last executing test programs:

23.309890301s ago: executing program 3 (id=1077):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='jbd2_handle_stats\x00', r0}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = inotify_init1(0x0)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
fcntl$getownex(r2, 0x10, &(0x7f0000000140)={0x0, <r3=>0x0})
r4 = syz_open_procfs(r3, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000180)=0x80000)

23.165183754s ago: executing program 3 (id=1078):
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c646d61736b3d30303030303030303030303030303030303030303135322c666d61736b3d303030303030303030303030303030362c6769643d00ff7f00000000", @ANYRESHEX=0x0, @ANYBLOB="1c03000000", @ANYRESHEX=0xee00, @ANYBLOB=',discard,\x00'], 0x81, 0x14f5, &(0x7f0000001580)="$eJzs3AuYjlXXOPC99t43Y5r0NMlh2GuvmycNtkmSHBJySJIkSXJKSJokSUgMOSUNSchxkhyGkBymMWmcz4eckyavNEkSklPY/0vv+33e9+v9vr7v//b/u65v1u+69jV7zf2s9ax71lzz3PdzXfP80HNUvRb1azcjIvEvgb9+SRFCxAghhgkhbhBCBEKISvGV4q8cL6Ag5V97EvbnejT9WnfAriWef97G88/beP55G88/b+P55208/7yN55+38fwZy8u2zyl2I6+8u/j9/7yMX///F8ktP/mbjeVv7vU/SOH55208/7yN55+38fzzNp5/3sbz/9+v1n9xjOeft/H8GcvLrvX7z7yu7brWv3+MMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxvKGc/4qLYT4t/217osxxhhjjDHGGGN/Hp//WnfAGGOMMcYYY4yx//dASKGEFoHIJ/KLGFFAxIrrRJy4XhQUN4iIuFHEi5tEIXGzKCyKiKKimEgQxUUJYQQKK0iEoqQoJaLiFlFa3CoSRRlRVpQTTpQXSeI2UUHcLiqKO0QlcaeoLO4SVURVUU1UF3eLGuIeUVPUErXFvaKOqCvqifriPtFA3C8aigdEI/GgaCweEk3Ew6KpeEQ0E4+K5uIx0UI8LlqKJ0Qr0Vq0EW1Fu/+r/FdEX/Gq6Cf6ixQxQAwUr4lBYrAYIoaKYeJ1MVy8IUaIN0WqGClGibfEaPG2GCPeEWPFODFevCsmiIlikpgspoipIk28J6aJ98V08YGYIWaKWWK2SBdzxFzxoZgn5osF4iOxUHwsFonFYolYKjLEJyJTLBNZ4lOxXHwmssUKsVKsEqvFGrFWrBPrxQaxUWwSm8UWsVVsE9vF52KH2Cl2id1ij9gr9okvxH7xpTggvhI54uv/Yf7Z/5DfCwQIkCBBg4Z8kA9iIAZiIRbiIA4KQkGIQATiIR4KQSEoDIWhKBSFBEiAElACEBAICEpCSYhCFEpDaUiERCgLZcGBgyRIggpwO1SEilAJKkFlqAxVoCpUhepQHWpADagJNaE21IY6UAfqQT24D+6D+6EhNIRG0AgaQ2NoAk2gKTSFZtAMmkNzaAEtoCW0hFbQCtpAG2gH7aA9tIcO0AE6QSfoDJ2hC3SBZEiGrtAVukE36A7doQf0gJ7QE3pBb+gNr8Ar8Cq8Cv2hjhwAA2EgDIJBMASGwlB4HYbDG/AGvAmpMBJGwVvwFrwNY+AMjIVxMB7GQw05ESbBZCA5FdIgDabBNJgO02EGzISZMBvSYQ7MhbkwD+bDfPgIFsLH8DEshsWwFDIgAzJhGWRBFiyHs5ANK2AlrILVsAZWwzpYD+tgI2yCjbAFtsA22Aafw+ewE3bCbtgNe2EvfAFfwJfwJaRCDuTAQTgIh+AQHIbDkAu5cASOwFE4CsfgGByH43ACTsIpOAmn4TScgbNwDs7BBbgAF+GlhO+a7y2zIVXIK7TUMp/MJ2NkjIyVsTJOxsmCsqCMyIiMl/GykCwkC8vCsqgsKhNkgiwhS0iUKEmGsqQsKaMyKkvL0jJRJsqysqx00skkmSQryAqyoqwoK8k7ZWV5l6wiq8qOrrqsLmvITq6mrCVry9qyjqwr68n6sr5sIBvIhrKhbCQbycaysWwiH5ZN5QAYAo/KK5NpIUdCSzkKWsnWso1sK9+GJ2V7OQY6yI6yk3xajoOx0EW2d8nyOdlVToJu8gU5GV6UPeRU6Clflr1kb9lHviL7yg6un+wvZ8AAOVDOhkFysBwih8p5UFdemVg9+aZMlSPlKPmWXApvyzHyHTlWjpPj5btygpwoJ8nJcoqcKtPke3KafF9Olx/IGXKmnCVny3Q5R86VH8p5cr5cID+SC+XHcpFcLJfIpTJDfiIz5TKZJT+Vy+VnMluukCvlKrlarpFr5Tq5Xm6QG+UmuVlukVvlNrldfi53yJ1yl9wt98i9cp/8Qu6XX8oD8iuZI7+WB+Vf5CH5jTwsv5W58jt5RH4vj8of5DH5ozwuf5In5El5Sv4sT8tf5Bl5Vp6T5+UF+au8KC/Jy9JLoUBJpZRWgcqn8qsYVUDFqutUnLpeFVQ3qIi6UcWrm1QhdbMqrIqooqqYSlDFVQllFCqrSIWqpCqlouoWVVrdqhJVGVVWlVNOlVdJ6jZVQd2uKqo7VCV1p6qs7lJVVFVVTVVXd6sa6h5VU9VStdW9qo6qq+qp+uo+1UDdrxqqB1Qj9aBqrB5STdTDqql6RDVTj6rm6jHVQj2uWqonVCvVWrVRbVU79aRqr55SHVRH1Uk9rTqrZ1QX9axKVs+prup51U29oLqrF1UP9ZLqqV5WvVRv1UddUpeVV/1Uf5WiBqiB6jU1SA1WQ9RQNUy9roarN9QI9aZKVSPVKPWWGq3eVmPUO2qsGqfGq3fVBDVRTVKT1RQ1VaWp99Q09b6arj5QM9RMNUvNVulqjhryt0oL/hv57/+T/BG/Pfs2tV19rnaonWqX2q32qL1qn9qn9qv96oA6oHJUjjqoDqpD6pA6rA6rXJWrjqgj6qg6qo6pY+q4Oq5OqJPqvPpZnVa/qDPqrDqrzqsL6oK6+LefgdCgpVZa60Dn0/l1jC6gY/V1Ok5frwvqG3RE36jj9U26kL5ZF9ZFdFFdTCfo4rqENhq11aRDXVKX0lF9iy6tb9WJuowuq8tpp8vrJH3bv5z/R/210+10e91ed9AddCfdSXfWnXUX3UUn62TdVXfV3XQ33V131z10D91T99S9dC/dR/fRfXVf3U/30yk6RQ/Ur+lBerAeoofqYfp1PVwP1yP0CJ2qU/UoPUqP1qP1GD1Gj9Vj9Xg9Xk/QE/QkPUlP0VN0mk7T0/Q0PV1P1zP0DD1Lz9LpOl3P1XP1PD1PL9AL9EK9UC/Si/QSvURn6AydqTN1ls7Sy/Vyna1X6BV6lV6l1+g1ep1epzfoDXqT3qS36C06W2/X2/UOvUPv0rv0Hr1H79P79H69Xx/QB3SOztEH9UF9SB/Sh/Vhnatz9RF9RB/VR/UxfUwf18f1CX1Cn9Kn9Gl9Wp/RZ/Q5fU5f0Bf0RX1RX9aXr1z2BTKQgQ50kC/IF8QEMUFsEBvEBXFBwaBgEAkiQXwQHxQKbg4KB0WCokGxICEoHpQITICBDSgIg5JBqSAa3BKUDm4NEoMyQdmgXOCC8kFScFtQIbg9qBjcEVQK7gwqB3cFVYKqQbWgenB3UCO4J6gZ1ApqB/cGdYK6Qb2gfnBf0CC4P2gYPBA0Ch4MGgcPBU2Ch4OmwSNBs+DRoHnwWNAieDxoGTwRtApaB22CtkG7P7W+92eKPOX6mf4mxQwwA81rZpAZbIaYoWaYed0MN2+YEeZNk2pGmlHmLTPavG3GmHfMWDPOjDfvmglmoplkJpspZqpJM++ZaeZ9M918YGaYmWaWmW3SzRwz13xo5pn5ZoH5yCw0H5tFZrFZYpaaDPOJyTTLTJb51Cw3n5lss8KsNKvMarPGrDXrzHqzwWw0m8xms8VsNdvMdvO52WF2ml1mt9lj9pp95guz33xpDpivTI752hw0fzGHzDfmsPnW5JrvzBHzvTlqfjDHzI/muPnJnDAnzSnzszltfjFnzFlzzpw3F8yv5qK5ZC4bf+Xi/srLO2rUmA/zYQzGYCzGYhzGYUEsiBGMYDzGYyEshIWxMBbFopiACVgCS+AVhIQlsSRGMYqlsTQmYiKWxbLo0GESJmEFrIAVsSJWwkpYGStjFayC1bAa3o134z14D9bCWngv3ot1sS7Wx/rYABtgQ2yIjbARNsbG2ASbYFNsis2wGTbH5tgCW2BLbImtsBW2wTbYDtthe2yPHbADdsJO2Bk7YxfsgsmYjF2xK3bDbtgdu2MP7IE9sSf2wl7YB/tgX+yL/bAfpmAKDsSBOAgH4RAcgsNwGA7H4TgCR2AqpuIoHIWjcTSOwTE4FsfheHwXJ+BEnISTcQpOxTRMw2k4DafjdJyBM3AWzsJ0TMe5OBfn4TxcgAtwIS7ERbgIl+ASzMAMzMRMzMIsXI7LMRuzcSWuxNW4GtfiWlyP63EjbsTNuBm34lbcjttxB+7AXbgL9+Ae3If7cD/uxwN4AHMwBw/iQTyEh/AwHsZczMUjeASP4lE8hsfwOB7HE3gCT+EpPI2n8QyewXN4Di/gr3gRL+Fl9BhjpYi119k4e70taG+wMbaA/fu4qC1mE2xxW8IaW9gW+YcYrbWJtowta8tZZ8vbJHvb7+IqtqqtZqvbu20Ne4+t+bu4gb3fNrQP2Eb2QVvf3vcPcWP7kG1iH7dN7RO2mW1tm9u2toV93La0T9hWtrVtY9vazvYZ28U+a5Ptc7arff53caZdZtfbDXaj3WT32y/tOXveHrU/2Av2V9vP9rfD7Ot2uH3DjrBv2lQ78nfxePuunWAn2kl2sp1ip/4unmVn23Q7x861H9p5dv7v4gz7iV1os+wiu9gusUt/i6/0lGU/tcvtZzbbrrAr7Sq72q6xa+26f+91ld1it9ptdp/9wu6wO+0uu9vusXt/i6+cxwH7lc2xX9sj9nt7yH5jD9tjNtd+91t85fyO2R/tcfuTPWFP2lP2Z3va/mLP2LO/nf+Vc//ZXrKXrbeCgCQp0hRQPspPMVSAYuk6iqPrqSDdQBG6keLpJipEN1NhKkJFqRglUHEqQYaQLBGFVJJKUZRuodJ0KyVSGSpL5chReUqi26gC3U4V6Q6qRHdSZbqLqlBVqkbV6W6qQfdQTapFteleqkN1qR7Vp/uoAd1PDekBakQPUmN6iJrQw9SUHqFm9Cg1p8eoBT1OLekJakWtqQ21pXb0JLWnp6gDdaRO9DR1pmeoCz1LyfQcdaXnqRu9QN3pRepBL1FPepl6UW/qQ69QX3qV+lF/SqEBNJBeo0E0mIbQUBpGr9NweoNG0JuUSiNpFL1Fo+ltGkPv0FgaR+PpXZpAE2kSTaYpNJXS6D2aRu/TdPqAZtBMmkWzKZ3m0Fz6kObRfFpAH9FC+pgW0WJaQkspgz6hTFpGWfQpLafPKJtW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nT6nHbSTdtFu2kN7aR99QfvpSzpAX1EOfU0H6S90iL6hw/Qt5dJ3dIS+p6P0Ax2jH+k4/UQn6CSdop/pNP1CZ+gsnaPzdIF+pYt0iS6TJxFCKEMV6jAI84X5w5iwQBgbXhfGhdeHBcMbwkh4Yxgf3hQWCm8OC4dFwqJhsTAhLB6WCE2IoQ0pDMOSYakwGt4Slg5vDRPDMmHZsFzowvJhUnhbWCG8PawY3hFWCu8MK4d3hVXCquHjD1YP7w5rhPeENcNaYe3w3rBOWDesF9YP7wsbhPeHDcMHwkbhg2HF8KGwSfhw2DR8JGwWPho2Dx8LW4SPhy3DJ8JWYeuwTdg2bBc+GbYPnwo7hB3DTuHTYefwmbBL+GyYHD4Xdg2f/8PjKeGAcGD4Wvha6P0Dakl0aTQj+kk0M7osmhX9NLo8+lk0O7oiujK6Kro6uia6Nrouuj66Iboxuim6ObolujW6Lep9/fzCgZNOOe0Cl8/ldzGugIt117k4d70r6G5wEXeji3c3uULuZlfYFXFFXTGX4Iq7Es44dNaRC11JV8pF3S2utLvVJboyrqwr55wr75JcW9fOtXPt3VOug+voOrmn3dPuGfeMe9Y9655zXd3zrpt7wXV3L7oe7iX3knvZ9XK9XR/3iuvrXnX9XH+X4lLcQDfQDXKD3BA3xA1zw9xwN9yNcCNcqkt1o9woN9qNdmPcGDfWjXXj3Xg3wU1wk9wkN8VNcWkuzU1z09x0N93NcDPcLDfLpbt0N9fNdfPcPLfALXALExe6RW6RW+KWuAyX4TJdpstyWW65W+6yXbZb6Va61W61W+vWuvVuvdvoNrrNbrPb6ra67W672+F2uF1ul9vj9rh9bp/b7/a7A+6Ay3E57qA76A65Q+6w+9bluu/cEfe9O+p+cMfcj+64+8mdcCfdKfezO+1+cWfcWXfOnXcX3K/uorvkLjvv0iLvRaZF3o9Mj3wQmRGZGZkVmR1Jj8yJzI18GJkXmR9ZEPkosjDycWRRZHFkSWRpJCPySSQzsiySFfk0sjzyWSQ7siKyMrIqsjqyJuJ98R2hL+lL+ai/xZf2t/pEX8aX9eW88+V9kr/NV/C3+4r+Dl/J3+kr+7t8FV/VV/NP+Fa+tW/j2/p2/knf3j/lO/iOvpN/2nf2z/gu/lmf7J/zXf3zvpt/wXf3L/oe/iXf07/se/nevo9/xff1r/p+vr9P8QP8QP+aH+QH+yF+qB/mX/fD/Rt+hH/Tp/qRfpR/y4/2b/sx/h0/1o/z4/27foKf6Cf5yX6Kn+rT/Ht+mn/fT/cf+Bl+pp/lZ/t0P8fP9R/6eX6+X+A/8gv9x36RX+yX+KU+w3/iM/0yn+U/9cv9Zz7br/Ar/Sq/2q/xa/06v95v8Bv9Jr/Zb/Fb/Ta/3X/ud/idfpff7ff4vX6f/8Lv91/6A/4rn+O/9gf9X/wh/40/7L/1uf47f8R/74/6H/wx/6M/7n/yJ/xJf8r/7E/7X/wZf9af8+f9Bf+rv+gv+cv8P2uMMcYYY/8t6g+OD/gn35N/W1cMFEJcv7NY7n+subnwX/eDZULniBDiuf49H/23VadOSkrK3x6brURQarEQInI1P5+4Gq8QncQzIll0FBX+aX+DZe8L9Af1o3cKEft3OTHiany1/u3/Sf0nnx6fWTk8F/9f1F8sRGKpqzkFxNX4av2K/0n9Iu3/oP8C36QJ0eHvcuLE1fhq/STxlHheJP/DIxljjDHGGGOMsb8aLKt1/6P75yv35wn6ak5+cTX+o/tzxhhjjDHGGGOMXXsv9u7z7JPJyR2784Y3vOHNv2+u9V8mxhhjjDHG2J/t6kX/te6EMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLu/5/fJzYtT5HxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhj7Fr7PwEAAP//SOc8Mw==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000640)={<r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={r2, 0x0, r3})

22.914897736s ago: executing program 3 (id=1080):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x2, 0xc}, 0x48)
close(0x3) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x10) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000080"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[], 0x20}}, 0x0) (async, rerun: 64)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a843500082f00fe8000000000000000000000000000bbfe8000000000000000000000000000aa000022eb", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00'], 0x0) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (rerun: 64)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async, rerun: 32)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='cgroup.kill\x00', 0x275a, 0x0) (rerun: 32)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0) (async)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r5, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r6 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0xfffffffc}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
setsockopt$inet_buf(r6, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8) (async)
r10 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

22.094420848s ago: executing program 3 (id=1085):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000006, &(0x7f0000000440)={[{@bh}, {@i_version}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsv1}, {@quota}, {@minixdf}, {@data_err_abort}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@bsdgroups}, {@min_batch_time={'min_batch_time', 0x3d, 0x40000002}}, {@quota}]}, 0xfd, 0x554, &(0x7f0000001080)="$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")
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x1217880, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = syz_io_uring_setup(0x3d1a, &(0x7f0000000480), &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0xfffffe70)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x10)
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mount$cgroup(0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}]})

