
[  148.937122][ T9002] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  148.940824][ T8987] EXT4-fs error (device loop9): ext4_lookup:1834: inode #2: comm syz.9.3666: deleted inode referenced: 12
[  148.945386][ T9002] tipc: Enabled bearer <udp:syz1>, priority 10
[  148.961962][ T8987] EXT4-fs error (device loop9): ext4_lookup:1834: inode #2: comm syz.9.3666: deleted inode referenced: 12
[  149.095459][ T9021] device wg2 left promiscuous mode
[  149.104753][ T9019] netem: incorrect gi model size
[  149.109635][ T9019] netem: change failed
[  149.141812][ T9021] device wg2 entered promiscuous mode
[  149.186726][ T9033] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  149.193886][ T9033] IPv6: NLM_F_CREATE should be set when creating new route
[  149.525552][ T9036] F2FS-fs (loop9): Invalid Fs Meta Ino: node(1) meta(15) root(3)
[  149.534293][ T9036] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[  149.552916][ T9036] F2FS-fs (loop9): invalid crc value
[  149.559598][ T9036] F2FS-fs (loop9): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241045588246331391)
[  149.601317][ T9036] F2FS-fs (loop9): Try to recover 2th superblock, ret: 0
[  149.614064][ T9036] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  149.679925][ T7404] attempt to access beyond end of device
[  149.679925][ T7404] loop9: rw=2049, want=45104, limit=40427
[  149.797878][ T9083] 9pnet: p9_fd_create_unix (9083): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  149.923173][ T9100] 
@ÿ: renamed from bond_slave_0
[  150.154020][ T9121] attempt to access beyond end of device
[  150.154020][ T9121] loop7: rw=2049, want=1041, limit=128
[  150.169808][ T9121] attempt to access beyond end of device
[  150.169808][ T9121] loop7: rw=524288, want=369, limit=128
[  150.331084][  T522] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  150.571053][  T522] usb 1-1: Using ep0 maxpacket: 16
[  150.603730][   T24] kauditd_printk_skb: 141 callbacks suppressed
[  150.603743][   T24] audit: type=1326 audit(2000000048.990:7529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.660728][   T24] audit: type=1326 audit(2000000048.990:7530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.686240][   T24] audit: type=1326 audit(2000000048.990:7531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.714681][   T24] audit: type=1326 audit(2000000048.990:7532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.721099][  T522] usb 1-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  150.749530][   T24] audit: type=1326 audit(2000000048.990:7533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.772944][  T522] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  150.799909][   T24] audit: type=1326 audit(2000000048.990:7534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.821041][  T522] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  150.826883][   T24] audit: type=1326 audit(2000000048.990:7535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.837330][  T522] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30442, setting to 1024
[  150.870580][   T24] audit: type=1326 audit(2000000048.990:7536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.895264][   T24] audit: type=1326 audit(2000000048.990:7537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  150.918923][  T522] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  150.918938][  T522] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  150.991134][  T522] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  151.011301][  T522] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  151.021387][  T522] usb 1-1: SerialNumber: syz
[  151.042698][   T24] audit: type=1326 audit(2000000048.990:7538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9139 comm="syz.5.3729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f996e2c0169 code=0x7ffc0000
[  151.066601][ T9112] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  151.082435][  T522] cdc_acm: probe of 1-1:1.0 failed with error -12
[  151.225750][ T9173] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3743'.
[  151.289587][   T51] usb 1-1: USB disconnect, device number 4
[  151.308262][ T9178] EXT4-fs (loop5): fragment/cluster size (262144) != block size (4096)
[  151.391056][  T779] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  151.462128][ T9190] netem: change failed
[  151.563752][ T9194] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.570833][ T9194] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.578318][ T9194] device bridge_slave_0 entered promiscuous mode
[  151.586129][ T9194] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.593014][ T9194] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.600127][ T9194] device bridge_slave_1 entered promiscuous mode
[  151.637837][ T9194] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.644720][ T9194] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.651825][ T9194] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.658711][ T9194] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.678815][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  151.686662][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.694365][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.708402][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  151.717027][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.723927][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.731482][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  151.739853][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.747039][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.770431][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  151.780333][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  151.794963][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  151.811184][  T779] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.814794][ T9194] device veth0_vlan entered promiscuous mode
[  151.831207][  T779] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  151.849681][  T779] usb 10-1: New USB device found, idVendor=056a, idProduct=0065, bcdDevice= 0.00
[  151.859630][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  151.867817][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  151.874978][  T779] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.875573][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  151.883904][  T779] usb 10-1: config 0 descriptor??
