last executing test programs: 11m3.946819285s ago: executing program 4 (id=2651): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000000c0)=0x13) syz_emit_ethernet(0x7e, &(0x7f0000000280)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @local, {[@timestamp_prespec={0x44, 0x1c, 0x0, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@dev}, {@local}]}, @cipso={0x86, 0x6}, @timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}}}}}, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000340)={0xff02, 0x0, 0x0, 0xffff, 0x2, "00000000000000a0"}) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x5f) 11m3.711737076s ago: executing program 4 (id=2653): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$inet_udp(0x2, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r1, @ANYRESDEC=r2, @ANYRES16=r3, @ANYRES32, @ANYRESOCT=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000004c0)=ANY=[@ANYBLOB="616c6c7a775f7574696d653d30303030303030303030303030303030303030013335332ca900643d", @ANYRESHEX=0x0, @ANYBLOB=',errors=continue,errors=continue,iocharset=cp861,uid=', @ANYRESHEX=0x0, @ANYBLOB=',gid=', @ANYRESHEX=0x0, @ANYBLOB=',discard,iocharset=iso8859-6,iocharset=koi8-u,\x00'], 0x1, 0x152d, &(0x7f0000001f80)="$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") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r5, 0x0, 0x0) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r6}, 0x10) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000240)=@newtaction={0x68, 0x30, 0x9, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x4, {0x0, 0xf}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x2a}}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9}}}]}]}, 0x68}}, 0x0) r8 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r8, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r9, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r10, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r11 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) 11m0.777943961s ago: executing program 4 (id=2659): sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4810) r0 = syz_clone(0x20024800, &(0x7f0000000100)="9dbd36338ac0860fa4c4421962", 0xd, &(0x7f0000000180), &(0x7f00000013c0), &(0x7f0000001400)="6cdb9359b456c99e69bcc864a6bc7f731c1630014013c84fa253f551854d53fdff71726c") r1 = geteuid() r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000010c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) read$FUSE(r2, &(0x7f0000006940)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000140)='./file0\x00', 0x810, &(0x7f0000000940)=ANY=[@ANYBLOB='dmask=00000000000000000000007,utf8,iocharset=iso8859-1,allow_utime=00000000000000000002001,fmask=00000000000000000000002,allow_utime=00000000000000000000005,umask=00000000000000000000001,gid=', @ANYRESHEX=r4, @ANYBLOB=',uid=', @ANYRESHEX, @ANYRESHEX=r3, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRESOCT, @ANYRESHEX=0x0, @ANYRESHEX, @ANYRESDEC], 0x11, 0x14fe, &(0x7f0000002a40)="$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") r5 = socket$can_bcm(0x1d, 0x2, 0x2) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000001440), 0x440, 0x0) r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001480)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r8 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet(r8, &(0x7f0000003640)=[{{&(0x7f0000000180)={0x2, 0x4e22, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000640)=[@ip_tos_u8={{0x11, 0x68}}, @ip_retopts={{0x14, 0x0, 0x7, {[@generic={0x82, 0x3, ')'}]}}}], 0xe}}], 0x1, 0x0) r9 = fspick(0xffffffffffffff9c, &(0x7f0000001500)='./file0\x00', 0x1) openat$pidfd(0xffffffffffffff9c, &(0x7f0000001540), 0x282a80, 0x0) r10 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="11d01a5ed2c48c61712eed82d3e95dfe4546e4597a27ea93319473565bc739ccdef1a3554ad40f7a2df115ba5a49c02882ebb250e3cad59fdc4c918a327df7d775da4b7a6b1ac47a599c04ece9cd41c669e2b6cef68dea28e1b672ce023ea7b7a670773e6d4e2eb1d11146a65da82656cbb01b34dffb7904c18f83cd52b104fd47dcaae97b820847d2e20a15ec631314776eaf2b43e9acecd7525c7e4f465fd9c0413f5e061b1780750ebe4eee311a53ebe4242281cd23bcc947b4b4fd4de39e6a13266a2bf622", 0xc7}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000000000)="0840703bd019c0f846ce93d426cb2142da774501a886ab744efc81bb6ed2f331dcd5c2f7ed162148842bb108693e2d7dec3b3ebf83b11a7c848f40e61fc737b7f8805b91ad6f759a289e2a14e8aef4f38dd88459dbc02b24ba", 0x59}, {&(0x7f0000001300)="53ceb3f1160a7e7fadab6a4ac910137ed06bdf1d477b5c5eb00aa402add9a9f67805322cf0f1010ef01a6ea4b231f0af991d1b0a2090b745f4d3bfd308d6e698ddc18dfb60d3fdefd0e4ab68e9cefb4f2a30812e5e6a1305603401672bc4cc4100f5994d791849a5341b1bec9c450e38313d8125a7e9764c652a1c2c6b96d70dbbc0c8ca5b62357c6aa221064c10790c1c845bd300bfbcd9", 0x98}], 0x4, &(0x7f0000001580)=[@cred={{0x1c, 0x1, 0x2, {r0, r1, r3}}}, @rights={{0x14, 0x1, 0x1, [r5]}}, @rights={{0x14, 0x1, 0x1, [r6]}}, @rights={{0x24, 0x1, 0x1, [r7, r8, r9, r5, r10]}}], 0x78, 0x40040}}], 0x1, 0x15) 11m0.683111152s ago: executing program 4 (id=2661): r0 = syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file1\x00', 0x8000, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x1, 0x14fe, &(0x7f0000001580)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000002a80)='./file0\x00', 