20.983476185s ago: executing program 3 (id=1092):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000000)={{0x0, 0x0, 0x80}})
bpf$ENABLE_STATS(0x20, &(0x7f0000002080), 0x4)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f00000020c0)={0x8f, 0x0, 0x1})
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000002140), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002380)={r2, 0x0, 0x10, 0xc3, &(0x7f0000002180)="33ae9c210da81353349871fb65365e2b", &(0x7f00000021c0)=""/195, 0x0, 0x0, 0x6c, 0x1a, &(0x7f00000022c0)="79f0c568ec10903ac9988106d04182552a68ad374549c8ffdc224d3ace67ea323f0822ea9e49c1522f6c5198a4ba2ed6bc9471c2f5b685dcb9d7737b9e525c6cc4eec11cd45bc27148dcdab7f436b7d76b1cee8471ef2995879fd81ccab7b7315b836e0ad64331c2228d9d4f", &(0x7f0000002340)="4b31bcd36228af60bb144b52ed19de1357a61c6fce50e9f626d1", 0x0, 0x0, 0xf3f7}, 0x50)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000002400)=[{{0x4, 0x1, 0x0, 0x1}, {0x2}}, {{0x4, 0x1, 0x0, 0x1}, {0x2, 0x0, 0x1}}, {{0x1, 0x0, 0x1}, {0x4, 0x0, 0x1, 0x1}}, {{0x2, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1, 0x1}}, {{0x4, 0x1, 0x1, 0x1}, {0x0, 0x1, 0x1, 0x1}}, {{0x2}, {0x1, 0x1}}, {{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1}}, {{0x2, 0x0, 0x0, 0x1}, {0x2, 0x0, 0x1}}, {{0x4, 0x0, 0x1}, {0x4, 0x1, 0x1, 0x1}}, {{0x4, 0x1}, {0x1}}], 0x50)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCFLSH(r4, 0x540b, 0x1)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002480), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f00000028c0)={0x6, 0x0, [{0xdddd0000, 0x29, &(0x7f00000024c0)=""/41}, {0x80a0000, 0x68, &(0x7f0000002500)=""/104}, {0x3000, 0xcb, &(0x7f0000002580)=""/203}, {0x10000, 0xa7, &(0x7f0000002680)=""/167}, {0x5000, 0xec, &(0x7f0000002740)=""/236}, {0x4, 0x5b, &(0x7f0000002840)=""/91}]})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002a40)={{{@in=@multicast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@empty}}, &(0x7f0000002b40)=0xe8)
fstat(r2, &(0x7f0000002b80)={0x0, 0x0, 0x0, 0x0, <r7=>0x0, <r8=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000002c00)={{{@in6=@mcast1, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@local}, 0x0, @in6=@mcast1}}, &(0x7f0000002d00)=0xe8)
r10 = getegid()
lsetxattr$system_posix_acl(&(0x7f00000029c0)='./file0\x00', &(0x7f0000002a00)='system.posix_acl_default\x00', &(0x7f0000002d40)={{}, {0x1, 0x4}, [{0x2, 0x1, r6}, {0x2, 0x0, 0xee00}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r7}, {0x2, 0x0, r9}], {0x4, 0x2}, [{0x8, 0x6, 0xee01}, {0x8, 0x6, r10}], {0x10, 0x1}, {0x20, 0x3}}, 0x5c, 0x2)
r11 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000002dc0), 0xc8a042, 0x0)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000002e00)={0x42, 0x3, 0x1}, 0x10)
r12 = openat$cgroup_procs(r11, &(0x7f0000004280)='cgroup.procs\x00', 0x2, 0x0)
ioctl$sock_FIOGETOWN(r11, 0x8903, &(0x7f00000042c0)=<r13=>0x0)
r14 = timerfd_create(0x1, 0x80000)
syz_clone3(&(0x7f00000044c0)={0x4108080, &(0x7f0000004300), &(0x7f0000004340)=<r15=>0x0, &(0x7f0000004380), {0x33}, &(0x7f00000043c0)=""/13, 0xd, &(0x7f0000004400)=""/117, &(0x7f0000004480)=[0x0], 0x1, {r11}}, 0x58)
getsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f0000004540)={<r16=>0x0}, &(0x7f0000004580)=0xc)
sendmmsg$unix(r11, &(0x7f0000004680)=[{{&(0x7f0000002e40)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004200)=[{&(0x7f0000002ec0)="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", 0x1000}, {&(0x7f0000003ec0)="e4556492c6688ee1a5ca361d51f8c1e3c15984ae4f6f69859e68eb21617db36940149524df2cfff0341e17727b15f73b4e8a4b3913265e9478d12e8669d3df986312fb2a9086b81be84656e6fbb4df4ad357156da99fbef68e11045cad6c44cdf4533394a7e5fd5b40fae43a5bd1e721c081523eefc5437720b58325cb758a62847695397ed80abee7e4bcf4668418cfb1c1fabbdeedbd3d7af2cf", 0x9b}, {&(0x7f0000003f80)="ae8cd1ac4004c90e602447909265546c2009011d0743a58ccba62a263241b4ecfe944ecfd648191dc4ecb855df8aeab3e16169e360bc7131469eabfb74c767e76add999038ff7d7c95598b0ccdaf8ee613b08200d173493aa79fd7678062020d7b53a7b8122c691e042a130042e4", 0x6e}, {&(0x7f0000004000)="7103d8cf13bd1e992d32aa3e0a9ec7d049fc5cccf15cc2061cd4ca8fe1c62ffb7f8f67d02bfc120cba672464144ece3865567502acced26e3ab59e967101ba39a1cd18a3f9f06922523b5e53509fed53d765cd8eb0d281e03baebcd624c472e2a09c631a43bafc0a0399f772c6b9d81206c700ad32c17e61be667b361232d0607c1182e926a8f7ed2817b06cadc251380ada196e4cf9710844334f1d8bb3bcf3cbecd1853e0e2211ad27935c0ca6a371ab45bfb1810c92ca54ecd2549a4350f24f3b3c3c0bf200f7fafe5b783fd73ac017e17bdae83b5d08c2fdbecd5ee9cdadd462eb0e1aef8e15", 0xe8}, {&(0x7f0000004100)="e3e2bc1103bb23f312f36cad7742d2520e3c38196b650c606138fdb0ef0fb718f152b663a20edc419a359317d492c13c9e5d33c597b2f96bd162956ae62a2bf8afa09e92e64a428a548c1417665f226919aeb1846c6c53258b78cc53b2a518a9f1ffdc45551ef632aa6a627f4ac81d727ba44860d11430e97bde203b077fa49add38a277db23b53187fa70baec3e22b069eedcb01461901339c1592013d9909402a0e51269c38f0cad79ac6112d66e6d966861a29b0c61f08718ecb868975537abcbf8f88ae71e20652c230c7d51a80bceb7dd8dc5322d97fda1", 0xda}], 0x5, &(0x7f00000045c0)=[@rights={{0x14, 0x1, 0x1, [r12]}}, @cred={{0x1c, 0x1, 0x2, {r13, r7, r10}}}, @rights={{0x24, 0x1, 0x1, [r0, r0, r14, 0xffffffffffffffff, r4]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9, r10}}}, @cred={{0x1c, 0x1, 0x2, {r15, r9, r8}}}, @cred={{0x1c, 0x1, 0x2, {r16, r6, r10}}}], 0xc0, 0x24080080}}], 0x1, 0x240400c0)
r17 = openat$procfs(0xffffffffffffff9c, &(0x7f00000046c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r17, 0x10f, 0x87, &(0x7f0000004700)={0x43, 0x3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000004740)={0xffffffffffffffff, <r18=>0xffffffffffffffff})
ioctl$sock_TIOCINQ(r18, 0x541b, &(0x7f0000004780))

20.774434584s ago: executing program 3 (id=1096):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus/file0\x00', 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./bus\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r2, 0x0, 0x0)

12.698702324s ago: executing program 4 (id=1128):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000fc0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
pipe2(&(0x7f0000000800)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80080)
write$FUSE_INIT(r1, &(0x7f0000000400)={0x50}, 0x50)
fcntl$setpipe(r1, 0x407, 0x2000000)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000007c0)=ANY=[@ANYBLOB="1201000000000040b404b107000000000001090224000100d8e5445004000001030000000921000000012209650905810300000000002a086922120c2e0da8"], 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f00000015c0)={0x2c, &(0x7f00000012c0)=ANY=[@ANYBLOB="0000050010000500612bd9"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x3e, 0x51b, &(0x7f0000000100)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x10)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r7, &(0x7f0000000040)=0x1c8, 0x12) (fail_nth: 7)
r8 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f00001cd000/0x3000)=nil, 0x3000, 0x2, 0x2010, r8, 0x4000)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[], 0x1, 0x37f, &(0x7f0000000440)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000880)='./file0\x00', 0x551003, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000100)={[{@noblock_validity}, {@sysvgroups}, {@data_err_abort}, {@noload}, {@nobarrier}, {@lazytime}]}, 0xfe, 0x472, &(0x7f0000000940)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
rename(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='./file1\x00')
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r9 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r9, &(0x7f0000001fc0)=""/184, 0xb8)

9.838261585s ago: executing program 1 (id=1131):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x1000806, &(0x7f0000001780)=ANY=[@ANYBLOB='iocharset=cp1255,umask=00000000000000000000777,gid=', @ANYRESHEX=0xee01, @ANYBLOB=',dmask=00000000000000000000005,gid=', @ANYRES8, @ANYBLOB="2c646d61736b3d30303030303030303030303030303030303030303032372c6572726f72733d636f6e74696e75652c6572726f72733d72656d6f756e742d726f2c00a36a9f3782f0352ef82c07fa1b6ef8989ed1a01b254c18f4a1aa23"], 0x9, 0x1505, &(0x7f00000036c0)="$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")
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0xb11cd4d9cf8c0d8b, 0x18100})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x10)
socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x9)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT, @ANYBLOB=',rootmode=0000000000000000040'])
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a0000000000"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r6, &(0x7f0000000180), 0x3ef, 0x0)

9.421029622s ago: executing program 4 (id=1134):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000780)='big_key\x00', &(0x7f0000000800)=@keyring)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}}, 0x0)

9.371629136s ago: executing program 2 (id=1135):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000180)={0x0, "24f593dd3001f9e44bc11e57b90cfd2b9097d8f23b5908bec2176075de954a8b1fe538e0e81ee12c3179201a06b92b360e2409d87fcbfc6dd4a85d4424b6e17f", 0x30}, 0x48, r8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000780)='big_key\x00', &(0x7f0000000800)=@keyring={'key_or_keyring:', r8})
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r9, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}}, 0x0)

7.669210096s ago: executing program 0 (id=1136):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x57e, 0x2009, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xfd, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="a903000000000000000032"], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x59f6a735718e9c46}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, r2, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x9}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0xd368}, @NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0x4}, @NL80211_ATTR_TXQ_LIMIT={0x8, 0x10a, 0x8001}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040004}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
socket$key(0xf, 0x3, 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x8, 0x8f, &(0x7f00000002c0)=""/143}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = userfaultfd(0x1)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000040))
read(r6, &(0x7f00000002c0)=""/196, 0xc4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r7, &(0x7f0000000340), 0x0}, 0x20)
syz_usb_connect$cdc_ncm(0x2, 0x7d, &(0x7f0000000b80)=ANY=[@ANYBLOB="12011003020000082505a1a440000102030109026b00020168807f09040000"], &(0x7f0000000ac0)={0x0, 0x0, 0x1bb, &(0x7f0000000780)={0x5, 0xf, 0x1bb, 0x5, [@generic={0xab, 0x10, 0xa, "e5c68bf20be95a7fc9be828d33a79b103618180ab15e6593bd2c0bd313467a375a29bc320e533cb5e30fdfc66f0f95296aef448b40ee0ff08cc0f453a7440be5e5e0225ed1a255021489a5802099b5caeae36bd284cbcf67c77f43b663b540889ad5819ae212209ade3c5109034d97983ac44793b079b0846a36e551ebab5476eb34205c9e09c8e5bd1024c08c922bab9274741269651822e8bebf505391e491859605ab0eda91f5"}, @ss_container_id={0x14, 0x10, 0x4, 0xf, "09b1942538862d055813bfbd24a1dfe4"}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "a2b26fc51a601bf9feb4e58fd2704ac1"}, @generic={0xcf, 0x10, 0x1, "4c2ae1c222721ee7aab7af293e83a7cc6a1c3368347b460a0b25a858ae27f48a60405a0c23fddad088ec6255f38e62304ca2854e57acd26d7d893f27e1b69001ba736ffd30297bf495c2128e47251ac5082b67d80d20950f979f37507743b5607d35842c2aae6c4b32e77dbf29d498357616cb7f172230310dd978802f5e0796dbfec303ae4bccebf68fcea9b3032c3cc9ff0f637019401af8e5dca66f074307666a176e112e5618a4e13019b097136b2f629b21a375839f07c939474626b1405b1334857dfe98c5bfcf11cf"}, @ssp_cap={0x14, 0x10, 0xa, 0xb, 0x2, 0x0, 0xf, 0x9, [0xff3f30, 0x30]}]}, 0x5, [{0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x40f}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x1407}}, {0xd2, &(0x7f0000000c80)=@string={0xd2, 0x3, "6cb839b48eab50e5c38a156ac7de791e78771dc49482f96986ea7bd78f757908a69dafa83fc28a7a325c788e271eaa11a129b86e5fb391a3ebc3a9fa1d5f97b42a22b4c3f7cdd0d049cef34af4c3063aaec634771264ee13a1820d6d653871c52a0989d2cb14fa0fde8182d06c602def268f80c39f1fe430aad5549b0f3bfa7c77649b60f27d166d238199a49520cf79ca4c5394ba1f23c9683b813f590d72f65b62a773fc93d5cd69a1206a266aa908ea353f28dc72ec9ce9ca463bd4daa9631dc65d799bff1701f59e8812dc14aa86"}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x809}}, {0xd6, &(0x7f00000009c0)=@string={0xd6, 0x3, "27da7c07eefdfc88b7f2e28deca9745b6c628bd2de60c4b338627c535f6096b0a1486ff0f016022545beed2bb9e9a740f381a0e6aaddbe5d0d0929f809316138ebf29dc997bac173a483b220153f15aa6fda48b7d7026ccaa4a69462ec828b60ffd018ad09b234bdf2b540d44d0d4bc9cc4244f2918ae0bc6d29982aced7c192472351b98bdcc15768f2ac0fee2adf28d64463852132aff653f8f22b0cc1b97262fd89c153778139696d43eb41a2c30f386af2aca51acbf281a72293773ce0b3d94e59a593697af3cf1c6ae0196d15db602c797c"}}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
close(r6)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000d80)=@newtfilter={0xd4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0xa4, 0x2, [@TCA_BASIC_EMATCHES={0xa0, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x94, 0x2, 0x0, 0x1, [@TCF_EM_META={0x90, 0x2, 0x0, 0x0, {{0x5, 0x4, 0xbb}, [@TCA_EM_META_RVALUE={0xf, 0x3, [@TCF_META_TYPE_VAR='*', @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_VAR="1372"]}, @TCA_EM_META_RVALUE={0x19, 0x3, [@TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_VAR="5440cfa251", @TCF_META_TYPE_VAR="a46dcc31", @TCF_META_TYPE_INT=0x4]}, @TCA_EM_META_RVALUE={0xc, 0x3, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0x4]}, @TCA_EM_META_LVALUE={0x10, 0x2, [@TCF_META_TYPE_VAR="a7b42186bac9e9", @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR='T']}, @TCA_EM_META_HDR={0xc, 0x1, {{0x3, 0xf0, 0x1}, {0x5, 0xff}}}, @TCA_EM_META_RVALUE={0xc, 0x3, [@TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0x1]}, @TCA_EM_META_LVALUE={0x9, 0x2, [@TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="f5"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x1, 0x2, 0x2}, {0x5, 0xf7, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x9, 0x1, 0x2}, {0x4a}}}]}}]}]}]}}]}, 0xd4}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000007d2700000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})

7.668913946s ago: executing program 1 (id=1137):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f00000002c0)={[{@errors_remount}]}, 0xfe, 0x492, &(0x7f0000000f00)="$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")
mkdirat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x100)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
lstat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2000)
openat$incfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x4000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
stat(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
r8 = getegid()
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x2000000, &(0x7f00000006c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, r5}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@default_permissions}], [{@permit_directio}, {@permit_directio}, {@fowner_lt={'fowner<', r1}}, {@smackfshat={'smackfshat', 0x3d, 'errors=remount-ro'}}, {@dont_measure}, {@fsname={'fsname', 0x3d, ':(}\x00'}}, {@subj_type={'subj_type', 0x3d, '\\'}}]}}, 0x0, 0x0, &(0x7f0000000800)="f9c22bbd85dd127260a572c06e7c49c0e0f823f81d31679060559a0c0ee44cfcc079691e98677209a0e9510430e863decd5b0b5e1d3e88f2ce76a02bf7700cc9cfbc32e21468b8eb55addd13f7f215e6da2f484efc4ae2b1ee241aa8d4e2b9c72292a7f7bf84e5f7785aae54e89cd3bfe02cb281c4d9a83d90c07611a2d3dd065846735f0218d944f8426b101be8d1485a2da884b4996316c52a884acf65ebe4cb367535")
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000117baafe20b9d00000000060000007ce4351dd5", @ANYRES32=0x0, @ANYBLOB="02000200", @ANYRES32=0x0, @ANYBLOB="02000300", @ANYRES32=0x0, @ANYBLOB="02000200", @ANYRES32, @ANYBLOB="02000400", @ANYRES32=0x0, @ANYBLOB="02000100", @ANYRES32=0x0, @ANYBLOB="02000200", @ANYRES32=r0, @ANYBLOB="040006000000000008000300", @ANYRES32=r2, @ANYBLOB="08000300", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="08000600", @ANYRES32=r6, @ANYBLOB="08000200", @ANYRES32=r7, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r8, @ANYBLOB="10000200000000002000040000000000"], 0x8c, 0x3)
r9 = eventfd(0x0)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read$eventfd(r9, &(0x7f00000001c0), 0x8)

7.668135896s ago: executing program 2 (id=1138):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kvm_fpu\x00'}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x82c40e, &(0x7f0000000340)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@mb_optimize_scan}, {@dioread_lock}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
openat(0xffffffffffffffff, 0x0, 0x208000, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x9)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xf, 0x11012, r0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xd, 0x0, 0x1, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x100}, 0x48)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001880)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000440)=[{0x0}], 0x1}}], 0x1, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2400000001040101"], 0x24}, 0x1, 0x0, 0x0, 0x200088c4}, 0x0)
syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0))
socket$vsock_stream(0x28, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

7.667981426s ago: executing program 4 (id=1142):
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c646d61736b3d30303030303030303030303030303030303030303135322c666d61736b3d303030303030303030303030303030362c6769643d00ff7f00000000", @ANYRESHEX=0x0, @ANYBLOB="1c03000000", @ANYRESHEX=0xee00, @ANYBLOB=',discard,\x00'], 0x81, 0x14f5, &(0x7f0000001580)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000640)={<r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={r2, 0x0, r3})

5.91491932s ago: executing program 0 (id=1139):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000c00)={0xa78, 0xeeee8000})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90)
socketpair(0xa, 0x3, 0x4, 0x0)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x68, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {}, {0x4c, 0x18, {0xfffffffb, @link='syz0\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x44080}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000b00)={r3, 0xe0, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000840)=[0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000008c0)=[0x0, 0x0], 0x0, 0xbd, &(0x7f0000000900)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000940), &(0x7f0000000980), 0x8, 0x10, 0x8, 0x8, &(0x7f00000009c0)}}, 0x10)
rt_tgsigqueueinfo(r0, r0, 0x19, &(0x7f0000000b40)={0x21, 0xfffffff7, 0x85})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r5}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r6 = dup(0xffffffffffffffff)
openat$cgroup_procs(r6, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000200000000000000000818110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7], 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x13, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x7}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf15}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}, @exit, @map_val={0x18, 0xd, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x1}]}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0xda, &(0x7f0000000580)=""/218, 0x41100, 0x6, '\x00', 0x0, 0x0, r6, 0x8, &(0x7f00000003c0)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x0, 0x0, 0x1, 0x7ff}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000680)=[{0x2, 0x3, 0xc, 0x6}], 0x10, 0x8}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x2, 0x0, &(0x7f0000000100))

5.91462953s ago: executing program 1 (id=1140):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000440)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd00000010000100090808004149004008040800", 0x58}], 0x1) (fail_nth: 6)

5.9140901s ago: executing program 2 (id=1141):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
r2 = epoll_create1(0x0)
r3 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(r5, 0x9)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b45602067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a04000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