[  151.909013][ T9194] device veth1_macvtap entered promiscuous mode
[  151.916703][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  151.939008][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  151.950082][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  152.033324][ T9222] netlink: 'syz.0.3764': attribute type 12 has an invalid length.
[  152.372986][  T779] wacom 0003:056A:0065.0008: Unknown device_type for 'HID 056a:0065'. Assuming pen.
[  152.387228][  T779] wacom 0003:056A:0065.0008: hidraw0: USB HID v0.00 Device [HID 056a:0065] on usb-dummy_hcd.9-1/input0
[  152.399851][  T779] input: Wacom Bamboo Pen as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/0003:056A:0065.0008/input/input6
[  152.586646][  T522] usb 10-1: USB disconnect, device number 2
[  153.107227][ T9298] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3797'.
[  153.601193][ T9326] device batadv_slave_0 entered promiscuous mode
[  153.633640][ T9329] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3810'.
[  154.028547][ T9369] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3828'.
[  154.037869][ T9369] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3828'.
[  154.091040][  T780] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  154.201044][  T522] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  154.341007][  T780] usb 10-1: Using ep0 maxpacket: 16
[  154.387549][ T9391] netlink: 'syz.1.3839': attribute type 1 has an invalid length.
[  154.395404][ T9391] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3839'.
[  154.471088][  T780] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  154.479097][  T780] usb 10-1: config 0 has no interface number 0
[  154.485526][  T780] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.497019][  T780] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.516831][  T780] usb 10-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  154.527559][  T780] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.544727][  T780] usb 10-1: config 0 descriptor??
[  154.561236][  T522] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.578227][ T9371] F2FS-fs (loop7): invalid crc value
[  154.593368][  T522] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.607030][  T522] usb 5-1: New USB device found, idVendor=05ac, idProduct=022b, bcdDevice= 0.00
[  154.616255][  T522] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.616974][ T9371] F2FS-fs (loop7): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  154.628730][  T522] usb 5-1: config 0 descriptor??
[  154.660508][ T9371] F2FS-fs (loop7): Mounted with checkpoint version = 753bd00b
[  155.111972][  T522] apple 0003:05AC:022B.000A: item fetching failed at offset 5/7
[  155.119765][  T522] apple 0003:05AC:022B.000A: parse failed
[  155.131386][  T522] apple: probe of 0003:05AC:022B.000A failed with error -22
[  155.182960][ T9458] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  155.231245][  T780] uclogic 0003:28BD:0071.0009: failed retrieving string descriptor #100: -71
[  155.239980][  T780] uclogic 0003:28BD:0071.0009: failed retrieving pen parameters: -71
[  155.249268][  T780] uclogic 0003:28BD:0071.0009: pen probing failed: -71
[  155.256193][  T780] uclogic 0003:28BD:0071.0009: failed probing parameters: -71
[  155.263935][  T780] uclogic: probe of 0003:28BD:0071.0009 failed with error -71
[  155.278357][  T780] usb 10-1: USB disconnect, device number 3
[  155.286256][ T9465] netlink: 'syz.7.3871': attribute type 12 has an invalid length.
[  155.310736][ T9469] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3873'.
[  155.326853][ T9471] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3874'.
[  155.337321][  T383] usb 5-1: USB disconnect, device number 8
[  155.631828][ T9485] F2FS-fs (loop7): fault_injection options not supported
[  155.639694][ T9485] F2FS-fs (loop7): invalid crc value
[  155.646519][ T9485] F2FS-fs (loop7): Found nat_bits in checkpoint
[  155.668846][ T9485] F2FS-fs (loop7): Start checkpoint disabled!