0x0) lseek(r0, 0xa, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0) pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0) mount$incfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000340), 0x0, 0x0) preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000240)=""/141, 0x8d}], 0x1, 0x400, 0x3) (async) preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000240)=""/141, 0x8d}], 0x1, 0x400, 0x3) bpf$PROG_LOAD(0x5, 0x0, 0x0) 10m59.862101116s ago: executing program 4 (id=2662): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000020062018010000000000010902240001000000000904001e010300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x43, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000770000000e000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) r7 = gettid() rt_sigqueueinfo(r7, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff}) 10m59.467946858s ago: executing program 4 (id=2663): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, 0x0) dup(r0) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4a9, &(0x7f0000000b40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r4}, 0x18) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$FUSE_LSEEK(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_netdev_private(r2, 0x89fd, &(0x7f0000000180)) read$FUSE(0xffffffffffffffff, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x40040) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000280), &(0x7f00000002c0)='%ps \x00'}, 0x20) close(r5) socket$nl_generic(0x10, 0x3, 0x10) 10m59.408986058s ago: executing program 32 (id=2663): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, 0x0) dup(r0) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4a9, &(0x7f0000000b40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r4}, 0x18) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$FUSE_LSEEK(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_netdev_private(r2, 0x89fd, &(0x7f0000000180)) read$FUSE(0xffffffffffffffff, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x40040) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000280), &(0x7f00000002c0)='%ps \x00'}, 0x20) close(r5) socket$nl_generic(0x10, 0x3, 0x10) 10m52.696889813s ago: executing program 3 (id=2681): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000001801000083786c6c2500000010002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7024f00abd90002b30300e0ff950d8f21c437002d0000009501000000000000000000000000000000000beabf571f41c8d5a647f828ec8c2bee3b95763eb098ffea527b45580ba6d2990df63b318565fed6780bb437492c8cda4cdfe784644d11b624d4b22ff68f7c6ddc126b542604aa2b1930fddbc4ee437b7b5a3c85b80456e2433d7d449a794390b1d4837ec07391a3eab510303e2ab728640fe8fb8243651ba9d54177868571ed"], 0x0, 0x1000000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) gettid() timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) socket$tipc(0x1e, 0x1, 0x0) timer_gettime(0x0, &(0x7f0000000040)={{}, {0x0, 0x0}}) bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b000000000000408f2d27e4e3d513740c8f8225", @ANYRES32=r5, @ANYBLOB='\x00'/20, @ANYRES32=r5, @ANYBLOB="e247321f906792a6793c528bab0ebaae2c9d3cde13f7f1886af15a3956149c4ea07725a8ba7d2dc417a5638b89a0af05f28d64050fe06f45fd825909b095bffaeee623e5b8dd1435430f2c2af20c5843ecb27e88d2d18cf19348db128e9f7517c445f8c377", @ANYBLOB="0000000000000000000000000000224a3395e19db7a0b0eb6e372afc2fb457cd47a1a62ee2c9616004ffe38893a5b2a7b7aa74aa0593afab378bf3315330a167172baf16efda9e384dbf6fef5617841d0ea2d8f98a2801fb3dd6d00b8cc0506f970e054797939aa2e1c02e47bfdb20d8ddff074c940a8f4bb1b3332832f65e24dfa0b006aaaf093b67a89d09c2994c69053dfd869f11d8d0e970f5dd9efb05c43b91f24322dea89315820988f4d263ce86ad06eaa8c1a10f14507a223e759bd218edfb030e9fe4ad08b054acd18e85fb5cb4cadd3d319e6a5ce7eaf79cc965115c491808383e0c014418773d8239acc98024353b7bdf5c60"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r6 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r6, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, &(0x7f0000000340)}, 0x80) socket$inet_udp(0x2, 0x2, 0x0) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x1000801, &(0x7f0000000140)=ANY=[], 0xff, 0x208, &(0x7f0000000780)="$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") openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0) 10m50.720111883s ago: executing program 3 (id=2687): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) ioctl$sock_netdev_private(r1, 0x89fd, &(0x7f0000000180)) read$FUSE(0xffffffffffffffff, 0x0, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x40040) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10) close(r4) 10m49.145296701s ago: executing program 3 (id=2693): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, 0x0) dup(r0) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4a9, &(0x7f0000000b40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) write$FUSE_LSEEK(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_netdev_private(r2, 0x89fd, &(0x7f0000000180)) getdents(0xffffffffffffffff, 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x40040) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) close(r5) 10m47.214039852s ago: executing program 3 (id=2696): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0900000000080000000000000000502391eb75f6c65e471dc63974aa300000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0x8}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1600000000000000008400000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000001e000000000000560000000000000000000000000000d087791acad51523847748"], 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r3, 0x0, 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000400)={r3, 0x0, 0x20000000}, 0x20) mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0) r4 = io_uring_setup(0x17ba, &(0x7f00000004c0)) io_uring_register$IORING_REGISTER_BUFFERS2(r4, 0xf, &(0x7f0000000240)={0x1, 0x0, 0x2, &(0x7f0000000140)=[{0x0}], 0x0}, 0x20) mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mremap(&(0x7f0000c94000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f00003fb000/0x1000)=nil) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) close(r6) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) splice(r5, 0x0, r6, 0x0, 0xc1b7, 0x0) munlock(&(0x7f000083d000/0x3000)=nil, 0x3000) munmap(&(0x7f0000adc000/0x4000)=nil, 0x4000) munmap(&(0x7f0000dcb000/0x3000)=nil, 0x3000) munlockall() epoll_create1(0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00') r8 = syz_open_dev$evdev(&(0x7f0000000000), 0x80000001, 0x80080) pread64(r8, &(0x7f0000000200)=""/11, 0xffffffffffffff68, 0x5) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48) 10m46.382750886s ago: executing program 3 (id=2699): sendmsg$netlink(0xffffffffffffffff, 0x0, 0x800) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1f, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r5, 0x8918, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x18}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10) r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_UIE_ON(r8, 0x7003) ioctl$RTC_SET_TIME(r8, 0x4024700a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x17, 0x3, 0xc8}) ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0xc010f508, 0x0) 10m44.162255407s ago: executing program 3 (id=2705): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x101ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 10m44.162153497s ago: executing program 33 (id=2705): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x101ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 1m43.156304291s ago: executing program 6 (id=4449): syz_mount_image$exfat(&(0x7f0000000700), &(0x7f0000000080)='./file0\x00', 0x1000000, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x1508, &(0x7f0000007200)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000340)) 1m42.313142594s ago: executing program 6 (id=4451): timer_gettime(0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='neigh_create\x00', r0}, 0x10) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000400)=0x3) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0xb) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="3c0000001000370400"/20, @ANYRES32=r6, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r6], 0x3c}}, 0x0) sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0) 1m42.202395664s ago: executing program 6 (id=4455): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae39ce2be18d63433b7dfc78608200e69639ab1530087488555d6d92591d54b3a4b2d398d9c826367e94ff87e48b5c84c384e4da2242cd7402f8ed7ca62f2bc83f74a833985f857aea120980634d28db59881240ddcdb80ae6800e45e612019d9a17a04", 0xa2, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x19, 0x4, 0x8, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) 1m41.129610289s ago: executing program 6 (id=4457): r0 = openat$kvm(0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000dfffffffb703000008000000b704000000000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) mount$overlay(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) mount(0x0, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(r2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10) creat(0x0, 0x0) syz_clone(0x40080, 0x0, 0x0, 0x0, 0x0, 0x0) eventfd2(0x5, 0x80800) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) 1m39.897596694s ago: executing program 6 (id=4461): syz_mount_image$exfat(&(0x7f0000000700), &(0x7f0000000080)='./file0\x00', 0x1000000, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x1508, &(0x7f0000007200)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000340)) 1m39.118216607s ago: executing program 6 (id=4462): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x1d, 0x0, 0x0) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'erspan0\x00'}) inotify_init() 1m39.099206267s ago: executing program 34 (id=4462): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x1d, 0x0, 0x0) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'erspan0\x00'}) inotify_init() 1m35.897278341s ago: executing program 7 (id=4463): socketpair$unix(0x1, 0x2, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={0x0, 0x44}}, 0x0) 1m35.244528573s ago: executing program 7 (id=4477): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, 0x0, 0x0) socket(0x10, 0x803, 0xffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getpid() sched_setaffinity(0x0, 