5.91362951s ago: executing program 4 (id=1143):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f0000000140)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRES16, @ANYRES64=0x0], 0xfd, 0x1500, &(0x7f0000001b80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x8, @mcast1, 0xa67}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000000040)={0x77359400})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)

4.067331752s ago: executing program 0 (id=1144):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='jbd2_handle_stats\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000140)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000180)=0x80000)

4.067003243s ago: executing program 1 (id=1145):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000280)='kmem_cache_free\x00', r0}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="152a89891e"], 0x15)
mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000001900), 0x1, 0x762, &(0x7f0000001180)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x147842, 0x0)
preadv2(r1, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7)

4.066713573s ago: executing program 2 (id=1146):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x6}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x1201403, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800003f0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r7 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r7, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41, 0xf5ff}}, 0x10, 0x0}, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

4.066437043s ago: executing program 4 (id=1147):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
creat(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x5d, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0x0, 0x0, 0xfe}}], {{0x9, 0x5, 0x82, 0x2, 0x60}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0xfe}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009e173610ef171e7206d30102430109021200010000000009040000000206"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(r0, 0x82, 0xfffffffffffffd6e, &(0x7f0000000140)="16688a4a3f1cd2db8dcf350051f14ac00d7c36e54167f08f961d2fc0c37d7c8c2136536697a794f470c5f444560dedb1b190fa34325a3c256fb8b4e2297215f331")
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000100)={0x14, &(0x7f0000000000)={0x0, 0xe, 0x2, {0x2, 0xf}}, 0x0}, &(0x7f0000000200)={0x1c, &(0x7f0000000140)={0x40, 0x30}, 0x0, &(0x7f00000001c0)={0x0, 0x8, 0x1, 0x7e}})

3.948589883s ago: executing program 0 (id=1148):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x1000806, &(0x7f0000001780)=ANY=[@ANYBLOB='iocharset=cp1255,umask=00000000000000000000777,gid=', @ANYRESHEX=0xee01, @ANYBLOB=',dmask=00000000000000000000005,gid=', @ANYRES8, @ANYBLOB="2c646d61736b3d30303030303030303030303030303030303030303032372c6572726f72733d636f6e74696e75652c6572726f72733d72656d6f756e742d726f2c00a36a9f3782f0352ef82c07fa1b6ef8989ed1a01b254c18f4a1aa23"], 0x9, 0x1505, &(0x7f00000036c0)="$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")
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0xb11cd4d9cf8c0d8b, 0x18100})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x10)
socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x9)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT, @ANYBLOB=',rootmode=0000000000000000040'])
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a0000000000"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r6, &(0x7f0000000180), 0x3ef, 0x0)

2.05288016s ago: executing program 0 (id=1149):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000780)='big_key\x00', &(0x7f0000000800)=@keyring)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}}, 0x0)

2.0519734s ago: executing program 1 (id=1150):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kvm_fpu\x00', r0}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x82c40e, &(0x7f0000000340)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@mb_optimize_scan}, {@dioread_lock}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
openat(0xffffffffffffffff, 0x0, 0x208000, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x9)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xf, 0x11012, r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xd, 0x0, 0x1, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x100}, 0x48)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2400000001040101"], 0x24}, 0x1, 0x0, 0x0, 0x200088c4}, 0x0)
syz_clone(0x40100000, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0))

2.051708499s ago: executing program 2 (id=1151):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xfffffffffffffddf, &(0x7f0000000040)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
kcmp(r0, r0, 0x3, r2, r1)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000b457b84256762d9ceb86a426092b41c24466ae5bca5b2116aed03c0dd9d343066a46c923ceafe6f24e1952746e527ed3f6e1a310ed69dea4521b0be9e764be6477a2d359b4da91d7491dab23badc73a263836072d53fe2fc20f38b537f540d"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0x0, 0x204}})

2.733409ms ago: executing program 0 (id=1152):
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c646d61736b3d30303030303030303030303030303030303030303135322c666d61736b3d303030303030303030303030303030362c6769643d00ff7f00000000", @ANYRESHEX=0x0, @ANYBLOB="1c03000000", @ANYRESHEX=0xee00, @ANYBLOB=',discard,\x00'], 0x81, 0x14f5, &(0x7f0000001580)="$eJzs3AuYjlXXOPC99t43Y5r0NMlh2GuvmycNtkmSHBJySJIkSXJKSJokSUgMOSUNSchxkhyGkBymMWmcz4eckyavNEkSklPY/0vv+33e9+v9vr7v//b/u65v1u+69jV7zf2s9ax71lzz3PdzXfP80HNUvRb1azcjIvEvgb9+SRFCxAghhgkhbhBCBEKISvGV4q8cL6Ag5V97EvbnejT9WnfAriWef97G88/beP55G88/b+P55208/7yN55+38fwZy8u2zyl2I6+8u/j9/7yMX///F8ktP/mbjeVv7vU/SOH55208/7yN55+38fzzNp5/3sbz/9+v1n9xjOeft/H8GcvLrvX7z7yu7brWv3+MMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxvKGc/4qLYT4t/217osxxhhjjDHGGGN/Hp//WnfAGGOMMcYYY4yx//dASKGEFoHIJ/KLGFFAxIrrRJy4XhQUN4iIuFHEi5tEIXGzKCyKiKKimEgQxUUJYQQKK0iEoqQoJaLiFlFa3CoSRRlRVpQTTpQXSeI2UUHcLiqKO0QlcaeoLO4SVURVUU1UF3eLGuIeUVPUErXFvaKOqCvqifriPtFA3C8aigdEI/GgaCweEk3Ew6KpeEQ0E4+K5uIx0UI8LlqKJ0Qr0Vq0EW1Fu/+r/FdEX/Gq6Cf6ixQxQAwUr4lBYrAYIoaKYeJ1MVy8IUaIN0WqGClGibfEaPG2GCPeEWPFODFevCsmiIlikpgspoipIk28J6aJ98V08YGYIWaKWWK2SBdzxFzxoZgn5osF4iOxUHwsFonFYolYKjLEJyJTLBNZ4lOxXHwmssUKsVKsEqvFGrFWrBPrxQaxUWwSm8UWsVVsE9vF52KH2Cl2id1ij9gr9okvxH7xpTggvhI54uv/Yf7Z/5DfCwQIkCBBg4Z8kA9iIAZiIRbiIA4KQkGIQATiIR4KQSEoDIWhKBSFBEiAElACEBAICEpCSYhCFEpDaUiERCgLZcGBgyRIggpwO1SEilAJKkFlqAxVoCpUhepQHWpADagJNaE21IY6UAfqQT24D+6D+6EhNIRG0AgaQ2NoAk2gKTSFZtAMmkNzaAEtoCW0hFbQCtpAG2gH7aA9tIcO0AE6QSfoDJ2hC3SBZEiGrtAVukE36A7doQf0gJ7QE3pBb+gNr8Ar8Cq8Cv2hjhwAA2EgDIJBMASGwlB4HYbDG/AGvAmpMBJGwVvwFrwNY+AMjIVxMB7GQw05ESbBZCA5FdIgDabBNJgO02EGzISZMBvSYQ7MhbkwD+bDfPgIFsLH8DEshsWwFDIgAzJhGWRBFiyHs5ANK2AlrILVsAZWwzpYD+tgI2yCjbAFtsA22Aafw+ewE3bCbtgNe2EvfAFfwJfwJaRCDuTAQTgIh+AQHIbDkAu5cASOwFE4CsfgGByH43ACTsIpOAmn4TScgbNwDs7BBbgAF+GlhO+a7y2zIVXIK7TUMp/MJ2NkjIyVsTJOxsmCsqCMyIiMl/GykCwkC8vCsqgsKhNkgiwhS0iUKEmGsqQsKaMyKkvL0jJRJsqysqx00skkmSQryAqyoqwoK8k7ZWV5l6wiq8qOrrqsLmvITq6mrCVry9qyjqwr68n6sr5sIBvIhrKhbCQbycaysWwiH5ZN5QAYAo/KK5NpIUdCSzkKWsnWso1sK9+GJ2V7OQY6yI6yk3xajoOx0EW2d8nyOdlVToJu8gU5GV6UPeRU6Clflr1kb9lHviL7yg6un+wvZ8AAOVDOhkFysBwih8p5UFdemVg9+aZMlSPlKPmWXApvyzHyHTlWjpPj5btygpwoJ8nJcoqcKtPke3KafF9Olx/IGXKmnCVny3Q5R86VH8p5cr5cID+SC+XHcpFcLJfIpTJDfiIz5TKZJT+Vy+VnMluukCvlKrlarpFr5Tq5Xm6QG+UmuVlukVvlNrldfi53yJ1yl9wt98i9cp/8Qu6XX8oD8iuZI7+WB+Vf5CH5jTwsv5W58jt5RH4vj8of5DH5ozwuf5In5El5Sv4sT8tf5Bl5Vp6T5+UF+au8KC/Jy9JLoUBJpZRWgcqn8qsYVUDFqutUnLpeFVQ3qIi6UcWrm1QhdbMqrIqooqqYSlDFVQllFCqrSIWqpCqlouoWVVrdqhJVGVVWlVNOlVdJ6jZVQd2uKqo7VCV1p6qs7lJVVFVVTVVXd6sa6h5VU9VStdW9qo6qq+qp+uo+1UDdrxqqB1Qj9aBqrB5STdTDqql6RDVTj6rm6jHVQj2uWqonVCvVWrVRbVU79aRqr55SHVRH1Uk9rTqrZ1QX9axKVs+prup51U29oLqrF1UP9ZLqqV5WvVRv1UddUpeVV/1Uf5WiBqiB6jU1SA1WQ9RQNUy9roarN9QI9aZKVSPVKPWWGq3eVmPUO2qsGqfGq3fVBDVRTVKT1RQ1VaWp99Q09b6arj5QM9RMNUvNVulqjhryt0oL/hv57/+T/BG/Pfs2tV19rnaonWqX2q32qL1qn9qn9qv96oA6oHJUjjqoDqpD6pA6rA6rXJWrjqgj6qg6qo6pY+q4Oq5OqJPqvPpZnVa/qDPqrDqrzqsL6oK6+LefgdCgpVZa60Dn0/l1jC6gY/V1Ok5frwvqG3RE36jj9U26kL5ZF9ZFdFFdTCfo4rqENhq11aRDXVKX0lF9iy6tb9WJuowuq8tpp8vrJH3bv5z/R/210+10e91ed9AddCfdSXfWnXUX3UUn62TdVXfV3XQ33V131z10D91T99S9dC/dR/fRfXVf3U/30yk6RQ/Ur+lBerAeoofqYfp1PVwP1yP0CJ2qU/UoPUqP1qP1GD1Gj9Vj9Xg9Xk/QE/QkPUlP0VN0mk7T0/Q0PV1P1zP0DD1Lz9LpOl3P1XP1PD1PL9AL9EK9UC/Si/QSvURn6AydqTN1ls7Sy/Vyna1X6BV6lV6l1+g1ep1epzfoDXqT3qS36C06W2/X2/UOvUPv0rv0Hr1H79P79H69Xx/QB3SOztEH9UF9SB/Sh/Vhnatz9RF9RB/VR/UxfUwf18f1CX1Cn9Kn9Gl9Wp/RZ/Q5fU5f0Bf0RX1RX9aXr1z2BTKQgQ50kC/IF8QEMUFsEBvEBXFBwaBgEAkiQXwQHxQKbg4KB0WCokGxICEoHpQITICBDSgIg5JBqSAa3BKUDm4NEoMyQdmgXOCC8kFScFtQIbg9qBjcEVQK7gwqB3cFVYKqQbWgenB3UCO4J6gZ1ApqB/cGdYK6Qb2gfnBf0CC4P2gYPBA0Ch4MGgcPBU2Ch4OmwSNBs+DRoHnwWNAieDxoGTwRtApaB22CtkG7P7W+92eKPOX6mf4mxQwwA81rZpAZbIaYoWaYed0MN2+YEeZNk2pGmlHmLTPavG3GmHfMWDPOjDfvmglmoplkJpspZqpJM++ZaeZ9M918YGaYmWaWmW3SzRwz13xo5pn5ZoH5yCw0H5tFZrFZYpaaDPOJyTTLTJb51Cw3n5lss8KsNKvMarPGrDXrzHqzwWw0m8xms8VsNdvMdvO52WF2ml1mt9lj9pp95guz33xpDpivTI752hw0fzGHzDfmsPnW5JrvzBHzvTlqfjDHzI/muPnJnDAnzSnzszltfjFnzFlzzpw3F8yv5qK5ZC4bf+Xi/srLO2rUmA/zYQzGYCzGYhzGYUEsiBGMYDzGYyEshIWxMBbFopiACVgCS+AVhIQlsSRGMYqlsTQmYiKWxbLo0GESJmEFrIAVsSJWwkpYGStjFayC1bAa3o134z14D9bCWngv3ot1sS7Wx/rYABtgQ2yIjbARNsbG2ASbYFNsis2wGTbH5tgCW2BLbImtsBW2wTbYDtthe2yPHbADdsJO2Bk7YxfsgsmYjF2xK3bDbtgdu2MP7IE9sSf2wl7YB/tgX+yL/bAfpmAKDsSBOAgH4RAcgsNwGA7H4TgCR2AqpuIoHIWjcTSOwTE4FsfheHwXJ+BEnISTcQpOxTRMw2k4DafjdJyBM3AWzsJ0TMe5OBfn4TxcgAtwIS7ERbgIl+ASzMAMzMRMzMIsXI7LMRuzcSWuxNW4GtfiWlyP63EjbsTNuBm34lbcjttxB+7AXbgL9+Ae3If7cD/uxwN4AHMwBw/iQTyEh/AwHsZczMUjeASP4lE8hsfwOB7HE3gCT+EpPI2n8QyewXN4Di/gr3gRL+Fl9BhjpYi119k4e70taG+wMbaA/fu4qC1mE2xxW8IaW9gW+YcYrbWJtowta8tZZ8vbJHvb7+IqtqqtZqvbu20Ne4+t+bu4gb3fNrQP2Eb2QVvf3vcPcWP7kG1iH7dN7RO2mW1tm9u2toV93La0T9hWtrVtY9vazvYZ28U+a5Ptc7arff53caZdZtfbDXaj3WT32y/tOXveHrU/2Av2V9vP9rfD7Ot2uH3DjrBv2lQ78nfxePuunWAn2kl2sp1ip/4unmVn23Q7x861H9p5dv7v4gz7iV1os+wiu9gusUt/i6/0lGU/tcvtZzbbrrAr7Sq72q6xa+26f+91ld1it9ptdp/9wu6wO+0uu9vusXt/i6+cxwH7lc2xX9sj9nt7yH5jD9tjNtd+91t85fyO2R/tcfuTPWFP2lP2Z3va/mLP2LO/nf+Vc//ZXrKXrbeCgCQp0hRQPspPMVSAYuk6iqPrqSDdQBG6keLpJipEN1NhKkJFqRglUHEqQYaQLBGFVJJKUZRuodJ0KyVSGSpL5chReUqi26gC3U4V6Q6qRHdSZbqLqlBVqkbV6W6qQfdQTapFteleqkN1qR7Vp/uoAd1PDekBakQPUmN6iJrQw9SUHqFm9Cg1p8eoBT1OLekJakWtqQ21pXb0JLWnp6gDdaRO9DR1pmeoCz1LyfQcdaXnqRu9QN3pRepBL1FPepl6UW/qQ69QX3qV+lF/SqEBNJBeo0E0mIbQUBpGr9NweoNG0JuUSiNpFL1Fo+ltGkPv0FgaR+PpXZpAE2kSTaYpNJXS6D2aRu/TdPqAZtBMmkWzKZ3m0Fz6kObRfFpAH9FC+pgW0WJaQkspgz6hTFpGWfQpLafPKJtW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nT6nHbSTdtFu2kN7aR99QfvpSzpAX1EOfU0H6S90iL6hw/Qt5dJ3dIS+p6P0Ax2jH+k4/UQn6CSdop/pNP1CZ+gsnaPzdIF+pYt0iS6TJxFCKEMV6jAI84X5w5iwQBgbXhfGhdeHBcMbwkh4Yxgf3hQWCm8OC4dFwqJhsTAhLB6WCE2IoQ0pDMOSYakwGt4Slg5vDRPDMmHZsFzowvJhUnhbWCG8PawY3hFWCu8MK4d3hVXCquHjD1YP7w5rhPeENcNaYe3w3rBOWDesF9YP7wsbhPeHDcMHwkbhg2HF8KGwSfhw2DR8JGwWPho2Dx8LW4SPhy3DJ8JWYeuwTdg2bBc+GbYPnwo7hB3DTuHTYefwmbBL+GyYHD4Xdg2f/8PjKeGAcGD4Wvha6P0Dakl0aTQj+kk0M7osmhX9NLo8+lk0O7oiujK6Kro6uia6Nrouuj66Iboxuim6ObolujW6Lep9/fzCgZNOOe0Cl8/ldzGugIt117k4d70r6G5wEXeji3c3uULuZlfYFXFFXTGX4Iq7Es44dNaRC11JV8pF3S2utLvVJboyrqwr55wr75JcW9fOtXPt3VOug+voOrmn3dPuGfeMe9Y9655zXd3zrpt7wXV3L7oe7iX3knvZ9XK9XR/3iuvrXnX9XH+X4lLcQDfQDXKD3BA3xA1zw9xwN9yNcCNcqkt1o9woN9qNdmPcGDfWjXXj3Xg3wU1wk9wkN8VNcWkuzU1z09x0N93NcDPcLDfLpbt0N9fNdfPcPLfALXALExe6RW6RW+KWuAyX4TJdpstyWW65W+6yXbZb6Va61W61W+vWuvVuvdvoNrrNbrPb6ra67W672+F2uF1ul9vj9rh9bp/b7/a7A+6Ay3E57qA76A65Q+6w+9bluu/cEfe9O+p+cMfcj+64+8mdcCfdKfezO+1+cWfcWXfOnXcX3K/uorvkLjvv0iLvRaZF3o9Mj3wQmRGZGZkVmR1Jj8yJzI18GJkXmR9ZEPkosjDycWRRZHFkSWRpJCPySSQzsiySFfk0sjzyWSQ7siKyMrIqsjqyJuJ98R2hL+lL+ai/xZf2t/pEX8aX9eW88+V9kr/NV/C3+4r+Dl/J3+kr+7t8FV/VV/NP+Fa+tW/j2/p2/knf3j/lO/iOvpN/2nf2z/gu/lmf7J/zXf3zvpt/wXf3L/oe/iXf07/se/nevo9/xff1r/p+vr9P8QP8QP+aH+QH+yF+qB/mX/fD/Rt+hH/Tp/qRfpR/y4/2b/sx/h0/1o/z4/27foKf6Cf5yX6Kn+rT/Ht+mn/fT/cf+Bl+pp/lZ/t0P8fP9R/6eX6+X+A/8gv9x36RX+yX+KU+w3/iM/0yn+U/9cv9Zz7br/Ar/Sq/2q/xa/06v95v8Bv9Jr/Zb/Fb/Ta/3X/ud/idfpff7ff4vX6f/8Lv91/6A/4rn+O/9gf9X/wh/40/7L/1uf47f8R/74/6H/wx/6M/7n/yJ/xJf8r/7E/7X/wZf9af8+f9Bf+rv+gv+cv8P2uMMcYYY/8t6g+OD/gn35N/W1cMFEJcv7NY7n+subnwX/eDZULniBDiuf49H/23VadOSkrK3x6brURQarEQInI1P5+4Gq8QncQzIll0FBX+aX+DZe8L9Af1o3cKEft3OTHiany1/u3/Sf0nnx6fWTk8F/9f1F8sRGKpqzkFxNX4av2K/0n9Iu3/oP8C36QJ0eHvcuLE1fhq/STxlHheJP/DIxljjDHGGGOMsb8aLKt1/6P75yv35wn6ak5+cTX+o/tzxhhjjDHGGGOMXXsv9u7z7JPJyR2784Y3vOHNv2+u9V8mxhhjjDHG2J/t6kX/te6EMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLu/5/fJzYtT5HxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhj7Fr7PwEAAP//SOc8Mw==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000640)={<r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000140)={r2, 0x0, r3})