[  155.676021][ T9485] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  155.701045][  T779] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  155.785585][ T9485] ------------[ cut here ]------------
[  155.791807][ T9485] WARNING: CPU: 1 PID: 9485 at fs/f2fs/segment.c:2582 new_curseg+0xee2/0x18c0
[  155.800461][ T9485] Modules linked in:
[  155.804263][ T9485] CPU: 1 PID: 9485 Comm: syz.7.3880 Tainted: G        W         5.10.234-syzkaller-00033-g094fc3778d6b #0
[  155.815960][ T9485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  155.826142][ T9485] RIP: 0010:new_curseg+0xee2/0x18c0
[  155.831449][ T9485] Code: 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 76 3e 88 ff f0 80 0b 04 c7 45 c0 00 00 00 00 45 89 f4 e9 ea fb ff ff e8 1e 9d 4a ff <0f> 0b 48 8b 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 48 3e 88 ff
[  155.850920][ T9485] RSP: 0018:ffffc90000c976e0 EFLAGS: 00010287
[  155.856809][ T9485] RAX: ffffffff82202232 RBX: 0000000000000018 RCX: 0000000000080000
[  155.864721][ T9485] RDX: ffffc90004916000 RSI: 0000000000078e99 RDI: 0000000000078e9a
[  155.873271][ T9485] RBP: ffffc90000c977c0 R08: ffffffff82201cb9 R09: 0000000000000003
[  155.881131][ T9485] R10: fffff52000192ecc R11: dffffc0000000001 R12: 0000000000000006
[  155.888987][ T9485] R13: 0000000000000006 R14: 0000000000000018 R15: dffffc0000000000
[  155.896849][ T9485] FS:  00007fc18d4946c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  155.905615][ T9485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.912014][ T9485] CR2: 0000001b30d02ff8 CR3: 0000000116e9e000 CR4: 00000000003506a0
[  155.919787][ T9485] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  155.927648][ T9485] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  155.935526][ T9485] Call Trace:
[  155.938905][ T9485]  ? show_regs+0x58/0x60
[  155.943109][ T9485]  ? __warn+0x160/0x2f0
[  155.947175][ T9485]  ? new_curseg+0xee2/0x18c0
[  155.951627][ T9485]  ? report_bug+0x3d9/0x5b0
[  155.956047][ T9485]  ? new_curseg+0xee2/0x18c0
[  155.960575][ T9485]  ? handle_bug+0x41/0x70
[  155.965088][ T9485]  ? exc_invalid_op+0x1b/0x50
[  155.969704][ T9485]  ? asm_exc_invalid_op+0x12/0x20
[  155.975067][ T9485]  ? new_curseg+0x969/0x18c0
[  155.979642][ T9485]  ? new_curseg+0xee2/0x18c0
[  155.979689][ T9485]  ? new_curseg+0xee2/0x18c0
[  155.979706][ T9485]  __allocate_new_segment+0x144/0x870
[  155.979720][ T9485]  f2fs_allocate_new_section+0x1c3/0x270
[  155.979730][ T9485]  ? new_curseg+0x18c0/0x18c0
[  155.979744][ T9485]  ? down_read_trylock+0x179/0x1d0
[  155.979755][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.979767][ T9485]  ? __init_rwsem+0x1c0/0x1c0
[  155.979779][ T9485]  expand_inode_data+0x62d/0xc10
[  155.979791][ T9485]  ? f2fs_dirty_inode+0x173/0x2e0
[  155.979804][ T9485]  ? f2fs_insert_range+0x590/0x590
[  155.979812][ T9485]  ? file_update_time+0x3f8/0x460
[  155.979821][ T9485]  ? file_remove_privs+0x570/0x570
[  155.979835][ T9485]  f2fs_fallocate+0x429/0x7e0
[  155.979848][ T9485]  vfs_fallocate+0x492/0x570
[  155.979860][ T9485]  do_vfs_ioctl+0x1686/0x1a30
[  155.979871][ T9485]  ? ioctl_has_perm+0x3f0/0x560
[  155.979884][ T9485]  ? __x32_compat_sys_ioctl+0x90/0x90
[  155.979896][ T9485]  ? has_cap_mac_admin+0x3c0/0x3c0
[  155.979910][ T9485]  ? selinux_file_ioctl+0x3cc/0x540
[  155.979922][ T9485]  ? selinux_file_alloc_security+0x120/0x120
[  155.979934][ T9485]  ? __fget_files+0x31e/0x380
[  155.979947][ T9485]  ? security_file_ioctl+0x84/0xb0
[  155.979958][ T9485]  __se_sys_ioctl+0x99/0x190
[  155.979969][ T9485]  __x64_sys_ioctl+0x7b/0x90
[  155.979980][ T9485]  do_syscall_64+0x34/0x70