0x0, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000003b00), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r6, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4000080060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce851400040002000000ac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a"], 0x1c8}}, 0x0) 1m31.474390049s ago: executing program 7 (id=4487): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f00000000c0)={[{@noacl}, {@delalloc}]}, 0x11, 0x784, &(0x7f00000007c0)="$eJzs3c1rHOUfAPDvbJKmSfv7JYKg9RQQNFC6MTW2Ch4qHkSwUNCz7bLZhppNtmQ3pQkBW0TwIqh4EPTSsy/15tWXq/4XHqSlalqseJDI7Eu7bXbTTZvdDeTzgck+z8xsnue7z8wzz+wMOwHsWRPpn0zEoYj4KIkYq89PImKomhqMOFFb7/b6Wj6dktjYePOPpLrOrfW1fDS9J3WgnnkyIn58P+JwZnO55ZXV+VyxWFiq56cqC+enyiurR84t5OYKc4XFY9MzM0ePv3D82M7F+tcvqwevf/zas9+c+Oe9J65++FMSJ+JgfVlzHDtlIibqn8lQ+hHe49WdLqzPkn5XgIeS7poDtb08DsVYDFRTbYz0smYAQLe8GxEbAMAekzj+A8Ae0/ge4Nb6Wr4x9fcbid668UpE7K/F37i+WVsyWL9mt796HXT0VnLPlZEkIsZ3oPyJiPjiu7e/Sqfo0nVIgFYuXY6IM+MTm/v/ZNM9C9v13FYLN4arLxP3zdb/Qe98n45/Xmw1/svcGf9Ei/HPcIt992E8eP/PXNuBYtpKx38vN93bdrsp/rrxgXruf9Ux31By9lyxkPZt/4+IyRgaTvPT1VVb3wU1efPfm+3Kbx7//fnJO1+m5aevd9fIXBscvvc9s7lK7lHjbrhxOeKpwVbxJ3faP2kz/j3VYRmvv/TB5+2WpfGn8TamzfF318aViGdatv/dtky2vD9xqro5TDU2iha+/fWz0XblN7d/OqXlN84FeiFt/9Gt4x9Pmu/XLG+/jJ+vjP3QbtmD42+9/e9L3qqm99XnXcxVKkvTEfuSNzbPP3r3vY18Y/00/smnW+//W23/6TnhmQ7jH7z++9cPH393pfHPbqv9t5+4ent+oF35nbX/TDU1WZ/TSf/XaQUf5bMDAAAAAAAAAAAAAAAAAAAAAAAAgE5lIuJgJJnsnXQmk83WnuH9eIxmiqVy5fDZ0vLibFSflT0eQ5nGT12ONf0e6nT99/Ab+aP35Z+PiMci4tPhkWo+my8VZ/sdPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADUHWjz/P/Ub8P9rh0A0DX7+10BAKDnHP8BYO/Z3vF/pGv1AAB6x/k/AOw9HR//z3S3HgBA7zj/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoMtOnTyZTht/r6/l0/zshZXl+dKFI7OF8nx2YTmfzZeWzmfnSqW5YiGbLy20/UeXai/FUun8TCwuX5yqFMqVqfLK6umF0vJi5fS5hdxc4XRhqGeRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDnyiur87lisbAksWViZHdUY9ckBmNXVEOia4nmXmKkfx0UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwC73XwAAAP//+Lkq2Q==") socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x840, 0x0) ioctl$TCGETA(r1, 0x5405, &(0x7f0000001140)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x10103e, 0xc1) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r3}, 0x10) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940)) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r4 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0) write$binfmt_script(r4, &(0x7f0000000080), 0x208e24b) io_pgetevents(0x0, 0x77f1aabf, 0x1, &(0x7f0000000000)=[{}], &(0x7f0000000040), &(0x7f0000000140)={&(0x7f0000000100)={[0x4000000000100008]}, 0x8}) 1m30.910003201s ago: executing program 7 (id=4492): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(r4, 0x0, 0xfdef) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) 1m30.262058084s ago: executing program 7 (id=4495): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, 0x0) socket$inet6(0xa, 0xa, 0xfffffffb) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x9b443000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd000000000000000800034000010000"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000500)=ANY=[@ANYRESHEX=r4, @ANYBLOB="10d2cadcd0c3377cee3549", @ANYRES8, @ANYBLOB="bb9d8dfaa759e55ebf2d17b8d3de7f4ef4552b050c3acda969ddd62feade237a4f17d0268641a67be4050473b8ec641e62d2e2e825e5deed77e637967187b613a372967ace826c1658873835d0673f78f50978005eecf7b67bd44baf2b2752a9ced6e3cf6b91c1b0922e15534fe136f026c4492fd1700739acad34aa864bd96a4d626848df0c2aab101e82bac3dda68bffefa1ec38b061fd6eb07dd662bbb297bcb18fe7b8cb6e72ac9112c72bf9ccd3c6682cf5bbb8c76834e6ad14594962f5eb2b5c27823590e5e3df652d864590abfedc848485422d9fce7dfc2de77651", @ANYRES16=r4, @ANYRESDEC, @ANYRESHEX=r3], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000300)) finit_module(0xffffffffffffffff, 0x0, 0x2) 1m30.261673734s ago: executing program 35 (id=4495): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, 0x0) socket$inet6(0xa, 0xa, 0xfffffffb) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x9b443000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd000000000000000800034000010000"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000500)=ANY=[@ANYRESHEX=r4, @ANYBLOB="10d2cadcd0c3377cee3549", @ANYRES8, @ANYBLOB="bb9d8dfaa759e55ebf2d17b8d3de7f4ef4552b050c3acda969ddd62feade237a4f17d0268641a67be4050473b8ec641e62d2e2e825e5deed77e637967187b613a372967ace826c1658873835d0673f78f50978005eecf7b67bd44baf2b2752a9ced6e3cf6b91c1b0922e15534fe136f026c4492fd1700739acad34aa864bd96a4d626848df0c2aab101e82bac3dda68bffefa1ec38b061fd6eb07dd662bbb297bcb18fe7b8cb6e72ac9112c72bf9ccd3c6682cf5bbb8c76834e6ad14594962f5eb2b5c27823590e5e3df652d864590abfedc848485422d9fce7dfc2de77651", @ANYRES16=r4, @ANYRESDEC, @ANYRESHEX=r3], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000300)) finit_module(0xffffffffffffffff, 0x0, 0x2) 9.037988723s ago: executing program 1 (id=4860): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="3c0000001000370400"/20, @ANYRES32=r4, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r4], 0x3c}}, 0x0) sendmmsg$inet(r1, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0) 8.855232674s ago: executing program 1 (id=4861): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x19, 0x4, 0x8, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) 8.194514466s ago: executing program 5 (id=4864): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$eJzs3U9vI2cZAPBnJvE2u5tiFxAqSJSKFu1WsE7S0DZCCMoFTpWAcg8hcaIodhzFTtlEFaTiGyAkkDhx4sI3QKp64AOgSkhwQRwQIBB/duGAVOigscckdez8aZM4jX8/adbvO+OZ53kn8uuZ8bszAYytJyPixYiYiIhnIqJczE+LaTGv7Hff9/DBq8v5lESWvfz3JJJiXm9beX0yIm53V4mpiPj6VyK+lRyN29rd21iq12vbRX2m3diaae3u3VtvLK3V1mqb8/Nzzy+8sPDcwmxWeE/trPQKP/3yF17/zLd/v/iXu9/J0/r8R6IUfe04T92mlzr7oiffR9sXEWwEJor2lEadCAAAp5If438wIj7ZOf4vx0TnaK7PxCgyAwAAAM5L9sXp+E8SkQEAAADXVhoR05Gk1WIswHSk6Y3i2sCH41Zab7ban15t7myu5MsiKlFKV9frtdlirHAlSklenyvG2Pbqz/bV5yPisYj4Qflmp15dbtZXRnztAwAAAMbF7b7z/3+V0075/6aGrTng/wkAAAAAV1dlaAUAAAC4LpzyAwAAwPXXf/7/+ojyAAAAAC7EV196KZ+y3vOvV17Z3dlovnJvpdbaqDZ2lqvLze2t6lqzuda5Z1/jpO3Vm82tz8bmzv2Zdq3Vnmnt7i02mjub7cX14XcSAAAAAC7WY5944zdJROx/7mZniuI+gADv8MdRJwCcp4lRJwCMjLt4w/gqjToBYOSSE5YbvAMAAO9/dz569Pf/3vP/XRuA681YHwAYP37/h/FVMgIQxloaER/oFh8Z9p6hv///8rRRsizizfLhOa4vAgDA5ZruTElaLc4DpiNNq9WIRyPSSpSS1fV6bbY4P/h1ufRIXp/rrJmcOGYYAAAAAAAAAAAAAAAAAAAAAAAAAOjKsiQyAAAA4FqLSP+cdO7mH3Gn/PR0//WBG8m/y/GnovLjl394f6nd3p7L5/+j8yyvGxHR/lEx/9mhjw8DAAAAzluyP3RR9zy9eJ271KwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAMPH7y63JsuM+5fvxQRlUHxJ2Oq8zoVpYi49c8kJg+tl0TExDnE338tIh4fFD+Jt7MsqxRZDIp/84LjVzq7ZnD8NCJun0N8GGdv5P3Pi4M+f2k82Xkd/PmbLKb3anj/lxaRH+/0c3/r62zy/ufRI1trHA2QlY+P/1rExyYH9z+9/jcZ0v89dWRrb2VZdjTGN7+xtzcsfvaTiDsDv3+Sd8SaaTe2Zlq7e/fWG0trtbXa5vz83PMLLyw8tzA7s7perxX/Dozx/Y///O3j2n9rQPzf/bbb/x7X/qeHbbTPf391/8GHusXSoPh3n4p4WCtmHHz/TsWQ+Gnx3fepopwvv9Mr73fLhz3xszefOK79K0P2/0l//7unbP8zX/veHw5qt065FgBwUVq7extL9Xpt+5jC1Cne834s/GLqSqRxxkL23e5f7qrk824L+dHqwZxeq65AYocKWX68fua1igP3OMtaE3G2DLO3suxi2z6yLgkAALggBwf9o84EAAAAAAAAAAAAAAAAAAAAxtdl3EqtP+b+aJoKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCs/wUAAP//h+rXHg==") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(r4, 0x0, 0xfdef) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r7 = syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_FILES2(r7, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 7.874930088s ago: executing program 1 (id=4867): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xfb, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) chroot(&(0x7f0000000040)='./file0\x00') waitid(0x0, 0x0, 0x0, 0x4, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x18, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x1000, &(0x7f0000000f80)=""/4096, 0x40f00, 0x53c7df966016d431, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200)={0x2, 0xa, 0xb0a}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000000280)=[0xffffffffffffffff], &(0x7f00000003c0)=[{0x1, 0x2, 0x2, 0x9}, {0x4, 0x1, 0x4, 0x4}, {0x0, 0x3, 0xb, 0xa}, {0x2, 0x4, 0xa}, {0x2, 0x4, 0x10, 0x9}, {0x0, 0x2, 0x9, 0x1}, {0x0, 0x1, 0x10, 0x6}, {0x2, 0x2, 0xc, 0x1}], 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000008c0)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10) sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0) syz_usb_control_io$hid(r4, &(0x7f0000000000)={0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB='\x00\x00\f\x00'], 0x0, 0x0, 0x0}, 0x0) 6.797396852s ago: executing program 2 (id=4871): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="3c0000001000370400"/20, @ANYRES32=r4, @ANYBLOB="0b120500000000001c0012800b00010069703667726500000c00028008000100", @ANYRES32=r4], 0x3c}}, 0x0) sendmmsg$inet(r1, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0) 6.774610332s ago: executing program 8 (id=4872): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 6.747871182s ago: executing program 5 (id=4873): syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1808014, &(0x7f0000000600)=ANY=[@ANYBLOB="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"/716], 0x5, 0x55ac, &(0x7f0000006a40)="$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") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{}, &(0x7f0000000400), &(0x7f0000000480)}, 0x20) socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) userfaultfd(0x1) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"/333], &(0x7f0000000340)='syzkaller\x00', 0x1, 0xc5, &(0x7f0000000180)=""/197, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2600, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0)) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000e80)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f0000000080)=r5}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 6.746978082s ago: executing program 2 (id=4874): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) syz_emit_ethernet(0x31, &(0x7f0000000000)={@local, @remote, @void, {@llc_tr={0x11, {@llc={0x4, 0xaa, 'p', "78d1d9c5fae9b31703030e9e6f70f6deef66a9b19d579ea9c012269eb9303af4"}}}}}, 0x0) 6.299577294s ago: executing program 0 (id=4875): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009e00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 5.547829437s ago: executing program 1 (id=4876): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) write$cgroup_subtree(r4, 0x0, 0xfdef) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0xffffffff, 0x89b, 0x8, 0x7fff, 0x2}, 0x14) r8 = syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r8, 0x2, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES2(r8, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 5.547263027s ago: executing program 2 (id=4877): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x19, 0x4, 0x8, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) 4.250806613s ago: executing program 5 (id=4878): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x2, 0x300) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009e00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 4.213066503s ago: executing program 0 (id=4879): mkdir(0x0, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYRESHEX=r1, @ANYRESOCT, @ANYRES64, @ANYBLOB="91cf159ed4c4272db438107a83c93aa9851bb4233ba9253df682cfa1ad44d79cff2531aa25b545ecd9ca1c411dbb3d4df24c33464b5c166e74eec183dd54de0311a872da837b8c4aa09f620aa4f5b3d773", @ANYRESHEX], 0x15) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 4.183025263s ago: executing program 0 (id=4880): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000340)='./file0\x00', 0x101c08a, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x7, 0x2da, &(0x7f0000000f00)="$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") mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000880), 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f00000005c0)={[{@nodiscard}, {@nocheckpoint_merge}, {@alloc_mode_def}, {@nolazytime}, {@flush_merge}, {@fault_injection={'fault_injection', 0x3d, 0x4ee}}, {@acl}, {@noacl}, {@compress_cache}, {@alloc_mode_def}, {@noextent_cache}, {}, {@fault_type={'fault_type', 0x3d, 0x4}}]}, 0x1, 0x550d, &(0x7f00000079c0)="$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") mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdir(0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) chdir(0x0) creat(0x0, 0x0) r4 = open(0x0, 0x145142, 0x0) openat(0xffffffffffffff9c, 0x0, 0x103042, 0x0) pwrite64(r4, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0) r5 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000002980)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0}]) 4.035412534s ago: executing program 2 (id=4881): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000000), &(0x7f0000048000), 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x6, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r3}, 0x10) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r4, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r5, 0x0, 0x10) exit(0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x13, &(0x7f00000009c0)=@framed={{}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x0}, {0x5, 0x1, 0xb, 0x1, 0xa, 0x7}, {}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, @printk={@p, {0x3, 0x3, 0x6}}]}, &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 3.653423445s ago: executing program 8 (id=4882): syz_mount_image$ext4(&(0x7f0000000ac0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3810744, &(0x7f0000000840)={[{@noauto_da_alloc}, {@user_xattr}, {@commit={'commit', 0x3d, 0x1}}, {@mblk_io_submit}, {@norecovery}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}, {@grpid}, {@init_itable_val={'init_itable', 0x3d, 0xf97}}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@mask={'mask', 0x3d, '^MAY_APPEND'}}]}, 0xff, 0x469, &(0x7f0000000200)="$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") pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RLERRORu(r1, 0x0, 0x52) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="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"]) 3.077391198s ago: executing program 2 (id=4883): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009e00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 3.049567788s ago: executing program 1 (id=4884): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(r4, 0x0, 0xfdef) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r7 = syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_FILES2(r7, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 2.949493068s ago: executing program 8 (id=4885): r0 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f00000002c0), 0x0) 2.913858978s ago: executing program 8 (id=4886): openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @remote, @val={@val={0x88a8, 0x0, 0x1, 0x4}}, {@canfd={0xd, {{}, 0x34, 0x1, 0x0, 0x0, "ec7ab49f42266b558197758939c3a67064eb2413deb6d588b153902f5348321b2aa24fcea6549a091e651e6c1d3053eef4b8f189054244df8c1353433e834d4c"}}}}, 0x0) 2.767266189s ago: executing program 8 (id=4887): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000000)) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) readv(r1, &(0x7f00000018c0)=[{&(0x7f0000000840)=""/4096, 0x1000}], 0x1) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) openat$ptp0(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, 0x0, 0x0) creat(0x0, 0x11) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYBLOB]) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb}, 0x38) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), 0x0, 0x1000}, 0x38) io_submit(0x0, 0x1, &(0x7f0000000780)=[0x0]) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5b, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r5}, 0x18) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_setup(0x3fe, &(0x7f0000000100)) dup3(0xffffffffffffffff, r3, 0x0) 2.37914957s ago: executing program 0 (id=4888): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, 0x0, 