1.53873ms ago: executing program 1 (id=1153):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000180)={0x0, "24f593dd3001f9e44bc11e57b90cfd2b9097d8f23b5908bec2176075de954a8b1fe538e0e81ee12c3179201a06b92b360e2409d87fcbfc6dd4a85d4424b6e17f", 0x30}, 0x48, r8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000780)='big_key\x00', &(0x7f0000000800)=@keyring={'key_or_keyring:', r8})
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r9, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}}, 0x0)

1.10514ms ago: executing program 2 (id=1154):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000540)=ANY=[@ANYRES64, @ANYRESOCT, @ANYRESHEX, @ANYBLOB="d3a8cbc8431fbdedd764e890772da970de9729c1dce5618307b1d0bcc454cf19f64810102c52f9781c13e05d231209c531fbf031d573c776803480b7b07b08afc8782cde928139cb940be59ecb88d87609fd9ae6a895fc2ef3eb27da00957c6d873eb61469b42c354d80a1b2e3175ddfdebc6227da5732aa9fded7e913fe4f7989a3d315cf10c2a5"], &(0x7f0000000080)='syzkaller\x00', 0x40000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x22}, 0x48)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
listen(r5, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000840)={r4, &(0x7f0000000780), &(0x7f0000000740)=@tcp6=r5}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000002180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
write$P9_RVERSION(r7, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15)
r8 = dup(r7)
write$FUSE_BMAP(r8, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r8, &(0x7f0000000700)=ANY=[@ANYBLOB="3801"], 0x138)
write$FUSE_DIRENTPLUS(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="2001000000000000", @ANYRES64=0x0, @ANYBLOB='\x00'/108, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000001000000000000000000000000000000000000004000007400000000000000cd5375be6068be684d163e87ba01236ffdd5b5386b7adbaf95fc61dea94e0f9231a5307d49c0ecdfac2522eb2ce5d17730a8a07afbf0ada6368464d3e6e7ee149d4ba6d654ace7c70beb84c93a5c89299ae8b5706516af0f53e40b8e61e0b1feed8a079fb900"/156], 0x120)
write$FUSE_DIRENTPLUS(r8, &(0x7f00000008c0)=ANY=[@ANYBLOB="10000000000000e0"], 0x10)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB="2c0042370540e2492f91e65192ed19cba36cc91c28fa71a79c954838efa09cb7bcaa125d2287"])
lgetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000480)=ANY=[@ANYBLOB='user.t'], 0x0, 0x300)
r9 = syz_open_dev$vcsu(&(0x7f0000000000), 0x7a, 0x400200)
ioctl$UFFDIO_UNREGISTER(r9, 0x8010aa01, &(0x7f0000000040)={&(0x7f0000ffa000/0x3000)=nil, 0x3000})

0s ago: executing program 4 (id=1155):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000280)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_WANTLQI(r4, 0x0, 0x3, &(0x7f0000000200), &(0x7f0000000340)=0x4)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x4)
timer_create(0x697966fee9da0517, 0x0, &(0x7f00000004c0)=<r6=>0x0)
fstat(r5, &(0x7f0000000440))
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000026c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x3, 0xffffffff, 0x10000000}, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000000c0)='mm_page_alloc\x00', r7}, 0x10)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/144, 0x28}], 0x300)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000940)=ANY=[@ANYBLOB="1201000074020440fd07010099480102030109021b0001000000000904000001c5b3e30009050b", @ANYRES64], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x68}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000005c0)=ANY=[@ANYRES16=r6, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000f00000095", @ANYRES8=r9], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r11}, 0x10)

kernel console output (not intermixed with test programs):