[  155.979991][ T9485]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  155.980001][ T9485] RIP: 0033:0x7fc18ee2a169
[  155.980012][ T9485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.980019][ T9485] RSP: 002b:00007fc18d494038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.980034][ T9485] RAX: ffffffffffffffda RBX: 00007fc18f042fa0 RCX: 00007fc18ee2a169
[  155.980041][ T9485] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[  155.980047][ T9485] RBP: 00007fc18eeab2a0 R08: 0000000000000000 R09: 0000000000000000
[  155.980053][ T9485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.980062][ T9485] R13: 0000000000000000 R14: 00007fc18f042fa0 R15: 00007ffc03cc3658
[  155.980070][ T9485] ---[ end trace e0ae6660a8169768 ]---
[  155.980151][ T9485] ------------[ cut here ]------------
[  155.980167][ T9485] WARNING: CPU: 1 PID: 9485 at fs/f2fs/segment.c:2636 new_curseg+0x14d4/0x18c0
[  155.980169][ T9485] Modules linked in:
[  155.980186][ T9485] CPU: 1 PID: 9485 Comm: syz.7.3880 Tainted: G        W         5.10.234-syzkaller-00033-g094fc3778d6b #0
[  155.980192][ T9485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  155.980203][ T9485] RIP: 0010:new_curseg+0x14d4/0x18c0
[  155.980213][ T9485] Code: e9 66 fc ff ff e8 4c 97 4a ff 0f 0b 49 8d 7d 78 be 08 00 00 00 e8 7c 38 88 ff f0 41 80 4d 78 04 e9 d2 ed ff ff e8 2c 97 4a ff <0f> 0b 48 8b 5d 98 48 8d 7b 78 be 08 00 00 00 e8 58 38 88 ff f0 80
[  155.980221][ T9485] RSP: 0018:ffffc90000c976e0 EFLAGS: 00010246
[  155.980231][ T9485] RAX: ffffffff82202824 RBX: 0000000000000001 RCX: 0000000000080000
[  155.980240][ T9485] RDX: ffffc90004916000 RSI: 000000000007ffff RDI: 0000000000080000
[  155.980249][ T9485] RBP: ffffc90000c977c0 R08: ffffffff822024d6 R09: ffffed102187996e
[  155.980256][ T9485] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000018
[  155.980265][ T9485] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff88810c3ccb01
[  155.980275][ T9485] FS:  00007fc18d4946c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  155.980284][ T9485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.980292][ T9485] CR2: 0000001b30d02ff8 CR3: 0000000116e9e000 CR4: 00000000003506a0
[  155.980304][ T9485] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  155.980312][ T9485] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  155.980315][ T9485] Call Trace:
[  155.980328][ T9485]  ? show_regs+0x58/0x60
[  155.980339][ T9485]  ? __warn+0x160/0x2f0
[  155.980349][ T9485]  ? new_curseg+0x14d4/0x18c0
[  155.980361][ T9485]  ? report_bug+0x3d9/0x5b0
[  155.980372][ T9485]  ? new_curseg+0x14d4/0x18c0
[  155.980383][ T9485]  ? handle_bug+0x41/0x70
[  155.980401][ T9485]  ? exc_invalid_op+0x1b/0x50
[  155.980410][ T9485]  ? asm_exc_invalid_op+0x12/0x20
[  155.980422][ T9485]  ? new_curseg+0x1186/0x18c0
[  155.980430][ T9485]  ? new_curseg+0x14d4/0x18c0
[  155.980441][ T9485]  ? new_curseg+0x14d4/0x18c0
[  155.980457][ T9485]  __allocate_new_segment+0x144/0x870
[  155.980472][ T9485]  f2fs_allocate_new_section+0x1c3/0x270
[  155.980481][ T9485]  ? new_curseg+0x18c0/0x18c0
[  155.980492][ T9485]  ? down_read_trylock+0x179/0x1d0
[  155.980502][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.980513][ T9485]  ? __init_rwsem+0x1c0/0x1c0
[  155.980526][ T9485]  expand_inode_data+0x62d/0xc10
[  155.980537][ T9485]  ? f2fs_dirty_inode+0x173/0x2e0
[  155.980551][ T9485]  ? f2fs_insert_range+0x590/0x590
[  155.980560][ T9485]  ? file_update_time+0x3f8/0x460
[  155.980571][ T9485]  ? file_remove_privs+0x570/0x570
[  155.980585][ T9485]  f2fs_fallocate+0x429/0x7e0
[  155.980595][ T9485]  vfs_fallocate+0x492/0x570
[  155.980607][ T9485]  do_vfs_ioctl+0x1686/0x1a30
[  155.980618][ T9485]  ? ioctl_has_perm+0x3f0/0x560
[  155.980629][ T9485]  ? __x32_compat_sys_ioctl+0x90/0x90
[  155.980651][ T9485]  ? has_cap_mac_admin+0x3c0/0x3c0
[  155.980664][ T9485]  ? selinux_file_ioctl+0x3cc/0x540
[  155.980674][ T9485]  ? selinux_file_alloc_security+0x120/0x120
[  155.980685][ T9485]  ? __fget_files+0x31e/0x380
[  155.980696][ T9485]  ? security_file_ioctl+0x84/0xb0
[  155.980707][ T9485]  __se_sys_ioctl+0x99/0x190
[  155.980718][ T9485]  __x64_sys_ioctl+0x7b/0x90
[  155.980729][ T9485]  do_syscall_64+0x34/0x70
[  155.980740][ T9485]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  155.980749][ T9485] RIP: 0033:0x7fc18ee2a169
[  155.980759][ T9485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.980766][ T9485] RSP: 002b:00007fc18d494038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.980779][ T9485] RAX: ffffffffffffffda RBX: 00007fc18f042fa0 RCX: 00007fc18ee2a169
[  155.980786][ T9485] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[  155.980792][ T9485] RBP: 00007fc18eeab2a0 R08: 0000000000000000 R09: 0000000000000000
[  155.980798][ T9485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.980806][ T9485] R13: 0000000000000000 R14: 00007fc18f042fa0 R15: 00007ffc03cc3658
[  155.980815][ T9485] ---[ end trace e0ae6660a8169769 ]---
[  155.980992][ T9485] ==================================================================
[  155.981005][ T9485] BUG: KASAN: slab-out-of-bounds in reset_curseg+0x52e/0x590
[  155.981015][ T9485] Read of size 4 at addr ffff8881108e0bc0 by task syz.7.3880/9485
[  155.981018][ T9485] 
[  155.981030][ T9485] CPU: 1 PID: 9485 Comm: syz.7.3880 Tainted: G        W         5.10.234-syzkaller-00033-g094fc3778d6b #0
[  155.981036][ T9485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  155.981039][ T9485] Call Trace:
[  155.981051][ T9485]  dump_stack_lvl+0x1e2/0x24b
[  155.981063][ T9485]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  155.981073][ T9485]  ? panic+0x812/0x812
[  155.981084][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.981096][ T9485]  print_address_description+0x81/0x3b0
[  155.981106][ T9485]  ? preempt_schedule+0xd9/0xe0
[  155.981117][ T9485]  kasan_report+0x179/0x1c0
[  155.981127][ T9485]  ? reset_curseg+0x52e/0x590
[  155.981137][ T9485]  ? reset_curseg+0x52e/0x590
[  155.981149][ T9485]  __asan_report_load4_noabort+0x14/0x20
[  155.981159][ T9485]  reset_curseg+0x52e/0x590
[  155.981171][ T9485]  new_curseg+0x1371/0x18c0
[  155.981184][ T9485]  __allocate_new_segment+0x144/0x870
[  155.981196][ T9485]  f2fs_allocate_new_section+0x1c3/0x270
[  155.981204][ T9485]  ? new_curseg+0x18c0/0x18c0
[  155.981215][ T9485]  ? down_read_trylock+0x179/0x1d0
[  155.981224][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.981234][ T9485]  ? __init_rwsem+0x1c0/0x1c0
[  155.981246][ T9485]  expand_inode_data+0x62d/0xc10
[  155.981257][ T9485]  ? f2fs_dirty_inode+0x173/0x2e0
[  155.981269][ T9485]  ? f2fs_insert_range+0x590/0x590
[  155.981276][ T9485]  ? file_update_time+0x3f8/0x460
[  155.981285][ T9485]  ? file_remove_privs+0x570/0x570
[  155.981297][ T9485]  f2fs_fallocate+0x429/0x7e0
[  155.981306][ T9485]  vfs_fallocate+0x492/0x570
[  155.981317][ T9485]  do_vfs_ioctl+0x1686/0x1a30
[  155.981328][ T9485]  ? ioctl_has_perm+0x3f0/0x560
[  155.981339][ T9485]  ? __x32_compat_sys_ioctl+0x90/0x90
[  155.981347][ T9485]  ? has_cap_mac_admin+0x3c0/0x3c0
[  155.981359][ T9485]  ? selinux_file_ioctl+0x3cc/0x540
[  155.981370][ T9485]  ? selinux_file_alloc_security+0x120/0x120
[  155.981379][ T9485]  ? __fget_files+0x31e/0x380
[  155.981389][ T9485]  ? security_file_ioctl+0x84/0xb0
[  155.981410][ T9485]  __se_sys_ioctl+0x99/0x190
[  155.981418][ T9485]  __x64_sys_ioctl+0x7b/0x90