rs=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  188.191617][ T4775] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038 (0x7fffffff)
[  188.255926][ T4800] overlayfs: './file2' not a directory
[  188.263085][ T4800] tipc: Started in network mode
[  188.267837][ T4800] tipc: Node identity 22f90a8344aa, cluster identity 4711
[  188.274800][ T4800] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  188.678702][ T4747] tipc: Disabling bearer <eth:syzkaller0>
[  188.688900][  T311] wacom 0003:056A:00B8.000A: Unknown device_type for 'HID 056a:00b8'. Assuming pen.
[  188.771493][ T4804] syz.2.969[4804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.771574][ T4804] syz.2.969[4804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.949245][ T4808] syz.1.959[4808] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.960945][ T4808] syz.1.959[4808] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.987446][  T311] wacom 0003:056A:00B8.000A: hidraw0: USB HID v0.00 Device [HID 056a:00b8] on usb-dummy_hcd.1-1/input0
[  189.009663][ T4806] loop4: detected capacity change from 0 to 512
[  189.015662][  T311] input: Wacom Intuos4 4x6 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:00B8.000A/input/input7
[  189.242061][ T4815] netlink: 16 bytes leftover after parsing attributes in process `syz.4.970'.
[  189.404265][ T1746] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  189.443666][ T4820] loop0: detected capacity change from 0 to 2048
[  189.482204][ T4820] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  189.687596][  T311] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  189.910953][ T4830] loop0: detected capacity change from 0 to 40427
[  189.967181][  T311] usb 3-1: Using ep0 maxpacket: 16
[  189.967197][ T1746] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  189.997477][ T4830] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  190.005163][ T4830] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  190.014525][ T4830] F2FS-fs (loop0): invalid crc value
[  190.021201][ T4830] F2FS-fs (loop0): Found nat_bits in checkpoint
[  190.059539][ T4830] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  190.062998][  T291] usb 2-1: USB disconnect, device number 11
[  190.066665][ T4830] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  190.107267][  T311] usb 3-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.118222][  T311] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  190.128492][  T311] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  190.137264][ T1746] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  190.139586][  T311] usb 3-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  190.159940][  T311] usb 3-1: config 1 interface 0 has no altsetting 0
[  190.160824][ T1746] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.166860][ T4837] loop1: detected capacity change from 0 to 1024
[  190.174311][ T1746] usb 4-1: Product: syz
[  190.184400][ T1746] usb 4-1: Manufacturer: syz
[  190.188799][ T1746] usb 4-1: SerialNumber: syz
[  190.227532][ T1746] cdc_ether 4-1:1.0: skipping garbage
[  190.232786][ T1746] usb 4-1: bad CDC descriptors
[  190.257250][  T311] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  190.265627][ T4837] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  190.267255][  T311] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  190.280138][ T4837] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  190.283289][  T311] usb 3-1: SerialNumber: syz
[  190.347904][ T4818] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  190.354708][ T4818] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  190.360375][ T4840] loop4: detected capacity change from 0 to 512
[  190.387177][ T1543] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  190.448857][ T4840] EXT4-fs (loop4): 1 orphan inode deleted
[  190.454496][ T4840] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  190.475318][ T4840] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038 (0x7fffffff)
[  190.526832][   T30] kauditd_printk_skb: 15 callbacks suppressed
[  190.526848][   T30] audit: type=1400 audit(2000000012.200:3972): avc:  denied  { setopt } for  pid=4839 comm="syz.4.979" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  190.553260][   T30] audit: type=1400 audit(2000000012.210:3973): avc:  denied  { name_bind } for  pid=4811 comm="syz.3.971" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  190.574878][   T30] audit: type=1400 audit(2000000012.210:3974): avc:  denied  { node_bind } for  pid=4811 comm="syz.3.971" saddr=172.20.20.170 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  190.597136][  T291] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  190.599077][ T4818] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  190.604745][   T30] audit: type=1400 audit(2000000012.230:3975): avc:  denied  { bind } for  pid=4839 comm="syz.4.979" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  190.616839][ T4818] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  190.632113][   T30] audit: type=1400 audit(2000000012.230:3976): avc:  denied  { node_bind } for  pid=4839 comm="syz.4.979" saddr=fe88::5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  190.807212][ T1543] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  190.817735][ T1543] usb 1-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.829969][ T1543] usb 1-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.840566][ T1543] usb 1-1: config 0 interface 0 has no altsetting 0
[  190.847039][ T1543] usb 1-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[  190.857047][ T1543] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.873348][ T4848] netlink: 24 bytes leftover after parsing attributes in process `syz.4.980'.
[  190.996983][ T1543] usb 1-1: config 0 descriptor??
[  191.007166][  T291] usb 2-1: Using ep0 maxpacket: 16
[  191.127210][  T291] usb 2-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.138139][  T291] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  191.147796][  T291] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  191.157391][  T291] usb 2-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  191.170501][  T291] usb 2-1: config 1 interface 0 has no altsetting 0
[  191.203807][ T4818] UDC core: couldn't find an available UDC or it's busy: -16
[  191.211082][ T4818] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  191.238552][  T311] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  191.247258][  T291] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  191.258747][   T30] audit: type=1400 audit(2000000012.930:3977): avc:  denied  { map } for  pid=4829 comm="syz.0.977" path="socket:[29816]" dev="sockfs" ino=29816 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  191.258849][  T291] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  191.297815][  T291] usb 2-1: SerialNumber: syz
[  191.317226][ T4837] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  191.324137][ T4837] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  191.497170][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 68!
[  191.518175][ T1543] zeroplus 0003:0C12:0005.000B: item fetching failed at offset 1/5
[  191.526153][ T1543] zeroplus 0003:0C12:0005.000B: parse failed
[  191.532005][ T1543] zeroplus: probe of 0003:0C12:0005.000B failed with error -22
[  191.538751][ T4837] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  191.546189][ T4837] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  191.577168][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 50!
[  191.590790][   T30] audit: type=1400 audit(2000000013.270:3978): avc:  denied  { create } for  pid=4866 comm="syz.4.981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  191.616621][   T30] audit: type=1400 audit(2000000013.270:3979): avc:  denied  { ioctl } for  pid=4866 comm="syz.4.981" path="socket:[29852]" dev="sockfs" ino=29852 ioctlcmd=0x48de scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  191.717198][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  191.724700][ T1543] usb 1-1: USB disconnect, device number 14
[  191.817187][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  191.927226][   T30] audit: type=1400 audit(2000000013.550:3980): avc:  denied  { write } for  pid=4879 comm="syz.4.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  191.947826][   T30] audit: type=1400 audit(2000000013.550:3981): avc:  denied  { nlmsg_write } for  pid=4879 comm="syz.4.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  191.993081][ T4887] loop4: detected capacity change from 0 to 512
[  192.064054][ T4887] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  192.076588][ T4837] UDC core: couldn't find an available UDC or it's busy: -16
[  192.092014][ T1543] usb 4-1: USB disconnect, device number 14
[  192.093677][ T4837] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  192.104522][ T4909] loop3: detected capacity change from 0 to 512
[  192.115060][ T4887] EXT4-fs (loop4): 1 truncate cleaned up
[  192.120854][ T4887] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  192.151132][  T291] cdc_ether 2-1:1.0 usb1: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  192.359080][ T4909] netlink: 16 bytes leftover after parsing attributes in process `syz.3.986'.
[  192.397380][ T4919] overlayfs: './file2' not a directory
[  192.424767][ T4887] tipc: Started in network mode
[  192.429837][ T4887] tipc: Node identity 3688c4c14b92, cluster identity 4711
[  192.436842][ T4887] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  192.444558][ T4885] tipc: Disabling bearer <eth:syzkaller0>
[  192.545678][ T4932] loop3: detected capacity change from 0 to 128
[  192.556729][ T4932] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  192.597140][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 68!
[  192.677152][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 50!
[  192.728228][  T490] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  192.737167][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 72!
[  192.744461][   T45] tipc: Left network mode
[  192.757154][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 30!
[  192.777155][   T60] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  192.777155][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 6f!
[  192.807863][ T4946] overlayfs: failed to resolve './file1': -2
[  192.817150][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 01!
[  192.886373][ T4949] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.893231][ T4949] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.900608][ T4949] device bridge_slave_0 entered promiscuous mode
[  192.907339][ T4949] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.914166][ T4949] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.917144][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 01!
[  192.921444][ T4949] device bridge_slave_1 entered promiscuous mode
[  192.937187][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 78!
[  192.965509][   T20] usb 3-1: USB disconnect, device number 9
[  192.971754][   T20] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  193.001121][ T4949] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.008005][ T4949] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.015072][ T4949] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.021882][ T4949] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.030835][ T1543] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.038266][ T1543] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.075118][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  193.082293][   T60] usb 1-1: Using ep0 maxpacket: 16
[  193.087763][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  193.102371][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  193.111235][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  193.119612][ T1543] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.126483][ T1543] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.133914][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  193.142200][ T1543] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  193.150351][ T1543] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.157191][ T1543] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.170656][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  193.178879][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  193.186687][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  193.194997][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  193.207274][   T60] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  193.220925][   T60] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  193.225592][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  193.230790][   T60] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  193.246943][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  193.257216][   T60] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  193.262193][ T4949] device veth0_vlan entered promiscuous mode
[  193.274746][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  193.275149][   T60] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.284703][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  193.294973][   T60] usb 1-1: config 0 descriptor??
[  193.304960][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  193.312379][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  193.324919][ T4949] device veth1_macvtap entered promiscuous mode
[  193.332559][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  193.340866][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  193.348917][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  193.356798][   T45] device bridge_slave_1 left promiscuous mode
[  193.363211][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.370538][   T45] device bridge_slave_0 left promiscuous mode
[  193.376514][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.384247][   T45] device veth1_macvtap left promiscuous mode
[  193.390159][   T45] device veth0_vlan left promiscuous mode
[  193.452638][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  193.460579][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 9c!
[  193.467920][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  193.477144][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 4f!
[  193.489669][ T4996] FAULT_INJECTION: forcing a failure.
[  193.489669][ T4996] name failslab, interval 1, probability 0, space 0, times 0
[  193.502117][ T4996] CPU: 0 PID: 4996 Comm: syz.2.994 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  193.511699][ T4996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  193.521597][ T4996] Call Trace:
[  193.524717][ T4996]  <TASK>
[  193.527495][ T4996]  dump_stack_lvl+0x151/0x1c0
[  193.532007][ T4996]  ? io_uring_drop_tctx_refs+0x190/0x190
[  193.537475][ T4996]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[  193.543123][ T4996]  dump_stack+0x15/0x20
[  193.547111][ T4996]  should_fail+0x3c6/0x510
[  193.551365][ T4996]  __should_failslab+0xa4/0xe0
[  193.555961][ T4996]  ? __alloc_skb+0xbe/0x550
[  193.560388][ T4996]  should_failslab+0x9/0x20
[  193.564728][ T4996]  slab_pre_alloc_hook+0x37/0xd0
[  193.569503][ T4996]  ? __alloc_skb+0xbe/0x550
[  193.573841][ T4996]  kmem_cache_alloc+0x44/0x200
[  193.578438][ T4996]  ? _raw_write_lock_bh+0xa4/0x170
[  193.583392][ T4996]  __alloc_skb+0xbe/0x550
[  193.587555][ T4996]  tipc_buf_acquire+0x2b/0xe0
[  193.592065][ T4996]  tipc_named_withdraw+0x208/0x7f0
[  193.597017][ T4996]  tipc_nametbl_withdraw+0x18a/0x390
[  193.602135][ T4996]  tipc_release+0x358/0x1300
[  193.606562][ T4996]  ? tipc_sock_destruct+0x190/0x190
[  193.611596][ T4996]  sock_close+0xdf/0x270
[  193.615673][ T4996]  ? sock_mmap+0xa0/0xa0
[  193.619754][ T4996]  __fput+0x3fe/0x910
[  193.623574][ T4996]  ____fput+0x15/0x20
[  193.627391][ T4996]  task_work_run+0x129/0x190
[  193.631816][ T4996]  exit_to_user_mode_loop+0xc4/0xe0
[  193.636850][ T4996]  exit_to_user_mode_prepare+0x5a/0xa0
[  193.642145][ T4996]  syscall_exit_to_user_mode+0x26/0x160
[  193.647530][ T4996]  do_syscall_64+0x47/0xb0
[  193.651780][ T4996]  ? clear_bhb_loop+0x35/0x90
[  193.656292][ T4996]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  193.662022][ T4996] RIP: 0033:0x7fe3475e5ef9
[  193.666274][ T4996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.685714][ T4996] RSP: 002b:00007fe346260038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  193.693959][ T4996] RAX: 0000000000000000 RBX: 00007fe34779ef80 RCX: 00007fe3475e5ef9
[  193.701774][ T4996] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  193.709585][ T4996] RBP: 00007fe346260090 R08: 0000000000000000 R09: 0000000000000000
[  193.717392][ T4996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.725206][ T4996] R13: 0000000000000000 R14: 00007fe34779ef80 R15: 00007ffea8a5ec08
[  193.733019][ T4996]  </TASK>
[  193.735923][ T4996] tipc: Withdrawal distribution failure
[  193.741306][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 7f!
[  193.750250][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  193.757137][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 1a!
[  193.767519][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  193.777169][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 71!
[  193.788146][   T60] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  193.789210][ T4998] device syzkaller0 entered promiscuous mode
[  193.796918][   T60] microsoft 0003:045E:07DA.000C: ignoring exceeding usage max
[  193.801019][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 6e!
[  193.817161][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 5f!
[  193.832841][   T60] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.000C/input/input10
[  193.837137][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 45!
[  193.873348][ T5007] loop4: detected capacity change from 0 to 512
[  193.897159][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 1b!
[  193.917166][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification a1!
[  193.918033][   T60] microsoft 0003:045E:07DA.000C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  193.948099][ T5007] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz.4.996: corrupted inode contents
[  193.957154][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 88!
[  193.959937][ T5007] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #3: comm syz.4.996: mark_inode_dirty error
[  193.977173][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 4b!
[  193.978191][ T5007] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz.4.996: corrupted inode contents
[  193.996562][ T5007] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.996: mark_inode_dirty error
[  194.007484][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification fe!
[  194.015602][ T5007] EXT4-fs error (device loop4): ext4_acquire_dquot:6187: comm syz.4.996: Failed to acquire dquot type 0
[  194.027151][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 17!
[  194.027946][ T5007] EXT4-fs (loop4): 1 orphan inode deleted
[  194.040109][ T5007] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  194.047151][    C0] cdc_ether 2-1:1.0 usb1: CDC: unexpected notification 02!
[  194.051062][ T5007] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038 (0x7fffffff)
[  194.060700][    T6] usb 1-1: USB disconnect, device number 15
[  194.085469][ T1746] usb 2-1: USB disconnect, device number 12
[  194.094193][ T1746] cdc_ether 2-1:1.0 usb1: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  194.105486][ T5014] loop3: detected capacity change from 0 to 512
[  194.165852][ T5014] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  194.177177][  T308] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  194.194038][ T5014] EXT4-fs (loop3): 1 truncate cleaned up
[  194.200291][ T5014] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  194.593306][ T5034] overlayfs: './file2' not a directory
[  194.599461][ T5034] tipc: Started in network mode
[  194.604170][ T5034] tipc: Node identity c2b6fdf8640d, cluster identity 4711
[  194.611170][ T5034] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  194.667190][  T308] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.677214][  T308] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.688118][  T308] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.697825][  T308] usb 3-1: config 0 interface 0 has no altsetting 0
[  194.705907][  T308] usb 3-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[  194.733385][  T308] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.744482][  T308] usb 3-1: config 0 descriptor??
[  194.759515][ T5036] loop0: detected capacity change from 0 to 512
[  194.777897][ T1746] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  194.888927][ T5040] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1000'.
[  195.024899][ T5013] tipc: Disabling bearer <eth:syzkaller0>
[  195.077667][ T1746] usb 2-1: Using ep0 maxpacket: 16
[  195.177423][  T291] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  195.207266][ T1746] usb 2-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.218712][ T1746] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  195.228463][ T1746] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  195.238014][ T1746] usb 2-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  195.251372][ T1746] usb 2-1: config 1 interface 0 has no altsetting 0
[  195.263588][ T5002] loop2: detected capacity change from 0 to 256
[  195.312047][ T5002] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  195.337216][ T1746] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  195.346195][ T1746] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  195.354136][ T1746] usb 2-1: SerialNumber: syz
[  195.377212][ T5025] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.384031][ T5025] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.407221][  T308] usbhid 3-1:0.0: can't add hid device: -71
[  195.413008][  T308] usbhid: probe of 3-1:0.0 failed with error -71
[  195.417192][  T291] usb 5-1: Using ep0 maxpacket: 32
[  195.422085][  T308] usb 3-1: USB disconnect, device number 10
[  195.537257][  T291] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.546896][  T291] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  195.555737][  T291] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.564092][  T291] usb 5-1: config 0 descriptor??
[  195.598298][ T5025] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.605148][ T5025] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  195.608077][  T291] hub 5-1:0.0: bad descriptor, ignoring hub
[  195.618043][  T291] hub: probe of 5-1:0.0 failed with error -5
[  195.624049][  T291] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  195.835793][   T30] kauditd_printk_skb: 40 callbacks suppressed
[  195.835808][   T30] audit: type=1400 audit(2000000017.510:4020): avc:  denied  { unmount } for  pid=1005 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  195.899760][ T5050] loop2: detected capacity change from 0 to 2048
[  195.953799][   T30] audit: type=1400 audit(2000000017.630:4021): avc:  denied  { read } for  pid=5051 comm="syz.0.1004" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  195.976596][   T30] audit: type=1400 audit(2000000017.630:4022): avc:  denied  { open } for  pid=5051 comm="syz.0.1004" path="/dev/kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  195.999897][   T30] audit: type=1400 audit(2000000017.630:4023): avc:  denied  { ioctl } for  pid=5051 comm="syz.0.1004" path="/dev/kvm" dev="devtmpfs" ino=82 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  196.028397][ T5050] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  196.040210][   T30] audit: type=1400 audit(2000000017.720:4024): avc:  denied  { execmem } for  pid=5051 comm="syz.0.1004" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  196.063622][ T5025] UDC core: couldn't find an available UDC or it's busy: -16
[  196.070055][ T5059] FAULT_INJECTION: forcing a failure.
[  196.070055][ T5059] name failslab, interval 1, probability 0, space 0, times 0
[  196.077155][ T5025] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  196.101574][ T5059] CPU: 1 PID: 5059 Comm: syz.3.1005 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  196.111294][ T5059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  196.113114][   T30] audit: type=1400 audit(2000000017.730:4025): avc:  denied  { mount } for  pid=5049 comm="syz.2.1003" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  196.121185][ T5059] Call Trace:
[  196.121192][ T5059]  <TASK>
[  196.121200][ T5059]  dump_stack_lvl+0x151/0x1c0
[  196.121224][ T5059]  ? io_uring_drop_tctx_refs+0x190/0x190
[  196.121242][ T5059]  ? 0xffffffffa002a000
[  196.121252][ T5059]  ? is_bpf_text_address+0x172/0x190
[  196.121270][ T5059]  ? stack_trace_save+0x1c0/0x1c0
[  196.121287][ T5059]  dump_stack+0x15/0x20
[  196.145172][ T5062] loop0: detected capacity change from 0 to 256
[  196.145749][ T5059]  should_fail+0x3c6/0x510
[  196.186968][ T5059]  __should_failslab+0xa4/0xe0
[  196.191562][ T5059]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  196.197289][ T5059]  should_failslab+0x9/0x20
[  196.201624][ T5059]  slab_pre_alloc_hook+0x37/0xd0
[  196.206398][ T5059]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  196.212048][ T5059]  kmem_cache_alloc+0x44/0x200
[  196.216729][ T5059]  kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  196.222196][ T5059]  kvm_mmu_load+0xdf/0x2120
[  196.226534][ T5059]  ? memset+0x35/0x40
[  196.230353][ T5059]  ? vmx_flush_tlb_all+0xc2/0x380
[  196.235215][ T5059]  ? kvm_apic_accept_events+0x5cd/0x5e0
[  196.240597][ T5059]  ? __kasan_check_write+0x14/0x20
[  196.245543][ T5059]  ? kvm_mmu_unload+0xe0/0xe0
[  196.250055][ T5059]  ? kvm_apic_has_interrupt+0x9d0/0xa70
[  196.255461][ T5059]  ? kvm_lapic_enable_pv_eoi+0x150/0x150
[  196.260908][ T5059]  vcpu_enter_guest+0x832b/0x8ed0
[  196.265768][ T5059]  ? avc_has_perm+0x16f/0x260
[  196.270287][ T5059]  ? local_bh_enable+0x30/0x30
[  196.274880][ T5059]  ? 0xffffffffa002a000
[  196.278871][ T5059]  ? is_bpf_text_address+0x172/0x190
[  196.283992][ T5059]  ? stack_trace_save+0x1c0/0x1c0
[  196.288852][ T5059]  ? __kernel_text_address+0x9b/0x110
[  196.294058][ T5059]  ? unwind_get_return_address+0x4d/0x90
[  196.299528][ T5059]  ? arch_stack_walk+0xf3/0x140
[  196.304214][ T5059]  ? add_atomic_switch_msr_special+0x174/0x300
[  196.310291][ T5059]  ? __kasan_check_write+0x14/0x20
[  196.315237][ T5059]  ? vmx_set_cr0+0x1210/0x1a00
[  196.319841][ T5059]  ? kvm_find_cpuid_entry+0x1b2/0x200
[  196.325043][ T5059]  ? kvm_find_user_return_msr+0xd0/0xf0
[  196.330425][ T5059]  ? __vmx_set_segment+0x595/0xbf0
[  196.335375][ T5059]  ? __kasan_check_read+0x11/0x20
[  196.340231][ T5059]  ? __set_sregs_common+0x1154/0x1530
[  196.345440][ T5059]  ? vmx_set_nmi_mask+0x159/0x270
[  196.350299][ T5059]  ? __kasan_check_write+0x14/0x20
[  196.355247][ T5059]  ? kvm_vcpu_ioctl_x86_set_vcpu_events+0xb1e/0x1190
[  196.361758][ T5059]  kvm_arch_vcpu_ioctl_run+0xc4d/0x2270
[  196.367140][ T5059]  ? selinux_file_permission+0x2c4/0x570
[  196.372605][ T5059]  ? ioctl_has_perm+0x1f8/0x560
[  196.377294][ T5059]  ? __kvm_request_immediate_exit+0x70/0x70
[  196.383021][ T5059]  kvm_vcpu_ioctl+0x7eb/0xcf0
[  196.387534][ T5059]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[  196.393000][ T5059]  ? selinux_file_ioctl+0x3cc/0x540
[  196.398034][ T5059]  ? __mutex_lock_slowpath+0x10/0x10
[  196.403156][ T5059]  ? selinux_file_alloc_security+0x120/0x120
[  196.408979][ T5059]  ? __fget_files+0x31e/0x380
[  196.413485][ T5059]  ? security_file_ioctl+0x84/0xb0
[  196.418540][ T5059]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[  196.424003][ T5059]  __se_sys_ioctl+0x114/0x190
[  196.428518][ T5059]  __x64_sys_ioctl+0x7b/0x90
[  196.432982][ T5059]  x64_sys_call+0x98/0x9a0