[  155.981428][ T9485]  do_syscall_64+0x34/0x70
[  155.981437][ T9485]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  155.981445][ T9485] RIP: 0033:0x7fc18ee2a169
[  155.981454][ T9485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.981460][ T9485] RSP: 002b:00007fc18d494038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.981471][ T9485] RAX: ffffffffffffffda RBX: 00007fc18f042fa0 RCX: 00007fc18ee2a169
[  155.981478][ T9485] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[  155.981484][ T9485] RBP: 00007fc18eeab2a0 R08: 0000000000000000 R09: 0000000000000000
[  155.981490][ T9485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.981497][ T9485] R13: 0000000000000000 R14: 00007fc18f042fa0 R15: 00007ffc03cc3658
[  155.981504][ T9485] 
[  155.981508][ T9485] Allocated by task 9485:
[  155.981519][ T9485]  ____kasan_kmalloc+0xdb/0x110
[  155.981528][ T9485]  __kasan_kmalloc+0x9/0x10
[  155.981538][ T9485]  __kmalloc+0x1aa/0x330
[  155.981550][ T9485]  kvmalloc_node+0x82/0x130
[  155.981560][ T9485]  f2fs_build_segment_manager+0xd2c/0x49b0
[  155.981570][ T9485]  f2fs_fill_super+0x6067/0x7d90
[  155.981581][ T9485]  mount_bdev+0x262/0x370
[  155.981590][ T9485]  f2fs_mount+0x34/0x40
[  155.981601][ T9485]  legacy_get_tree+0xf1/0x190
[  155.981609][ T9485]  vfs_get_tree+0x88/0x290
[  155.981620][ T9485]  do_new_mount+0x2ba/0xb30
[  155.981630][ T9485]  path_mount+0x56f/0xcb0
[  155.981640][ T9485]  __se_sys_mount+0x2c4/0x3b0
[  155.981650][ T9485]  __x64_sys_mount+0xbf/0xd0
[  155.981659][ T9485]  do_syscall_64+0x34/0x70
[  155.981669][ T9485]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  155.981672][ T9485] 
[  155.981681][ T9485] The buggy address belongs to the object at ffff8881108e0800
[  155.981681][ T9485]  which belongs to the cache kmalloc-1k of size 1024
[  155.981693][ T9485] The buggy address is located 960 bytes inside of
[  155.981693][ T9485]  1024-byte region [ffff8881108e0800, ffff8881108e0c00)
[  155.981696][ T9485] The buggy address belongs to the page:
[  155.981710][ T9485] page:ffffea0004423800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1108e0
[  155.981719][ T9485] head:ffffea0004423800 order:3 compound_mapcount:0 compound_pincount:0
[  155.981727][ T9485] flags: 0x4000000000010200(slab|head)
[  155.981743][ T9485] raw: 4000000000010200 ffffea0004adea00 0000000900000002 ffff888100042f00
[  155.981755][ T9485] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  155.981760][ T9485] page dumped because: kasan: bad access detected
[  155.981765][ T9485] page_owner tracks the page as allocated
[  155.981782][ T9485] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 7068, ts 121279056706, free_ts 121276930898
[  155.981791][ T9485]  prep_new_page+0x166/0x180
[  155.981799][ T9485]  get_page_from_freelist+0x2d8c/0x2f30
[  155.981806][ T9485]  __alloc_pages_nodemask+0x435/0xaf0
[  155.981814][ T9485]  new_slab+0x80/0x400
[  155.981823][ T9485]  ___slab_alloc+0x302/0x4b0
[  155.981831][ T9485]  __slab_alloc+0x63/0xa0
[  155.981840][ T9485]  __kmalloc_track_caller+0x1f8/0x320
[  155.981850][ T9485]  __alloc_skb+0xbc/0x510
[  155.981860][ T9485]  alloc_uevent_skb+0x80/0x230
[  155.981870][ T9485]  kobject_uevent_net_broadcast+0x188/0x590
[  155.981879][ T9485]  kobject_uevent_env+0x525/0x700
[  155.981889][ T9485]  kobject_uevent+0x1f/0x30
[  155.981899][ T9485]  net_rx_queue_update_kobjects+0x1e3/0x430
[  155.981910][ T9485]  netdev_register_kobject+0x231/0x320
[  155.981919][ T9485]  register_netdevice+0xe9b/0x13f0
[  155.981930][ T9485]  veth_newlink+0x667/0xb50
[  155.981934][ T9485] page last free stack trace:
[  155.981945][ T9485]  __free_pages_ok+0x82c/0x850