[  196.437194][ T5059]  do_syscall_64+0x3b/0xb0
[  196.441445][ T5059]  ? clear_bhb_loop+0x35/0x90
[  196.445960][ T5059]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  196.451774][ T5059] RIP: 0033:0x7f98f1221ef9
[  196.456028][ T5059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.475477][ T5059] RSP: 002b:00007f98efe9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  196.483715][ T5059] RAX: ffffffffffffffda RBX: 00007f98f13daf80 RCX: 00007f98f1221ef9
[  196.491525][ T5059] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  196.499369][ T5059] RBP: 00007f98efe9c090 R08: 0000000000000000 R09: 0000000000000000
[  196.507146][ T5059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.514958][ T5059] R13: 0000000000000000 R14: 00007f98f13daf80 R15: 00007ffc2c9ad808
[  196.522772][ T5059]  </TASK>
[  196.528836][   T30] audit: type=1400 audit(2000000017.740:4026): avc:  denied  { write } for  pid=5049 comm="syz.2.1003" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  196.550549][   T30] audit: type=1400 audit(2000000017.740:4027): avc:  denied  { add_name } for  pid=5049 comm="syz.2.1003" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  196.552355][ T1746] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  196.571400][   T30] audit: type=1400 audit(2000000017.740:4028): avc:  denied  { read write open } for  pid=5049 comm="syz.2.1003" path="/164/file0/bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  196.605562][   T30] audit: type=1400 audit(2000000017.740:4029): avc:  denied  { mounton } for  pid=5049 comm="syz.2.1003" path="/164/file0/bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  196.660759][ T5062] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  196.737231][ T1746] usb 5-1: USB disconnect, device number 12
[  196.855004][ T5085] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1009'.
[  197.329895][ T5097] loop4: detected capacity change from 0 to 512
[  197.357148][    C1] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 68!
[  197.368285][ T5097] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  197.380297][ T5097] EXT4-fs (loop4): 1 truncate cleaned up
[  197.385969][ T5103] loop0: detected capacity change from 0 to 1024
[  197.388090][ T5097] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  197.477161][    C1] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 50!
[  197.487382][ T5103] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  197.499029][ T5103] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  197.577732][ T5106] overlayfs: './file2' not a directory
[  197.584045][ T5106] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  197.637141][    C1] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  197.659081][ T5108] loop2: detected capacity change from 0 to 512
[  197.660964][ T5110] loop3: detected capacity change from 0 to 512
[  197.718367][ T5108] EXT4-fs error (device loop2): ext4_fill_super:4831: inode #2: comm syz.2.1014: casefold flag without casefold feature
[  197.731138][ T5108] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  197.741074][ T5108] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  197.751580][    C1] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  197.799685][ T5108] device syzkaller0 entered promiscuous mode
[  197.922110][ T1746] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  198.108202][ T5118] loop2: detected capacity change from 0 to 2048
[  198.148528][ T5118] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  198.159701][ T5096] tipc: Disabling bearer <eth:syzkaller0>
[  198.216414][ T5122] loop2: detected capacity change from 0 to 512
[  198.247190][ T1746] usb 1-1: Using ep0 maxpacket: 16
[  198.367232][ T1746] usb 1-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.380141][ T1746] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  198.391822][ T1746] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  198.640368][ T1746] usb 1-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  198.657600][ T1746] usb 1-1: config 1 interface 0 has no altsetting 0
[  198.664252][  T308] usb 2-1: USB disconnect, device number 13
[  198.678125][  T308] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  198.702542][ T5124] loop4: detected capacity change from 0 to 40427
[  198.703426][ T5142] loop1: detected capacity change from 0 to 1024
[  198.730968][ T5124] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  198.737378][ T1746] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  198.737428][ T5124] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  198.766745][ T1746] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  198.780916][ T1746] usb 1-1: SerialNumber: syz
[  198.792867][ T5124] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  198.807366][ T5103] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  198.817320][ T5103] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  198.849971][ T5124] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  198.870292][ T5124] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  198.881732][ T5167] loop1: detected capacity change from 0 to 256
[  198.908303][ T5167] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  198.935988][ T4253] attempt to access beyond end of device
[  198.935988][ T4253] loop4: rw=2049, want=45104, limit=40427
[  198.987052][ T5139] loop3: detected capacity change from 0 to 40427
[  199.015221][ T5139] F2FS-fs (loop3): invalid crc value
[  199.031745][ T5139] F2FS-fs (loop3): Found nat_bits in checkpoint
[  199.037548][ T5103] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  199.045400][ T5103] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  199.202979][ T5139] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  199.305822][ T5186] loop2: detected capacity change from 0 to 128
[  199.359225][ T5186] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  199.948706][ T5197] FAULT_INJECTION: forcing a failure.
[  199.948706][ T5197] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  199.961799][ T5197] CPU: 0 PID: 5197 Comm: syz.4.1024 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  199.971458][ T5197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  199.981354][ T5197] Call Trace:
[  199.984478][ T5197]  <TASK>
[  199.987255][ T5197]  dump_stack_lvl+0x151/0x1c0
[  199.991767][ T5197]  ? io_uring_drop_tctx_refs+0x190/0x190
[  199.997235][ T5197]  ? prep_new_page+0x1b/0x110
[  200.001750][ T5197]  dump_stack+0x15/0x20
[  200.005741][ T5197]  should_fail+0x3c6/0x510
[  200.009999][ T5197]  should_fail_alloc_page+0x5a/0x80
[  200.015028][ T5197]  prepare_alloc_pages+0x15c/0x700
[  200.019978][ T5197]  ? __alloc_pages_bulk+0xe40/0xe40
[  200.025008][ T5197]  ? arch_stack_walk+0xf3/0x140
[  200.029695][ T5197]  __alloc_pages+0x18c/0x8f0
[  200.034470][ T5197]  ? prep_new_page+0x110/0x110
[  200.039072][ T5197]  pte_alloc_one+0x73/0x1b0
[  200.043408][ T5197]  ? pfn_modify_allowed+0x2f0/0x2f0
[  200.048444][ T5197]  __pte_alloc+0x86/0x350
[  200.052607][ T5197]  ? asm_sysvec_irq_work+0x1b/0x20
[  200.057557][ T5197]  ? free_pgtables+0x280/0x280
[  200.062158][ T5197]  ? __raw_callee_save___pv_queued_spin_unlock+0x10/0x17
[  200.069012][ T5197]  handle_pte_fault+0x1fb7/0x24d0
[  200.073873][ T5197]  ? __pud_alloc+0x260/0x260
[  200.078298][ T5197]  ? fault_around_bytes_set+0xc0/0xc0
[  200.083503][ T5197]  ? do_handle_mm_fault+0x2400/0x2400
[  200.088715][ T5197]  do_handle_mm_fault+0x20bc/0x2400
[  200.093751][ T5197]  ? numa_migrate_prep+0xe0/0xe0
[  200.098526][ T5197]  ? send_call_function_single_ipi+0xdd/0x180
[  200.104423][ T5197]  ? __smp_call_single_queue+0x7a/0xa0
[  200.109715][ T5197]  ? irq_work_queue_on+0x18e/0x230
[  200.114669][ T5197]  ? down_read_trylock+0x3d6/0x7d0
[  200.119610][ T5197]  ? __init_rwsem+0x1d0/0x1d0
[  200.124128][ T5197]  ? vmacache_update+0xb7/0x120
[  200.128811][ T5197]  ? __find_vma+0x136/0x150
[  200.133149][ T5197]  exc_page_fault+0x3b5/0x830
[  200.137760][ T5197]  asm_exc_page_fault+0x27/0x30
[  200.142439][ T5197] RIP: 0033:0x7f8008180cb6
[  200.146692][ T5197] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  200.166131][ T5197] RSP: 002b:00007f8006ef44a0 EFLAGS: 00010246
[  200.172031][ T5197] RAX: 0000000000000001 RBX: 00007f8006ef4540 RCX: 0000000000000101
[  200.179847][ T5197] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00007f8006ef45e0
[  200.187658][ T5197] RBP: 0000000000000102 R08: 00007f7ffead5000 R09: 0000000000000000
[  200.195468][ T5197] R10: 0000000000000000 R11: 00007f8006ef4550 R12: 0000000000000001
[  200.203971][ T5197] R13: 00007f8008343620 R14: 0000000000000000 R15: 00007f8006ef45e0
[  200.211790][ T5197]  </TASK>
[  200.214970][ T5197] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  200.228308][ T5197] loop4: detected capacity change from 0 to 512
[  200.269000][ T5198] UDC core: couldn't find an available UDC or it's busy: -16
[  200.357225][ T5198] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  200.375415][ T5197] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  200.383645][ T5197] EXT4-fs (loop4): orphan cleanup on readonly fs
[  200.391728][ T5197] EXT4-fs error (device loop4): ext4_acquire_dquot:6187: comm syz.4.1024: Failed to acquire dquot type 1
[  200.403735][ T1746] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  200.415361][ T5197] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1024: bg 0: block 40: padding at end of block bitmap is not set
[  200.432645][ T5197] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6184: Corrupt filesystem
[  200.443964][ T5197] EXT4-fs (loop4): 1 truncate cleaned up
[  200.449510][ T5197] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  200.461867][ T5205] loop1: detected capacity change from 0 to 2048
[  200.523701][ T5212] loop3: detected capacity change from 0 to 512
[  200.538945][ T5205] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  200.549478][  T490] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  200.559604][  T317] tipc: Left network mode
[  200.607133][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 68!
[  200.637869][ T5212] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1028'.
[  200.687135][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 50!
[  200.747155][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 72!
[  200.767145][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 30!
[  200.780896][ T5232] loop1: detected capacity change from 0 to 512
[  200.787149][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 6f!
[  200.790488][ T5236] loop3: detected capacity change from 0 to 256
[  200.821827][ T5231] loop6: detected capacity change from 0 to 16384
[  200.828101][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  200.837344][   T30] kauditd_printk_skb: 125 callbacks suppressed
[  200.837357][   T30] audit: type=1326 audit(2000000022.510:4153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f80082becc4 code=0x7ffc0000
[  200.866706][   T30] audit: type=1326 audit(2000000022.510:4154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f80082becc4 code=0x7ffc0000
[  200.890687][   T30] audit: type=1326 audit(2000000022.510:4155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f80082bbb8a code=0x7ffc0000
[  200.913925][ T5236] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  200.926531][ T5234] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.937312][ T5234] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.938684][   T30] audit: type=1326 audit(2000000022.510:4156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  200.954732][ T5234] device bridge_slave_0 entered promiscuous mode
[  200.975069][   T30] audit: type=1326 audit(2000000022.520:4157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  200.998233][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  201.005472][ T5234] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.013077][   T30] audit: type=1326 audit(2000000022.520:4158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  201.036303][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 78!
[  201.045086][ T5234] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.054008][ T5234] device bridge_slave_1 entered promiscuous mode
[  201.066548][   T30] audit: type=1326 audit(2000000022.520:4159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  201.112113][   T30] audit: type=1326 audit(2000000022.520:4160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  201.135588][   T30] audit: type=1326 audit(2000000022.520:4161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  201.166028][   T30] audit: type=1326 audit(2000000022.520:4162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5230 comm="syz.4.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80082bcef9 code=0x7ffc0000
[  201.223369][ T5234] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.230272][ T5234] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.237370][ T5234] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.244113][ T5234] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.278268][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  201.286042][ T1746] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.293628][ T1746] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.314792][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  201.325730][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  201.335055][  T309] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.341951][  T309] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.350056][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  201.358600][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  201.366712][  T309] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.373606][  T309] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.390206][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  201.398183][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  201.406333][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  201.414280][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  201.430296][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  201.438515][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  201.450460][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  201.458392][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  201.466377][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  201.474853][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  201.482883][  T317] device bridge_slave_1 left promiscuous mode
[  201.489351][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.496958][  T317] device bridge_slave_0 left promiscuous mode
[  201.508226][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.518346][  T317] device veth1_macvtap left promiscuous mode
[  201.524198][  T317] device veth0_vlan left promiscuous mode
[  201.563681][ T5271] loop1: detected capacity change from 0 to 1024
[  201.599452][ T5271] EXT4-fs (loop1): Test dummy encryption mode enabled
[  201.606247][ T5271] EXT4-fs (loop1): Ignoring removed orlov option
[  201.612980][ T5234] device veth0_vlan entered promiscuous mode
[  201.617575][ T5271] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,inlinecrypt,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  201.625396][ T5234] device veth1_macvtap entered promiscuous mode
[  201.651643][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 9c!
[  201.665487][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  201.673542][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  201.681296][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 4f!
[  201.689925][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  201.697202][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 7f!
[  201.714838][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  201.722667][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 1a!
[  201.737134][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 71!
[  201.745742][ T5275] loop2: detected capacity change from 0 to 2048
[  201.746243][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  201.759832][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 6e!
[  201.767022][ T5277] loop1: detected capacity change from 0 to 128
[  201.774563][ T5277] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  201.783476][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 5f!
[  201.792699][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  201.800531][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 45!
[  201.813452][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  201.814312][ T5275] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  201.857179][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 1b!
[  201.877144][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification a1!
[  201.912288][ T5283] loop2: detected capacity change from 0 to 512
[  201.918345][ T5284] loop4: detected capacity change from 0 to 512
[  201.918420][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 88!
[  201.937141][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 4b!
[  201.939277][ T5283] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  201.957153][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification fe!
[  201.959866][ T5283] EXT4-fs (loop2): 1 truncate cleaned up
[  201.970044][ T5283] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,resuid=0x0000000000000000,stripe=0x0000000000000000,,errors=continue. Quota mode: none.
[  201.987150][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 17!
[  202.007141][    C1] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 02!
[  202.054910][ T5284] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1045'.
[  202.121537][ T5294] loop4: detected capacity change from 0 to 1024
[  202.176509][ T5294] EXT4-fs (loop4): Test dummy encryption mode enabled
[  202.183896][  T490] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  202.197995][ T5294] EXT4-fs (loop4): Ignoring removed orlov option
[  202.210307][   T39] usb 1-1: USB disconnect, device number 16
[  202.218871][   T39] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  202.230762][ T5294] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,inlinecrypt,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  202.262738][ T5294] FAULT_INJECTION: forcing a failure.
[  202.262738][ T5294] name failslab, interval 1, probability 0, space 0, times 0
[  202.275438][ T5294] CPU: 1 PID: 5294 Comm: syz.4.1047 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  202.285145][ T5294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  202.295042][ T5294] Call Trace:
[  202.298164][ T5294]  <TASK>
[  202.300941][ T5294]  dump_stack_lvl+0x151/0x1c0
[  202.305453][ T5294]  ? io_uring_drop_tctx_refs+0x190/0x190
[  202.310920][ T5294]  ? stack_trace_save+0x1c0/0x1c0
[  202.315782][ T5294]  ? arch_stack_walk+0x101/0x140
[  202.320555][ T5294]  dump_stack+0x15/0x20
[  202.324544][ T5294]  should_fail+0x3c6/0x510
[  202.328798][ T5294]  __should_failslab+0xa4/0xe0
[  202.333834][ T5294]  should_failslab+0x9/0x20
[  202.338169][ T5294]  slab_pre_alloc_hook+0x37/0xd0
[  202.342944][ T5294]  __kmalloc+0x6d/0x270
[  202.346936][ T5294]  ? ext4_find_extent+0x370/0xdb0
[  202.351796][ T5294]  ext4_find_extent+0x370/0xdb0
[  202.356484][ T5294]  ext4_ext_map_blocks+0x269/0x74a0
[  202.361519][ T5294]  ? arch_stack_walk+0xf3/0x140
[  202.366208][ T5294]  ? stack_trace_snprint+0xf0/0xf0
[  202.371153][ T5294]  ? 0xffffffffa00263a4
[  202.375143][ T5294]  ? ext4_ext_release+0x10/0x10
[  202.379830][ T5294]  ? __kasan_slab_alloc+0xc3/0xe0
[  202.384689][ T5294]  ? __kasan_slab_alloc+0xb1/0xe0
[  202.389550][ T5294]  ? slab_post_alloc_hook+0x53/0x2c0
[  202.394681][ T5294]  ? kmem_cache_alloc+0xf5/0x200
[  202.399450][ T5294]  ? alloc_buffer_head+0x26/0x110
[  202.404305][ T5294]  ? alloc_page_buffers+0x192/0x390
[  202.409342][ T5294]  ? create_empty_buffers+0x3d/0x4c0
[  202.414464][ T5294]  ? _raw_read_unlock+0x25/0x40
[  202.419145][ T5294]  ? ext4_es_lookup_extent+0x33b/0x940
[  202.424546][ T5294]  ext4_map_blocks+0xaa7/0x1e00
[  202.429223][ T5294]  ? ext4_issue_zeroout+0x250/0x250
[  202.434251][ T5294]  _ext4_get_block+0x23b/0x660
[  202.438850][ T5294]  ? ext4_get_block+0x50/0x50
[  202.443362][ T5294]  ? _raw_spin_unlock+0x4d/0x70
[  202.448048][ T5294]  ? create_empty_buffers+0x482/0x4c0
[  202.453257][ T5294]  ext4_get_block+0x39/0x50
[  202.457596][ T5294]  __block_write_begin_int+0x58a/0x1580
[  202.463062][ T5294]  ? ktime_get_coarse_real_ts64+0x117/0x130
[  202.468794][ T5294]  ? __kasan_check_write+0x14/0x20
[  202.473737][ T5294]  ? ext4_es_is_delayed+0x40/0x40
[  202.478724][ T5294]  ? page_zero_new_buffers+0x3e0/0x3e0
[  202.484018][ T5294]  ? __kasan_check_read+0x11/0x20
[  202.488877][ T5294]  ? ext4_journal_check_start+0x16c/0x230
[  202.494433][ T5294]  block_page_mkwrite+0x205/0x270
[  202.499450][ T5294]  ? ext4_es_is_delayed+0x40/0x40
[  202.504240][ T5294]  ext4_page_mkwrite+0x4c1/0x13a0
[  202.509104][ T5294]  ? ext4_es_is_delayed+0x40/0x40
[  202.513987][ T5294]  ? ext4_change_inode_journal_flag+0x660/0x660
[  202.520040][ T5294]  ? __kasan_check_write+0x14/0x20
[  202.524993][ T5294]  handle_pte_fault+0x14f6/0x24d0
[  202.529846][ T5294]  ? new_inode+0x28/0x1c0
[  202.534017][ T5294]  ? do_filp_open+0x21c/0x460
[  202.538522][ T5294]  ? x64_sys_call+0x6bf/0x9a0
[  202.543034][ T5294]  ? avc_has_perm_noaudit+0x348/0x430
[  202.548244][ T5294]  ? fault_around_bytes_set+0xc0/0xc0
[  202.553453][ T5294]  ? memcpy+0x56/0x70
[  202.557272][ T5294]  do_handle_mm_fault+0x20bc/0x2400
[  202.562307][ T5294]  ? numa_migrate_prep+0xe0/0xe0
[  202.567083][ T5294]  ? down_read_trylock+0x3d6/0x7d0
[  202.572024][ T5294]  ? stack_trace_save+0x1c0/0x1c0
[  202.576884][ T5294]  ? __init_rwsem+0x1d0/0x1d0
[  202.581397][ T5294]  ? vmacache_find+0x21f/0x4d0
[  202.586001][ T5294]  ? __find_vma+0x30/0x150
[  202.590251][ T5294]  exc_page_fault+0x3b5/0x830
[  202.594768][ T5294]  asm_exc_page_fault+0x27/0x30
[  202.599451][ T5294] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x40
[  202.605874][ T5294] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 01 ca c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 83 f8
[  202.625314][ T5294] RSP: 0018:ffffc90000dd7a50 EFLAGS: 00050202
[  202.631217][ T5294] RAX: ffffffff8263e701 RBX: 00000000200061df RCX: 000000000000005f
[  202.639027][ T5294] RDX: 000000000000005f RSI: ffff88813327a480 RDI: 0000000020006180
[  202.646837][ T5294] RBP: ffffc90000dd7b10 R08: dffffc0000000000 R09: ffffed102664f49c
[  202.654651][ T5294] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000020006180
[  202.662462][ T5294] R13: 000000000000005f R14: 00007ffffffff000 R15: ffff88813327a480
[  202.670278][ T5294]  ? copy_page_to_iter+0x311/0xe50
[  202.675222][ T5294]  ? copy_page_to_iter+0x3ca/0xe50
[  202.680169][ T5294]  process_vm_rw+0x883/0xcc0
[  202.684596][ T5294]  ? __ia32_sys_process_vm_writev+0x100/0x100
[  202.690500][ T5294]  ? wait_for_completion_killable_timeout+0x10/0x10
[  202.696919][ T5294]  ? fput+0x1a/0x20
[  202.700658][ T5294]  ? ksys_write+0x260/0x2c0
[  202.704989][ T5294]  ? __ia32_sys_read+0x90/0x90
[  202.709596][ T5294]  __x64_sys_process_vm_readv+0xe7/0x100
[  202.715057][ T5294]  x64_sys_call+0x832/0x9a0
[  202.719396][ T5294]  do_syscall_64+0x3b/0xb0
[  202.723649][ T5294]  ? clear_bhb_loop+0x35/0x90
[  202.728163][ T5294]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  202.733892][ T5294] RIP: 0033:0x7f80082bcef9
[  202.738146][ T5294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.757585][ T5294] RSP: 002b:00007f8006f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  202.765916][ T5294] RAX: ffffffffffffffda RBX: 00007f8008475f80 RCX: 00007f80082bcef9
[  202.773727][ T5294] RDX: 0000000000000001 RSI: 0000000020008400 RDI: 0000000000000097
[  202.781546][ T5294] RBP: 00007f8006f37090 R08: 0000000000000001 R09: 0000000000000000
[  202.789354][ T5294] R10: 0000000020008640 R11: 0000000000000246 R12: 0000000000000001
[  202.797163][ T5294] R13: 0000000000000000 R14: 00007f8008475f80 R15: 00007ffe493b1f68
[  202.804978][ T5294]  </TASK>
[  202.877170][  T291] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  202.892754][ T5298] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.897308][ T5321] loop4: detected capacity change from 0 to 2048
[  202.899724][ T5298] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.913177][ T5298] device bridge_slave_0 entered promiscuous mode
[  202.920118][ T5298] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.927020][ T5298] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.934340][ T5298] device bridge_slave_1 entered promiscuous mode
[  202.959071][ T5321] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  203.060585][ T5322] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.067597][ T5322] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.074960][ T5322] device bridge_slave_0 entered promiscuous mode
[  203.083681][ T5322] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.090710][ T5322] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.097980][ T5322] device bridge_slave_1 entered promiscuous mode
[  203.121347][ T5298] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.128207][ T5298] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.135284][ T5298] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.142101][ T5298] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.324986][ T5199] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.332943][ T5199] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.341613][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  203.349107][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  203.371189][   T39] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  203.399524][ T5298] device veth0_vlan entered promiscuous mode
[  203.413558][ T5298] device veth1_macvtap entered promiscuous mode
[  203.443143][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  203.452296][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  203.460920][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  203.469509][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  203.477529][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  203.484998][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  203.492651][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  203.501736][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  203.594856][ T1298] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.601759][ T1298] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.613363][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  203.622777][ T1298] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.629649][ T1298] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.708590][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  203.719546][ T1298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  203.767261][   T39] usb 1-1: device descriptor read/64, error -71
[  203.776910][ T5340] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1051'.
[  203.794250][  T317] device bridge_slave_1 left promiscuous mode
[  203.801168][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.814227][  T317] device bridge_slave_0 left promiscuous mode
[  203.829311][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.858810][  T317] device veth1_macvtap left promiscuous mode
[  203.864761][  T317] device veth0_vlan left promiscuous mode
[  203.877291][  T291] usb 4-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24
[  203.886227][  T291] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.894225][  T291] usb 4-1: Product: syz
[  203.898340][  T291] usb 4-1: Manufacturer: syz
[  203.902783][  T291] usb 4-1: SerialNumber: syz
[  203.910430][  T291] usb 4-1: config 0 descriptor??
[  203.986526][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  203.993873][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  204.002918][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  204.011517][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  204.019646][  T308] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.026485][  T308] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.033951][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  204.043119][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  204.051376][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  204.059450][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.066292][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.078778][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  204.086674][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  204.096097][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  204.104040][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  204.117569][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  204.125692][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  204.139046][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  204.146846][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  204.155524][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  204.162934][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  204.170994][ T5322] device veth0_vlan entered promiscuous mode
[  204.180864][  T308] usb 4-1: USB disconnect, device number 15
[  204.183489][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  204.196062][ T5322] device veth1_macvtap entered promiscuous mode
[  204.205749][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  204.213777][   T39] usb 1-1: device descriptor read/64, error -71
[  204.239468][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  204.252957][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  204.261363][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  204.290111][ T5346] loop1: detected capacity change from 0 to 1024
[  204.311198][ T5346] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  204.335452][  T317] tipc: Left network mode
[  204.348134][ T5346] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  204.379913][ T5350] loop2: detected capacity change from 0 to 512
[  204.497176][   T39] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  204.509741][ T5350] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1058'.
[  204.707513][ T5199] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  204.778435][  T317] device bridge_slave_1 left promiscuous mode
[  204.784501][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.791720][   T39] usb 1-1: device descriptor read/64, error -71
[  204.800646][  T317] device bridge_slave_0 left promiscuous mode
[  204.806806][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.814909][  T317] device veth1_macvtap left promiscuous mode
[  204.820859][  T317] device veth0_vlan left promiscuous mode
[  204.987252][ T5199] usb 2-1: Using ep0 maxpacket: 16
[  205.027158][  T291] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  205.127298][ T5199] usb 2-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.138909][ T5199] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  205.157146][ T5199] usb 2-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  205.166717][ T5199] usb 2-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  205.180054][ T5199] usb 2-1: config 1 interface 0 has no altsetting 0
[  205.217206][   T39] usb 1-1: device descriptor read/64, error -71
[  205.278091][ T5199] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  205.286960][ T5199] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  205.294969][ T5199] usb 2-1: SerialNumber: syz
[  205.317231][ T5346] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.324087][ T5346] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.337641][   T39] usb usb1-port1: attempt power cycle
[  205.443584][ T5367] loop2: detected capacity change from 0 to 128
[  205.470643][ T5367] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  205.517235][  T311] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  205.529516][  T291] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  205.539713][  T291] usb 4-1: config 0 has no interfaces?
[  205.545000][  T291] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  205.551954][ T5346] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.553919][  T291] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.569170][ T5346] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.576201][  T291] usb 4-1: config 0 descriptor??
[  205.777467][   T39] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  205.825163][ T5358] loop3: detected capacity change from 0 to 16
[  205.848380][ T5369] loop0: detected capacity change from 0 to 2048
[  205.869602][ T5358] erofs: (device loop3): mounted with root inode @ nid 36.
[  205.880950][   T30] kauditd_printk_skb: 115 callbacks suppressed
[  205.880967][   T30] audit: type=1400 audit(2000000027.560:4278): avc:  denied  { create } for  pid=5357 comm="syz.3.1061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  205.917934][ T5369] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  205.928520][   T39] usb 1-1: device descriptor read/8, error -71
[  205.987981][  T311] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  206.004127][  T311] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 3
[  206.007538][ T5346] UDC core: couldn't find an available UDC or it's busy: -16
[  206.022669][ T5358] device syzkaller0 entered promiscuous mode
[  206.028829][ T5346] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  206.046337][ T5376] loop0: detected capacity change from 0 to 256
[  206.082438][ T5199] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  206.097286][  T311] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  206.106608][  T311] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  206.116016][  T311] usb 5-1: SerialNumber: syz
[  206.116361][ T5376] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  206.133747][ T5199] usb 4-1: USB disconnect, device number 16
[  206.144725][   T30] audit: type=1400 audit(2000000027.820:4279): avc:  denied  { write } for  pid=5375 comm="syz.0.1066" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  206.167257][   T39] usb 1-1: device descriptor read/8, error -71
[  206.175848][   T30] audit: type=1400 audit(2000000027.820:4280): avc:  denied  { add_name } for  pid=5375 comm="syz.0.1066" name="blkio.throttle.io_service_bytes_recursive" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  206.213125][   T30] audit: type=1400 audit(2000000027.820:4281): avc:  denied  { associate } for  pid=5375 comm="syz.0.1066" name="blkio.throttle.io_service_bytes_recursive" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  206.252158][ T5388] loop2: detected capacity change from 0 to 512
[  206.273633][   T30] audit: type=1400 audit(2000000027.820:4282): avc:  denied  { read append open } for  pid=5375 comm="syz.0.1066" path="/164/file0/blkio.throttle.io_service_bytes_recursive" dev="loop0" ino=1048703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  206.301409][   T30] audit: type=1400 audit(2000000027.850:4283): avc:  denied  { unmount } for  pid=1105 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  206.337187][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 68!
[  206.367810][ T5388] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  206.378959][ T5388] EXT4-fs (loop2): 1 truncate cleaned up
[  206.384402][ T5388] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  206.410664][   T30] audit: type=1400 audit(2000000028.060:4284): avc:  denied  { write } for  pid=5360 comm="syz.4.1063" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  206.433271][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 50!
[  206.487134][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 72!
[  206.507144][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 30!
[  206.508455][ T5399] kvm: emulating exchange as write
[  206.527136][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 6f!
[  206.567126][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  206.667140][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 01!
[  206.687136][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 78!
[  206.787690][  T311] usb 5-1: USB disconnect, device number 13
[  206.805671][   T30] audit: type=1400 audit(2000000028.480:4285): avc:  denied  { ioctl } for  pid=5402 comm="syz.3.1069" path="socket:[32012]" dev="sockfs" ino=32012 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  206.811162][ T5403] device wg1 entered promiscuous mode
[  206.838816][ T5401] tipc: Started in network mode
[  206.843628][ T5401] tipc: Node identity 3254df19cff1, cluster identity 4711
[  206.851167][ T5401] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  207.005884][ T5408] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1070'.
[  207.177521][   T30] audit: type=1400 audit(2000000028.850:4286): avc:  denied  { sys_chroot } for  pid=5409 comm="dhcpcd" capability=18  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  207.202784][ T5387] tipc: Disabling bearer <eth:syzkaller0>
[  207.208384][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 9c!
[  207.209207][ T5411] loop0: detected capacity change from 0 to 512
[  207.227132][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 4f!
[  207.234696][   T30] audit: type=1400 audit(2000000028.850:4287): avc:  denied  { setgid } for  pid=5409 comm="dhcpcd" capability=6  scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1
[  207.255341][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 7f!
[  207.267140][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 1a!
[  207.287140][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 71!
[  207.307136][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 6e!
[  207.327137][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 5f!
[  207.347137][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 45!
[  207.407142][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 1b!
[  207.411754][ T5423] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1071'.
[  207.427145][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification a1!
[  207.467155][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 88!
[  207.487135][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 4b!
[  207.507137][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification fe!
[  207.527134][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 17!
[  207.547135][    C0] cdc_ether 2-1:1.0 usb0: CDC: unexpected notification 02!
[  207.594652][ T5430] loop4: detected capacity change from 0 to 512
[  207.624011][ T5442] loop2: detected capacity change from 0 to 256
[  207.656555][ T5447] loop0: detected capacity change from 0 to 512
[  207.667953][ T5442] exfat: Bad value for 'gid'
[  207.743997][ T5430] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1073'.
[  207.811439][  T309] usb 2-1: USB disconnect, device number 14
[  207.829671][  T309] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  207.988378][ T5447] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  207.995922][ T5463] loop3: detected capacity change from 0 to 256
[  208.005978][ T5447] ext4 filesystem being mounted at /167/bus supports timestamps until 2038 (0x7fffffff)
[  208.128689][ T5463] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  209.015039][ T5487] loop0: detected capacity change from 0 to 256
[  209.015756][ T5489] loop3: detected capacity change from 0 to 1024
[  209.046200][ T5493] loop1: detected capacity change from 0 to 2048
[  209.058265][ T5487] exfat: Bad value for 'gid'
[  209.131369][ T5489] EXT4-fs (loop3): Ignoring removed bh option
[  209.160525][ T5493] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  209.174679][ T5489] EXT4-fs (loop3): mounted filesystem without journal. Opts: bh,i_version,barrier=0x0000000000000002,jqfmt=vfsv1,quota,minixdf,data_err=abort,max_batch_time=0x0000000000000002,bsdgroups,min_batch_time=0x0000000040000002,quota,,errors=continue. Quota mode: writeback.
[  209.185336][ T5506] loop2: detected capacity change from 0 to 512
[  209.261817][ T5507] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1087'.
[  209.532804][ T5509] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1089'.
[  210.045973][ T5514] loop4: detected capacity change from 0 to 16
[  210.056655][ T5516] loop1: detected capacity change from 0 to 256
[  210.129008][ T5514] erofs: (device loop4): mounted with root inode @ nid 36.
[  210.153785][ T5519] loop2: detected capacity change from 0 to 1024
[  210.154682][ T5514] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  210.169511][ T5514] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -23 in[64, 4032] out[1851]
[  210.181494][ T5514] erofs: (device loop4): z_erofs_readpage: failed to read, err [-117]
[  210.207320][ T5516] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  210.228782][ T5519] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  210.253515][ T5519] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  210.282908][  T317] tipc: Left network mode
[  210.325872][ T5525] loop1: detected capacity change from 0 to 1024
[  210.408812][ T5525] EXT4-fs error (device loop1): ext4_map_blocks:716: inode #3: block 1: comm syz.1.1095: lblock 1 mapped to illegal pblock 1 (length 1)
[  210.448735][ T5525] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.1095: Failed to acquire dquot type 0
[  210.467475][ T5525] EXT4-fs error (device loop1): ext4_map_blocks:602: inode #3: block 1: comm syz.1.1095: lblock 1 mapped to illegal pblock 1 (length 1)
[  210.497205][ T5525] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.1095: Failed to acquire dquot type 0
[  210.517396][ T5525] EXT4-fs error (device loop1): ext4_free_blocks:6224: comm syz.1.1095: Freeing blocks not in datazone - block = 0, count = 4096
[  210.534302][ T5530] loop0: detected capacity change from 0 to 512
[  210.549841][ T5522] loop4: detected capacity change from 0 to 40427
[  210.551095][ T5525] EXT4-fs error (device loop1): ext4_map_blocks:602: inode #3: block 1: comm syz.1.1095: lblock 1 mapped to illegal pblock 1 (length 1)
[  210.570460][ T5525] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.1095: Failed to acquire dquot type 0
[  210.583979][ T5525] EXT4-fs (loop1): 1 orphan inode deleted
[  210.593385][ T5522] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  210.595765][ T5525] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  210.612611][ T5522] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  210.618940][ T5530] EXT4-fs (loop0): 1 orphan inode deleted
[  210.629983][ T5530] EXT4-fs (loop0): mounted filesystem without journal. Opts: resgid=0x000000000000ee00,grpquota,noblock_validity,auto_da_alloc=0x0000000000000800,stripe=0x000000000000002e,resgid=0x0000000000000000,sysvgroups,norecovery,usrquota,,errors=continue. Quota mode: writeback.
[  210.656343][ T5530] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038 (0x7fffffff)
[  210.666099][  T421] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  210.694624][ T5522] F2FS-fs (loop4): Found nat_bits in checkpoint
[  210.735451][ T5522] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  210.754800][ T5522] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  210.818751][  T317] device bridge_slave_1 left promiscuous mode
[  210.824991][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.833135][  T317] device bridge_slave_0 left promiscuous mode
[  210.839234][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.847167][  T317] device veth1_macvtap left promiscuous mode
[  210.852987][  T317] device veth0_vlan left promiscuous mode
[  210.864435][ T5525] EXT4-fs error (device loop1): ext4_map_blocks:602: inode #3: block 1: comm syz.1.1095: lblock 1 mapped to illegal pblock 1 (length 1)
[  210.878443][ T5525] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.1095: Failed to acquire dquot type 0
[  210.917196][  T421] usb 3-1: Using ep0 maxpacket: 16
[  211.037247][  T421] usb 3-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  211.048090][  T421] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  211.058661][  T421] usb 3-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  211.079703][ T5545] loop1: detected capacity change from 0 to 512
[  211.089173][  T421] usb 3-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  211.104647][  T421] usb 3-1: config 1 interface 0 has no altsetting 0
[  211.198158][  T421] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  211.406507][ T5545] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1100'.
[  211.417176][  T421] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  211.425330][  T421] usb 3-1: SerialNumber: syz
[  211.457306][ T5519] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.464212][ T5519] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.589871][ T5553] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1102'.
[  211.690232][ T5519] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.697589][ T5519] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  211.722290][ T5556] loop1: detected capacity change from 0 to 512
[  212.157504][ T5519] UDC core: couldn't find an available UDC or it's busy: -16
[  212.164934][ T5519] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  212.178424][  T421] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  212.361917][ T5576] loop0: detected capacity change from 0 to 512
[  212.370008][ T5579] loop4: detected capacity change from 0 to 256
[  212.381249][ T5577] loop1: detected capacity change from 0 to 2048
[  212.387136][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 68!
[  212.438850][ T5577] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  212.452085][ T5579] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  212.453010][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  212.453024][   T30] audit: type=1400 audit(2000000034.130:4309): avc:  denied  { ioctl } for  pid=5574 comm="syz.1.1105" path="socket:[32983]" dev="sockfs" ino=32983 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  212.467141][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 50!
[  212.537135][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 72!
[  212.557132][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 30!
[  212.577135][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 6f!
[  212.617133][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  212.717124][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 01!
[  212.737183][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 78!
[  212.878734][   T30] audit: type=1400 audit(2000000034.560:4310): avc:  denied  { create } for  pid=5574 comm="syz.1.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  212.885293][ T5576] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1104'.
[  212.900218][   T30] audit: type=1400 audit(2000000034.580:4311): avc:  denied  { write } for  pid=5574 comm="syz.1.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  212.960104][   T30] audit: type=1400 audit(2000000034.580:4312): avc:  denied  { nlmsg_read } for  pid=5574 comm="syz.1.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  212.981103][   T30] audit: type=1400 audit(2000000034.610:4313): avc:  denied  { ioctl } for  pid=5574 comm="syz.1.1105" path="socket:[32230]" dev="sockfs" ino=32230 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  213.108226][ T5603] loop0: detected capacity change from 0 to 256
[  213.115596][   T30] audit: type=1400 audit(2000000034.790:4314): avc:  denied  { name_bind } for  pid=5604 comm="syz.4.1108" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  213.138640][   T30] audit: type=1404 audit(2000000034.790:4315): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  213.153753][   T30] audit: type=1400 audit(2000000034.800:4316): avc:  denied  { integrity } for  pid=5601 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=0
[  213.176402][   T30] audit: type=1404 audit(2000000034.820:4317): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  213.191708][   T30] audit: type=1400 audit(2000000034.820:4318): avc:  denied  { prog_load } for  pid=5604 comm="syz.4.1108" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  213.212087][ T5603] exfat: Bad value for 'gid'
[  213.277146][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 9c!
[  213.297140][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 4f!
[  213.317147][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 7f!
[  213.337157][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 1a!
[  213.357170][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 71!
[  213.377152][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 6e!
[  213.397141][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 5f!
[  213.417154][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 45!
[  213.477175][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 1b!
[  213.497278][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification a1!
[  213.537154][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 88!
[  213.557159][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 4b!
[  213.577149][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification fe!
[  213.597153][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 17!
[  213.617154][    C0] cdc_ether 3-1:1.0 usb0: CDC: unexpected notification 02!
[  213.878761][  T421] usb 3-1: USB disconnect, device number 11
[  213.897227][  T421] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  213.974115][ T5625] loop1: detected capacity change from 0 to 128
[  214.059194][ T5625] overlayfs: unrecognized mount option "\/file0" or missing value
[  214.384902][ T5634] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  214.399763][ T5634] 9pnet: p9_fd_create_tcp (5634): problem connecting socket to 127.0.0.1
[  214.944889][ T5646] loop4: detected capacity change from 0 to 1024
[  215.010131][ T5646] EXT4-fs (loop4): quotafile must be on filesystem root
[  215.027020][ T5647] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.034026][ T5647] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.041344][ T5647] device bridge_slave_0 entered promiscuous mode
[  215.048204][ T5647] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.055106][ T5647] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.062715][ T5647] device bridge_slave_1 entered promiscuous mode
[  215.138405][ T5647] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.145256][ T5647] bridge0: port 2(bridge_slave_1) entered forwarding state
[  215.152385][ T5647] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.159147][ T5647] bridge0: port 1(bridge_slave_0) entered forwarding state
[  215.178641][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  215.186032][  T291] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.187204][  T311] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  215.200636][  T291] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.230380][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  215.343999][ T1746] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.351121][ T1746] bridge0: port 1(bridge_slave_0) entered forwarding state
[  215.431038][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  215.439600][ T1746] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.446452][ T1746] bridge0: port 2(bridge_slave_1) entered forwarding state
[  215.476406][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  215.489342][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  215.531522][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  215.551890][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  215.562146][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  215.570291][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  215.588853][ T5647] device veth0_vlan entered promiscuous mode
[  215.619220][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  215.632371][ T5647] device veth1_macvtap entered promiscuous mode
[  215.650008][  T317] device bridge_slave_1 left promiscuous mode
[  215.656305][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.664786][  T317] device bridge_slave_0 left promiscuous mode
[  215.671014][  T311] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.671088][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.688904][  T311] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.698590][  T311] usb 3-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[  215.707548][  T311] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.707877][  T317] device veth1_macvtap left promiscuous mode
[  215.721409][  T317] device veth0_vlan left promiscuous mode
[  215.733105][  T311] usb 3-1: config 0 descriptor??
[  215.883145][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  215.891424][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  215.994480][ T5660] loop0: detected capacity change from 0 to 256
[  216.004385][ T5662] loop1: detected capacity change from 0 to 256
[  216.021653][ T5661] loop4: detected capacity change from 0 to 2048
[  216.067636][ T5662] exfat: Bad value for 'gid'
[  216.074229][ T5661] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  216.090045][ T5660] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  216.837299][  T311] usbhid 3-1:0.0: can't add hid device: -71
[  216.843049][  T311] usbhid: probe of 3-1:0.0 failed with error -71
[  216.867244][  T311] usb 3-1: USB disconnect, device number 12
[  217.226382][ T5677] loop2: detected capacity change from 0 to 512
[  217.290019][ T5677] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  217.345299][ T5683] loop1: detected capacity change from 0 to 1024
[  217.423256][ T5683] loop1: detected capacity change from 0 to 512
[  217.517998][ T5683] EXT4-fs (loop1): Test dummy encryption mode enabled
[  217.524612][ T5683] EXT4-fs (loop1): Ignoring removed oldalloc option
[  217.531435][ T5683] EXT4-fs (loop1): Test dummy encryption mode enabled
[  217.566463][ T5683] EXT4-fs error (device loop1): __ext4_iget:4892: inode #11: block 1: comm syz.1.1124: invalid block
[  217.567757][ T5677] EXT4-fs (loop2): 1 truncate cleaned up
[  217.578012][ T5683] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1124: couldn't read orphan inode 11 (err -117)
[  217.585906][ T5677] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  217.595626][ T5683] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,acl,test_dummy_encryption,resgid=0x0000000000000000,jqfmt=vfsv0,oldalloc,inode_readahead_blks=0x0000000000010000,noauto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  217.648731][   T30] kauditd_printk_skb: 85 callbacks suppressed
[  217.648747][   T30] audit: type=1400 audit(2000000039.330:4404): avc:  denied  { create } for  pid=5680 comm="syz.1.1124" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  217.675890][ T5683] overlayfs: missing 'workdir'
[  217.682884][   T30] audit: type=1400 audit(2000000039.360:4405): avc:  denied  { mounton } for  pid=5680 comm="syz.1.1124" path="/2/file0/file0" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  217.850356][   T30] audit: type=1400 audit(2000000039.530:4406): avc:  denied  { write } for  pid=5676 comm="syz.2.1122" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  217.852253][ T5689] overlayfs: './file2' not a directory
[  217.874556][   T30] audit: type=1400 audit(2000000039.530:4407): avc:  denied  { mounton } for  pid=5676 comm="syz.2.1122" path="/12/file1/file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  217.912898][ T5689] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  218.036190][ T5676] tipc: Disabling bearer <eth:syzkaller0>
[  218.437047][ T5695] loop0: detected capacity change from 0 to 1024
[  218.445244][ T5694] loop1: detected capacity change from 0 to 256
[  218.507911][ T5695] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  218.517404][ T5694] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a97a7bd, utbl_chksum : 0xe619d30d)