[  155.981953][ T9485]  free_the_page+0x76/0x370
[  155.981964][ T9485]  __free_pages+0x67/0xc0
[  155.981971][ T9485]  __free_slab+0xcf/0x190
[  155.981979][ T9485]  unfreeze_partials+0x15e/0x190
[  155.981988][ T9485]  put_cpu_partial+0xbf/0x180
[  155.981996][ T9485]  __slab_free+0x2c8/0x3a0
[  155.982006][ T9485]  ___cache_free+0x111/0x130
[  155.982016][ T9485]  qlink_free+0x50/0x90
[  155.982025][ T9485]  qlist_free_all+0x47/0xb0
[  155.982034][ T9485]  kasan_quarantine_reduce+0x15a/0x170
[  155.982044][ T9485]  __kasan_slab_alloc+0x2f/0xe0
[  155.982053][ T9485]  slab_post_alloc_hook+0x61/0x2f0
[  155.982063][ T9485]  kmem_cache_alloc_trace+0x163/0x2e0
[  155.982073][ T9485]  kset_create_and_add+0x5c/0x2b0
[  155.982084][ T9485]  netdev_register_kobject+0x1a6/0x320
[  155.982086][ T9485] 
[  155.982089][ T9485] Memory state around the buggy address:
[  155.982098][ T9485]  ffff8881108e0a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  155.982105][ T9485]  ffff8881108e0b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  155.982114][ T9485] >ffff8881108e0b80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  155.982119][ T9485]                                            ^
[  155.982126][ T9485]  ffff8881108e0c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  155.982134][ T9485]  ffff8881108e0c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  155.982138][ T9485] ==================================================================
[  155.982142][ T9485] Disabling lock debugging due to kernel taint
[  155.982220][ T9485] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  155.982227][ T9485] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  155.982240][ T9485] CPU: 1 PID: 9485 Comm: syz.7.3880 Tainted: G    B   W         5.10.234-syzkaller-00033-g094fc3778d6b #0
[  155.982245][ T9485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  155.982257][ T9485] RIP: 0010:update_sit_entry+0x434/0x1050
[  155.982268][ T9485] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f
[  155.982276][ T9485] RSP: 0018:ffffc90000c972b8 EFLAGS: 00010246
[  155.982287][ T9485] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007
[  155.982294][ T9485] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff8881108e0bc8
[  155.982303][ T9485] RBP: ffffc90000c97350 R08: ffffffff821fc8af R09: ffffffff821fc4fd
[  155.982310][ T9485] R10: 0000000000000003 R11: ffff88811a3e62c0 R12: 0000000000003e00
[  155.982317][ T9485] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[  155.982327][ T9485] FS:  00007fc18d4946c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  155.982335][ T9485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.982343][ T9485] CR2: 0000001b30d02ff8 CR3: 0000000116e9e000 CR4: 00000000003506a0
[  155.982356][ T9485] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  155.982363][ T9485] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  155.982366][ T9485] Call Trace:
[  155.982379][ T9485]  ? __die_body+0x62/0xb0
[  155.982390][ T9485]  ? die_addr+0x9f/0xd0
[  155.982412][ T9485]  ? exc_general_protection+0x3ff/0x490
[  155.982427][ T9485]  ? asm_exc_general_protection+0x1e/0x30
[  155.982439][ T9485]  ? update_sit_entry+0x2d/0x1050
[  155.982448][ T9485]  ? update_sit_entry+0x3df/0x1050
[  155.982458][ T9485]  ? update_sit_entry+0x434/0x1050
[  155.982468][ T9485]  ? update_sit_entry+0x402/0x1050
[  155.982480][ T9485]  ? __asan_report_store8_noabort+0x17/0x20
[  155.982493][ T9485]  f2fs_allocate_data_block+0x1512/0x3680
[  155.982505][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.982518][ T9485]  ? _raw_spin_unlock+0x4d/0x70
[  155.982529][ T9485]  ? f2fs_free_inode+0x30/0x30