[  218.520666][ T5695] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  218.636736][   T30] audit: type=1400 audit(2000000040.310:4408): avc:  denied  { create } for  pid=5692 comm="syz.1.1126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  218.727172][  T308] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  218.837153][  T291] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  219.077153][  T291] usb 1-1: Using ep0 maxpacket: 16
[  219.127241][  T308] usb 5-1: config 0 has an invalid descriptor of length 80, skipping remainder of the config
[  219.137313][  T308] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  219.146020][  T308] usb 5-1: New USB device found, idVendor=04b4, idProduct=07b1, bcdDevice= 0.00
[  219.154935][  T308] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.163247][  T308] usb 5-1: config 0 descriptor??
[  219.197230][  T291] usb 1-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  219.208113][  T291] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  219.219404][  T291] usb 1-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  219.229001][  T291] usb 1-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  219.241844][  T291] usb 1-1: config 1 interface 0 has no altsetting 0
[  219.337287][  T291] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  219.346313][  T291] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  219.354218][  T291] usb 1-1: SerialNumber: syz
[  219.377234][ T5695] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  219.384556][ T5695] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  219.597595][ T5695] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  219.604396][ T5695] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  219.679230][ T5697] loop4: detected capacity change from 0 to 512
[  219.769779][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.1128: corrupted inode contents
[  219.782108][ T5697] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #16: comm syz.4.1128: mark_inode_dirty error
[  219.793583][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.1128: corrupted inode contents
[  219.812367][ T5709] loop2: detected capacity change from 0 to 256
[  219.838867][ T5697] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.1128: mark_inode_dirty error
[  219.857969][ T5709] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  219.882336][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.1128: corrupted inode contents
[  219.894600][ T5697] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  219.903587][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz.4.1128: corrupted inode contents
[  219.915789][ T5697] EXT4-fs error (device loop4): ext4_truncate:4292: inode #16: comm syz.4.1128: mark_inode_dirty error
[  219.927253][ T5697] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  219.936413][ T5697] EXT4-fs (loop4): 1 truncate cleaned up
[  219.941905][ T5697] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  219.952946][ T5697] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038 (0x7fffffff)
[  219.975024][ T5697] FAULT_INJECTION: forcing a failure.
[  219.975024][ T5697] name failslab, interval 1, probability 0, space 0, times 0
[  219.988092][ T5697] CPU: 1 PID: 5697 Comm: syz.4.1128 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  219.997809][ T5697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  220.007699][ T5697] Call Trace:
[  220.010820][ T5697]  <TASK>
[  220.013597][ T5697]  dump_stack_lvl+0x151/0x1c0
[  220.018112][ T5697]  ? io_uring_drop_tctx_refs+0x190/0x190
[  220.023576][ T5697]  ? do_syscall_64+0x3b/0xb0
[  220.028007][ T5697]  dump_stack+0x15/0x20
[  220.031997][ T5697]  should_fail+0x3c6/0x510
[  220.036250][ T5697]  __should_failslab+0xa4/0xe0
[  220.040847][ T5697]  ? security_inode_alloc+0x29/0x120
[  220.045968][ T5697]  should_failslab+0x9/0x20
[  220.050312][ T5697]  slab_pre_alloc_hook+0x37/0xd0
[  220.055082][ T5697]  ? security_inode_alloc+0x29/0x120
[  220.060207][ T5697]  kmem_cache_alloc+0x44/0x200
[  220.064806][ T5697]  security_inode_alloc+0x29/0x120
[  220.069750][ T5697]  inode_init_always+0x76d/0x9d0
[  220.074527][ T5697]  new_inode_pseudo+0x93/0x220
[  220.079124][ T5697]  new_inode+0x28/0x1c0
[  220.083114][ T5697]  ? start_creating+0x1d4/0x2f0
[  220.087811][ T5697]  __debugfs_create_file+0x144/0x510
[  220.092928][ T5697]  debugfs_create_file_unsafe+0x4a/0x60
[  220.098313][ T5697]  debugfs_create_u64+0x74/0x90
[  220.101020][   T30] audit: type=1400 audit(2000000041.650:4409): avc:  denied  { mounton } for  pid=5696 comm="syz.4.1128" path="/68/file1/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  220.102989][ T5697]  brd_alloc+0x30e/0x740
[  220.125714][ T5695] UDC core: couldn't find an available UDC or it's busy: -16
[  220.129554][ T5697]  ? brd_probe+0x30/0x30
[  220.129575][ T5697]  ? mutex_lock+0xb6/0x1e0
[  220.129592][ T5697]  ? wait_for_completion_killable_timeout+0x10/0x10
[  220.145017][ T5695] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  220.145086][ T5697]  brd_probe+0x23/0x30
[  220.153756][   T30] audit: type=1400 audit(2000000041.780:4410): avc:  denied  { name_bind } for  pid=5707 comm="syz.1.1129" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  220.158798][ T5697]  ? brd_del_one+0x510/0x510
[  220.158822][ T5697]  blk_request_module+0x17f/0x1a0
[  220.158840][ T5697]  blkdev_get_no_open+0x3e/0x1a0
[  220.158857][ T5697]  blkdev_get_by_dev+0x8a/0x920
[  220.158871][ T5697]  ? software_resume+0x7b/0x350
[  220.158885][ T5697]  swsusp_check+0xb1/0x370
[  220.158900][ T5697]  ? swap_read_page+0x320/0x320
[  220.158915][ T5697]  software_resume+0x89/0x350
[  220.158927][ T5697]  resume_store+0xd6/0x120
[  220.158939][ T5697]  ? resume_show+0x40/0x40
[  220.158952][ T5697]  kobj_attr_store+0x5c/0x80
[  220.158967][ T5697]  ? kobj_attr_show+0x70/0x70
[  220.158981][ T5697]  sysfs_kf_write+0x123/0x140
[  220.158996][ T5697]  kernfs_fop_write_iter+0x2c4/0x410
[  220.164800][  T291] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  220.184218][ T5697]  ? sysfs_kf_read+0x1d0/0x1d0
[  220.184248][ T5697]  vfs_write+0xd5d/0x1110
[  220.184264][ T5697]  ? compat_start_thread+0x20/0x20
[  220.188908][   T30] audit: type=1400 audit(2000000041.780:4411): avc:  denied  { create } for  pid=5707 comm="syz.1.1129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  220.193497][ T5697]  ? file_end_write+0x1c0/0x1c0
[  220.193516][ T5697]  ? mutex_lock+0xb6/0x1e0
[  220.198321][   T30] audit: type=1400 audit(2000000041.780:4412): avc:  denied  { write } for  pid=5707 comm="syz.1.1129" path="socket:[32502]" dev="sockfs" ino=32502 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  220.202954][ T5697]  ? wait_for_completion_killable_timeout+0x10/0x10
[  220.207681][   T30] audit: type=1400 audit(2000000041.780:4413): avc:  denied  { nlmsg_read } for  pid=5707 comm="syz.1.1129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  220.211905][ T5697]  ? __fdget_pos+0x2e7/0x3a0
[  220.211932][ T5697]  ? ksys_write+0x77/0x2c0
[  220.362310][ T5697]  ksys_write+0x199/0x2c0
[  220.366472][ T5697]  ? __kasan_check_write+0x14/0x20
[  220.371417][ T5697]  ? __ia32_sys_read+0x90/0x90
[  220.376017][ T5697]  ? __kasan_check_read+0x11/0x20
[  220.380877][ T5697]  __x64_sys_write+0x7b/0x90
[  220.385305][ T5697]  x64_sys_call+0x2f/0x9a0
[  220.389556][ T5697]  do_syscall_64+0x3b/0xb0
[  220.393809][ T5697]  ? clear_bhb_loop+0x35/0x90
[  220.398321][ T5697]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  220.404050][ T5697] RIP: 0033:0x7f80082bcef9
[  220.408311][ T5697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.427898][ T5697] RSP: 002b:00007f8006f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  220.436141][ T5697] RAX: ffffffffffffffda RBX: 00007f8008475f80 RCX: 00007f80082bcef9
[  220.443952][ T5697] RDX: 0000000000000012 RSI: 0000000020000040 RDI: 000000000000000c
[  220.451770][ T5697] RBP: 00007f8006f37090 R08: 0000000000000000 R09: 0000000000000000
[  220.459574][ T5697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.467394][ T5697] R13: 0000000000000000 R14: 00007f8008475f80 R15: 00007ffe493b1f68
[  220.475203][ T5697]  </TASK>
[  220.480293][ T5697] debugfs: out of free dentries, can not create file 'ram200'
[  220.497136][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 68!
[  220.511893][ T5697] EXT4-fs error (device loop4): ext4_search_dir:1548: inode #12: block 13: comm syz.4.1128: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  220.531246][ T5697] EXT4-fs error (device loop4): ext4_readdir:260: inode #12: block 13: comm syz.4.1128: path /68/file1/file0: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  220.657138][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 72!
[  220.677247][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 30!
[  220.697219][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 6f!
[  220.737124][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  220.837135][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 01!
[  220.867322][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 78!
[  220.887128][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 2f!
[  221.295398][ T5735] loop1: detected capacity change from 0 to 256
[  221.310201][ T5737] loop2: detected capacity change from 0 to 512
[  221.377530][ T5735] exfat: Bad value for 'gid'
[  221.420535][ T5737] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1132'.
[  221.437128][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 9c!
[  221.457143][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 4f!
[  221.477143][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 7f!
[  221.497206][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 1a!
[  221.517129][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 71!
[  221.537135][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 6e!
[  221.557130][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 5f!
[  221.577201][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 45!
[  221.600855][  T398] tipc: Left network mode
[  221.607399][  T308] usb 5-1: string descriptor 0 read error: -71
[  221.620090][  T308] usb 5-1: USB disconnect, device number 14
[  221.637137][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 1b!
[  221.657136][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification a1!
[  221.707137][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 88!
[  221.727136][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 4b!
[  221.747129][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification fe!
[  221.767129][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 17!
[  221.787128][    C0] cdc_ether 1-1:1.0 usb0: CDC: unexpected notification 02!
[  221.799243][ T5772] loop2: detected capacity change from 0 to 512
[  221.852828][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.859886][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.867200][ T5770] device bridge_slave_0 entered promiscuous mode
[  221.874009][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.880922][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.888183][ T5770] device bridge_slave_1 entered promiscuous mode
[  221.895056][ T5772] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  221.906178][ T5772] EXT4-fs (loop2): 1 truncate cleaned up
[  221.911713][ T5772] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  221.995771][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.002681][ T5770] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.009772][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.016516][ T5770] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.043519][ T1746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  222.050961][ T1746] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.058326][ T1746] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.060981][  T311] usb 1-1: USB disconnect, device number 21
[  222.078404][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  222.086321][  T311] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  222.096747][ T5199] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.103630][ T5199] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.111692][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  222.120752][ T5199] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.127620][ T5199] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.135604][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  222.176601][ T5778] overlayfs: './file2' not a directory
[  222.268471][ T5778] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  222.284563][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  222.304878][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  222.324476][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  222.339810][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  222.347289][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  222.355038][ T5770] device veth0_vlan entered promiscuous mode
[  222.362515][  T398] device bridge_slave_1 left promiscuous mode
[  222.368799][  T398] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.377997][  T398] device bridge_slave_0 left promiscuous mode
[  222.383943][  T398] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.391717][  T398] device veth1_macvtap left promiscuous mode
[  222.397795][  T398] device veth0_vlan left promiscuous mode
[  222.454747][ T5770] device veth1_macvtap entered promiscuous mode
[  222.461628][ T5199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  222.473043][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  222.487336][  T291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  222.611808][ T5771] tipc: Disabling bearer <eth:syzkaller0>
[  223.463299][ T5797] loop1: detected capacity change from 0 to 512
[  223.471283][ T5798] loop4: detected capacity change from 0 to 256
[  223.490325][ T5800] loop2: detected capacity change from 0 to 512
[  223.529864][ T5797] EXT4-fs (loop1): 1 truncate cleaned up
[  223.530149][ T5798] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  223.535418][ T5797] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,. Quota mode: none.
[  223.538554][ T5797] fuse: Unknown parameter 'permit_directio'
[  223.566043][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  223.566058][   T30] audit: type=1400 audit(2000000045.240:4432): avc:  denied  { setattr } for  pid=5795 comm="syz.1.1137" name="file0" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  223.692163][ T5805] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1138'.
[  223.720169][   T30] audit: type=1400 audit(2000000045.400:4433): avc:  denied  { create } for  pid=5799 comm="syz.2.1138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  223.859229][ T5199] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  224.247210][ T5199] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  224.257911][ T5199] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.268627][ T5199] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.278185][ T5199] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  224.291062][ T5199] usb 1-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[  224.300856][ T5199] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.309394][ T5199] usb 1-1: config 0 descriptor??
[  224.549030][ T5802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1136'.
[  224.559107][   T30] audit: type=1400 audit(2000000046.240:4434): avc:  denied  { read } for  pid=5801 comm="syz.0.1136" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=33700 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  224.609886][ T5807] UDC core: couldn't find an available UDC or it's busy: -16
[  224.617369][ T5807] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  224.717245][ T5199] usbhid 1-1:0.0: can't add hid device: -71
[  224.723018][ T5199] usbhid: probe of 1-1:0.0 failed with error -71
[  224.731347][ T5199] usb 1-1: USB disconnect, device number 22
[  225.221098][ T5814] loop4: detected capacity change from 0 to 256
[  225.227716][ T5810] FAULT_INJECTION: forcing a failure.
[  225.227716][ T5810] name failslab, interval 1, probability 0, space 0, times 0
[  225.240877][ T5810] CPU: 1 PID: 5810 Comm: syz.1.1140 Not tainted 5.15.157-syzkaller-00897-g53be7c8abe11 #0
[  225.250604][ T5810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  225.260489][ T5810] Call Trace:
[  225.263608][ T5810]  <TASK>
[  225.266385][ T5810]  dump_stack_lvl+0x151/0x1c0
[  225.270899][ T5810]  ? io_uring_drop_tctx_refs+0x190/0x190
[  225.276369][ T5810]  dump_stack+0x15/0x20
[  225.280359][ T5810]  should_fail+0x3c6/0x510
[  225.284611][ T5810]  __should_failslab+0xa4/0xe0
[  225.289214][ T5810]  ? __alloc_skb+0xbe/0x550
[  225.293558][ T5810]  should_failslab+0x9/0x20
[  225.297896][ T5810]  slab_pre_alloc_hook+0x37/0xd0
[  225.298181][   T30] audit: type=1400 audit(2000000046.980:4435): avc:  denied  { mounton } for  pid=5811 comm="syz.2.1141" path="/19/bus" dev="tmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  225.302665][ T5810]  ? __alloc_skb+0xbe/0x550
[  225.329149][ T5810]  kmem_cache_alloc+0x44/0x200
[  225.333830][ T5810]  __alloc_skb+0xbe/0x550
[  225.337995][ T5810]  netlink_ack+0x33c/0xb10
[  225.342248][ T5810]  ? inet_diag_handler_get_info+0xb60/0xb60
[  225.347976][ T5810]  ? inet_diag_dump_start+0x20/0x20
[  225.353008][ T5810]  ? inet_diag_dump+0x50/0x50
[  225.357522][ T5810]  ? __mutex_lock_slowpath+0x10/0x10
[  225.362647][ T5810]  ? ____kasan_kmalloc+0xed/0x110
[  225.367502][ T5810]  ? netlink_dump+0xd10/0xd10
[  225.372016][ T5810]  netlink_rcv_skb+0x24c/0x410
[  225.376704][ T5810]  ? sock_diag_bind+0xa0/0xa0
[  225.377105][   T30] audit: type=1400 audit(2000000047.040:4436): avc:  denied  { listen } for  pid=5811 comm="syz.2.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  225.381299][ T5810]  ? netlink_ack+0xb10/0xb10
[  225.405605][ T5810]  ? mutex_lock+0xb6/0x1e0
[  225.407124][   T30] audit: type=1400 audit(2000000047.040:4437): avc:  denied  { name_bind } for  pid=5811 comm="syz.2.1141" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  225.409855][ T5810]  ? wait_for_completion_killable_timeout+0x10/0x10
[  225.436891][   T30] audit: type=1400 audit(2000000047.040:4438): avc:  denied  { node_bind } for  pid=5811 comm="syz.2.1141" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  225.437714][ T5810]  ? __netlink_lookup+0x37b/0x3a0
[  225.437737][ T5810]  sock_diag_rcv+0x28/0x40
[  225.458549][   T30] audit: type=1400 audit(2000000047.040:4439): avc:  denied  { nlmsg_write } for  pid=5811 comm="syz.2.1141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  225.463057][ T5810]  netlink_unicast+0x8df/0xac0
[  225.463082][ T5810]  ? netlink_detachskb+0x90/0x90
[  225.497430][ T5810]  ? security_netlink_send+0x7b/0xa0
[  225.502545][ T5810]  netlink_sendmsg+0xa0a/0xd20
[  225.507148][ T5810]  ? netlink_getsockopt+0x560/0x560
[  225.512181][ T5810]  ? security_socket_sendmsg+0x82/0xb0
[  225.517648][ T5810]  ? netlink_getsockopt+0x560/0x560
[  225.522683][ T5810]  sock_write_iter+0x39b/0x530
[  225.527283][ T5810]  ? sock_read_iter+0x480/0x480
[  225.531969][ T5810]  do_iter_readv_writev+0x58e/0x790
[  225.537003][ T5810]  ? generic_file_rw_checks+0x270/0x270
[  225.542385][ T5810]  ? fsnotify_perm+0x6a/0x5d0
[  225.546982][ T5810]  ? security_file_permission+0x86/0xb0
[  225.552370][ T5810]  do_iter_write+0x1f5/0x760
[  225.556797][ T5810]  vfs_writev+0x2ac/0x560
[  225.560959][ T5810]  ? do_writev+0x340/0x340
[  225.565212][ T5810]  ? __fget_files+0x31e/0x380
[  225.569722][ T5810]  ? __fdget_pos+0x209/0x3a0
[  225.574150][ T5810]  ? do_writev+0x7b/0x340
[  225.578314][ T5810]  do_writev+0x1aa/0x340
[  225.582395][ T5810]  ? do_readv+0x460/0x460
[  225.586560][ T5810]  ? debug_smp_processor_id+0x17/0x20
[  225.591766][ T5810]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  225.597671][ T5810]  __x64_sys_writev+0x7d/0x90
[  225.602183][ T5810]  x64_sys_call+0xb4/0x9a0
[  225.606437][ T5810]  do_syscall_64+0x3b/0xb0
[  225.610688][ T5810]  ? clear_bhb_loop+0x35/0x90
[  225.615202][ T5810]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  225.620935][ T5810] RIP: 0033:0x7f4dfd5a8ef9
[  225.625184][ T5810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.644625][ T5810] RSP: 002b:00007f4dfc223038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  225.652967][ T5810] RAX: ffffffffffffffda RBX: 00007f4dfd761f80 RCX: 00007f4dfd5a8ef9
[  225.660767][ T5810] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[  225.668672][ T5810] RBP: 00007f4dfc223090 R08: 0000000000000000 R09: 0000000000000000
[  225.676569][ T5810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.684380][ T5810] R13: 0000000000000000 R14: 00007f4dfd761f80 R15: 00007ffc18563a78
[  225.692197][ T5810]  </TASK>
[  225.739759][ T5814] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[  225.998822][   T30] audit: type=1400 audit(2000000000.060:4440): avc:  denied  { create } for  pid=5813 comm="syz.4.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  227.076916][ T5829] loop4: detected capacity change from 0 to 1024
[  227.088934][ T5832] loop1: detected capacity change from 0 to 2048
[  227.133568][   T30] audit: type=1400 audit(2000000001.230:4441): avc:  denied  { unmount } for  pid=1105 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  227.144651][ T5838] loop0: detected capacity change from 0 to 256
[  227.168089][ T5829] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  227.171284][ T5838] exfat: Bad value for 'gid'
[  227.199639][ T5829] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  227.279074][ T5832] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  227.537144][  T421] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  227.777163][  T421] usb 5-1: Using ep0 maxpacket: 16
[  227.897361][  T421] usb 5-1: config 1 interface 0 altsetting 93 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.910056][  T421] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 96
[  227.938651][  T421] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8
[  227.948245][  T421] usb 5-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  227.961163][  T421] usb 5-1: config 1 interface 0 has no altsetting 0
[  228.047330][  T421] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  228.056264][  T421] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  228.064158][  T421] usb 5-1: SerialNumber: syz
[  228.087307][ T5829] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  228.094092][ T5829] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  228.307694][ T5829] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  228.314503][ T5829] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  228.747510][ T5829] UDC core: couldn't find an available UDC or it's busy: -16
[  228.754695][ T5829] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  228.768284][  T421] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  228.977163][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 68!
[  229.117133][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 72!
[  229.124268][ T5881] loop1: detected capacity change from 0 to 512
[  229.137133][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 30!
[  229.157165][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 6f!
[  229.197161][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 01!
[  229.240664][ T5885] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  229.314512][ T5881] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1150'.
[  229.323388][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 78!
[  229.337143][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 2f!
[  229.837141][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 9c!
[  229.857151][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 4f!
[  229.877152][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 7f!
[  229.897152][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 1a!
[  229.917137][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 71!
[  229.937135][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 6e!
[  229.957143][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 5f!
[  229.977146][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 45!
[  230.037147][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 1b!
[  230.057155][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification a1!
[  230.097147][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 88!
[  230.117135][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 4b!
[  230.137187][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification fe!
[  230.157163][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 17!
[  230.177168][    C1] cdc_ether 5-1:1.0 usb0: CDC: unexpected notification 02!
[  230.438709][  T291] usb 5-1: USB disconnect, device number 15
[  230.457265][  T291] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  231.139281][ T5925] loop0: detected capacity change from 0 to 256
[  231.192392][ T5926] loop1: detected capacity change from 0 to 512
[  231.220453][   T30] kauditd_printk_skb: 3 callbacks suppressed
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
SYZFAIL: open of /sys/kernel/debug/kcov failed
 (errno 1: Operation not permitted)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
remote cover enable write trace failed (errno 17)
SYZFAIL: repeatedly failed to execute the program
proc=3 req=1097 state=1 status=1 (errno 9: Bad file descriptor)
[  231.220469][   T30] audit: type=1400 audit(2000000005.320:4445): avc:  denied  { getopt } for  pid=5923 comm="syz.4.1155" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  231.275975][   T30] audit: type=1400 audit(2000000005.360:4446): avc:  denied  { write } for  pid=276 comm="syz-executor" path="pipe:[14369]" dev="pipefs" ino=14369 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  231.371274][ T5925] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  231.401087][ T5926] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  231.514998][ T5926] EXT4-fs (loop1): 1 truncate cleaned up
[  231.527889][ T5926] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  232.538474][  T490] device bridge_slave_1 left promiscuous mode
[  232.544432][  T490] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.551815][  T490] device bridge_slave_0 left promiscuous mode
[  232.557801][  T490] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.565504][  T490] device veth1_macvtap left promiscuous mode
[  232.571376][  T490] device veth0_vlan left promiscuous mode
[  233.070088][  T490] tipc: Left network mode
[  233.074562][  T490] tipc: Left network mode
[  233.868616][  T490] device bridge_slave_1 left promiscuous mode
[  233.874539][  T490] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.881892][  T490] device bridge_slave_0 left promiscuous mode
[  233.887901][  T490] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.895575][  T490] device bridge_slave_1 left promiscuous mode
[  233.901598][  T490] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.908974][  T490] device bridge_slave_0 left promiscuous mode
[  233.914883][  T490] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.923191][  T490] device bridge_slave_1 left promiscuous mode
[  233.929201][  T490] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.936286][  T490] device bridge_slave_0 left promiscuous mode
[  233.942246][  T490] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.950197][  T490] device veth1_macvtap left promiscuous mode
[  233.955998][  T490] device veth0_vlan left promiscuous mode
[  233.961823][  T490] device veth1_macvtap left promiscuous mode
[  233.967676][  T490] device veth0_vlan left promiscuous mode
[  233.973421][  T490] device veth1_macvtap left promiscuous mode
[  233.979248][  T490] device veth0_vlan left promiscuous mode