[  155.982540][ T9485]  ? f2fs_io_type_to_rw_hint+0x210/0x210
[  155.982552][ T9485]  ? f2fs_mark_inode_dirty_sync+0x10d/0x140
[  155.982564][ T9485]  ? inc_valid_block_count+0x583/0xb20
[  155.982578][ T9485]  __allocate_data_block+0x5a7/0xb10
[  155.982591][ T9485]  ? f2fs_map_blocks+0x3e50/0x3e50
[  155.982605][ T9485]  ? try_invoke_on_locked_down_task+0x280/0x280
[  155.982614][ T9485]  ? rwsem_mark_wake+0x14b/0x790
[  155.982624][ T9485]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  155.982635][ T9485]  f2fs_map_blocks+0x18ef/0x3e50
[  155.982644][ T9485]  ? wake_up_q+0x125/0x1e0
[  155.982662][ T9485]  ? f2fs_do_map_lock+0x280/0x280
[  155.982673][ T9485]  ? __kasan_check_write+0x14/0x20
[  155.982685][ T9485]  expand_inode_data+0x682/0xc10
[  155.982695][ T9485]  ? f2fs_dirty_inode+0x173/0x2e0
[  155.982708][ T9485]  ? f2fs_insert_range+0x590/0x590
[  155.982717][ T9485]  ? file_update_time+0x3f8/0x460
[  155.982726][ T9485]  ? file_remove_privs+0x570/0x570
[  155.982739][ T9485]  f2fs_fallocate+0x429/0x7e0
[  155.982757][ T9485]  vfs_fallocate+0x492/0x570
[  155.982772][ T9485]  do_vfs_ioctl+0x1686/0x1a30
[  155.982786][ T9485]  ? ioctl_has_perm+0x3f0/0x560
[  155.982801][ T9485]  ? __x32_compat_sys_ioctl+0x90/0x90
[  155.982816][ T9485]  ? has_cap_mac_admin+0x3c0/0x3c0
[  155.982831][ T9485]  ? selinux_file_ioctl+0x3cc/0x540
[  155.982846][ T9485]  ? selinux_file_alloc_security+0x120/0x120
[  155.982860][ T9485]  ? __fget_files+0x31e/0x380
[  155.982874][ T9485]  ? security_file_ioctl+0x84/0xb0
[  155.982888][ T9485]  __se_sys_ioctl+0x99/0x190
[  155.982902][ T9485]  __x64_sys_ioctl+0x7b/0x90
[  155.982916][ T9485]  do_syscall_64+0x34/0x70
[  155.982931][ T9485]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  155.982944][ T9485] RIP: 0033:0x7fc18ee2a169
[  155.982958][ T9485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.982969][ T9485] RSP: 002b:00007fc18d494038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.982992][ T9485] RAX: ffffffffffffffda RBX: 00007fc18f042fa0 RCX: 00007fc18ee2a169
[  155.983005][ T9485] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[  155.983010][ T9485] RBP: 00007fc18eeab2a0 R08: 0000000000000000 R09: 0000000000000000
[  155.983016][ T9485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.983022][ T9485] R13: 0000000000000000 R14: 00007fc18f042fa0 R15: 00007ffc03cc3658
[  155.983029][ T9485] Modules linked in:
[  155.983041][ T9485] ---[ end trace e0ae6660a816976a ]---
[  155.983052][ T9485] RIP: 0010:update_sit_entry+0x434/0x1050
[  155.983061][ T9485] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f
[  155.983068][ T9485] RSP: 0018:ffffc90000c972b8 EFLAGS: 00010246
[  155.983078][ T9485] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007
[  155.983086][ T9485] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff8881108e0bc8
[  155.983094][ T9485] RBP: ffffc90000c97350 R08: ffffffff821fc8af R09: ffffffff821fc4fd
[  155.983101][ T9485] R10: 0000000000000003 R11: ffff88811a3e62c0 R12: 0000000000003e00
[  155.983108][ T9485] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[  155.983118][ T9485] FS:  00007fc18d4946c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  155.983126][ T9485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.983135][ T9485] CR2: 0000001b30d02ff8 CR3: 0000000116e9e000 CR4: 00000000003506a0
[  155.983146][ T9485] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  155.983153][ T9485] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  155.983158][ T9485] Kernel panic - not syncing: Fatal exception
[  155.983373][ T9485] Kernel Offset: disabled
[  157.875111][ T9485] Rebooting in 86400 seconds..