0x0, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) syz_emit_ethernet(0x31, &(0x7f0000000000)={@local, @remote, @void, {@llc_tr={0x11, {@llc={0x4, 0xaa, 'p', "78d1d9c5fae9b31703030e9e6f70f6deef66a9b19d579ea9c012269eb9303af4"}}}}}, 0x0) 2.359830821s ago: executing program 5 (id=4889): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae39ce2be18d63433b7dfc78608200e69639ab1530087488555d6d92591d54b3a4b2d398d9c8263", 0x66, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x19, 0x4, 0x8, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x0, 0x0) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) socket$key(0xf, 0x3, 0x2) 1.431833525s ago: executing program 2 (id=4890): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) r7 = syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_FILES2(r7, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 1.430739015s ago: executing program 5 (id=4891): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() bpf$MAP_CREATE(0x0, &(0x7f0000001980)=@base={0x19, 0x4, 0x8, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x40}}, 0x0) sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x94}}, 0x0) r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0) r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0) ioctl$SNAPSHOT_FREE(r7, 0x3305) ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780)) socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000080)={0x30, r8, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x41000}, 0x24028024) 1.367106535s ago: executing program 1 (id=4892): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x2, 0x300) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009e00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 1.333228245s ago: executing program 0 (id=4893): socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0x2000000000000344, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009e00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3100, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 149.46122ms ago: executing program 8 (id=4894): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0xffffffff, 0x89b, 0x8, 0x7fff, 0x2}, 0x14) r7 = syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r7, 0x2, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES2(r7, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 95.48644ms ago: executing program 0 (id=4895): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x2, 0xf, 0x0, 0xffffffffffffff8b) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x1, 0x52c, &(0x7f0000001040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0xffffffff, 0x89b, 0x8, 0x7fff, 0x2}, 0x14) syz_io_uring_setup(0x41f, &(0x7f000000a9c0)={0x0, 0x46b0}, &(0x7f000000aa40), &(0x7f000000aa80)) 0s ago: executing program 5 (id=4896): syz_mount_image$ext4(&(0x7f0000000ac0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3810744, &(0x7f0000000840)={[{@noauto_da_alloc}, {@user_xattr}, {@commit={'commit', 0x3d, 0x1}}, {@mblk_io_submit}, {@norecovery}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}, {@grpid}, {@init_itable_val={'init_itable', 0x3d, 0xf97}}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}], [{@mask={'mask', 0x3d, '^MAY_APPEND'}}]}, 0xff, 0x469, &(0x7f0000000200)="$eJzs3M9vFFUcAPDvTLf8llbEHyAIisbGHy0tqBy8aDTxoImJHvC4toUgCzXtmgghWo3BoyHxbjya+Bd48mTUk4lXvRsSosQE8OKa2Z0p22V3pXTLFvbzSYa8N/N23vvy5s2+nccQwMDan/2RRGyLiN8iYqSRbVvu6uVz09cun5tOolZ768+kXu7K5XPTRZnic1vzzFgakX6W5JUst3Dm7MlypTI7n+cnqqfen1g4c/bZE6fKx2ePz56eOnLk8KHJF56feq4ncWZturL7o7k9u15758Ib00cvvPvTt1l7H9jbON4cR6/szwL/q1bXeuyJXlfWZ//WrseZlPrdGm7WUERk3TVcH/8jMRTXO28kXv20r40D1lR2z97Y+fBiDbiLJdHvFgD9UXzRZ79/i+02TT3WhUsvNX4AZXFfzbfGkVKkeZnhNax/f0QcXfznq2yLlucQtTbPDQAAVuv7bP7zzI3zv/raSFO5JF8bGo2IeyNiR0TcFxE7I+L+vOyDEfHQCutvXRq6cf6ZXrzF0G5KNv97MV/bWj7/K2Z/MTqU5+6pxz+cHDtRmT0YEdsjYiyGN2b5yXYnL07xyq9fdKq/ef6XbVn9xVwwP8nFUvMDus0RUa6WezUpvfRJxO5Su/iTpZWArO93RcTulZ16e5E48dQ3ezoV+v/4u+jBOlPt64gnG/2/GC3xF5Lu65MTm6Iye3CiuCpu9PMv59/sVP+q4u+BrP+3LL/+W0qM/J0srddei/mFlddx/vfPO/6mLK30+o+ImXK1vCF5u75mvSHf92G5Wp2fjNiQvF7PL9s/df2zRb4on8U/dqD9+N+RfyaL/+GIyC7ivRHxSETsy/vu0Yh4LCIOdIn/x5cff6/TsfXQ/zNt739L1/9o0rxefwuJoZM/fNep/pu7/x2up8byPVn/58l9nc7buTmb8hKNPav5uwMAAIA7RRoR2yJJx5fSaTo+3vj38jtjS1qZW6g+fWzug9MzjXcERmM4LZ50jTQ9D51MFvMzNvJT+bPi4vih/Lnxl0Ob6/nx6bnKTJ9jh0G3tcP4z/wx1O/WAWuu6zpal7cDgDtf6/hP+9QO4PbzvjYMLuMfBpfxD4Or3fj/uCVvLQDuTr7/YXAZ/zC4jH8YXMY/DKTVvNe/VolSl7f3JdZLItJ10YweJubXRzN6kCj+R//VnKffdyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDe+C8AAP//OVjxpw==") pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RLERRORu(r1, 0x0, 0x52) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="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"]) kernel console output (not intermixed with test programs): 46] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1665.270719][T23346] F2FS-fs (loop2): invalid crc value [ 1665.319880][T23346] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1665.380586][T23346] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1665.387532][T23346] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1665.520066][T23352] loop1: detected capacity change from 0 to 40427 [ 1665.897461][T23352] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1665.910900][T23352] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1666.023409][ T9741] usb 6-1: new high-speed USB device number 46 using dummy_hcd [ 1666.058388][T23352] F2FS-fs (loop1): invalid crc value [ 1666.125498][T23352] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1666.280593][ T9741] usb 6-1: Using ep0 maxpacket: 32 [ 1666.307132][T23352] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1666.314140][T23352] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1666.422418][ T30] audit: type=1400 audit(1731349202.947:4094): avc: denied { bind } for pid=23381 comm="syz.0.4608" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 1666.462640][T23382] loop0: detected capacity change from 0 to 512 [ 1666.497165][ T30] audit: type=1400 audit(1731349202.967:4095): avc: denied { node_bind } for pid=23381 comm="syz.0.4608" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 1666.519766][ T9741] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1666.544279][ T9741] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1666.802785][T23389] loop2: detected capacity change from 0 to 128 [ 1666.821831][T23382] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1666.833366][T23382] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038 (0x7fffffff) [ 1666.850583][ T9741] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1666.860199][ T9741] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1666.868035][ T9741] usb 6-1: Product: syz [ 1666.873019][ T9741] usb 6-1: Manufacturer: syz [ 1666.877444][ T9741] usb 6-1: SerialNumber: syz [ 1667.043129][T23390] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4606'. [ 1667.124438][T23360] loop5: detected capacity change from 0 to 512 [ 1667.184461][T23360] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 1667.193019][T23360] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 1667.211135][T23360] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1667.220700][T23360] System zones: 1-12 [ 1667.228992][T23360] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2219: inode #15: comm syz.5.4603: corrupted in-inode xattr [ 1667.270467][T23360] EXT4-fs error (device loop5): ext4_orphan_get:1402: comm syz.5.4603: couldn't read orphan inode 15 (err -117) [ 1667.297043][T23399] Restarting kernel threads ... done. [ 1667.357553][T23360] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1667.528963][T23360] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.4603: Unrecognised inode hash code 4 [ 1667.550419][T23360] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.4603: Corrupt directory, running e2fsck is recommended [ 1667.578621][T23402] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.4603: Unrecognised inode hash code 4 [ 1667.591617][T23402] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.4603: Corrupt directory, running e2fsck is recommended [ 1667.621334][T23402] EXT4-fs warning (device loop5): dx_probe:833: inode #2: comm syz.5.4603: Unrecognised inode hash code 4 [ 1667.670474][T23402] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.4603: Corrupt directory, running e2fsck is recommended [ 1667.849706][ T9741] usb 6-1: USB disconnect, device number 46 [ 1668.077893][ T468] udevd[468]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1668.130531][ T20] usb 3-1: new high-speed USB device number 118 using dummy_hcd [ 1668.306034][T23415] Restarting kernel threads ... done. [ 1668.657174][ T20] usb 3-1: Using ep0 maxpacket: 32 [ 1668.739556][ T30] audit: type=1400 audit(1731349205.257:4096): avc: denied { create } for pid=23421 comm="syz.5.4616" name="#2a" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 1668.780397][ T30] audit: type=1400 audit(1731349205.287:4097): avc: denied { link } for pid=23421 comm="syz.5.4616" name="#2a" dev="tmpfs" ino=2134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 1668.802789][ T20] usb 3-1: config index 0 descriptor too short (expected 156, got 27) [ 1668.820261][ T20] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1668.830219][ T20] usb 3-1: config 0 has no interfaces? [ 1668.835602][ T30] audit: type=1400 audit(1731349205.287:4098): avc: denied { rename } for pid=23421 comm="syz.5.4616" name="#2b" dev="tmpfs" ino=2134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 1668.841263][T23410] loop0: detected capacity change from 0 to 40427 [ 1668.904735][T23410] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1668.913430][T23410] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1668.928146][T23410] F2FS-fs (loop0): invalid crc value [ 1668.935016][T23410] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1668.953971][T23420] loop8: detected capacity change from 0 to 40427 [ 1668.990453][ T20] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 1669.006293][T23420] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12 [ 1669.009624][ T20] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 1669.014513][T23420] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock [ 1669.032194][T23420] F2FS-fs (loop8): invalid crc value [ 1669.034718][ T20] usb 3-1: Product: syz [ 1669.039557][T23410] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1669.041642][ T349] usb 6-1: new high-speed USB device number 47 using dummy_hcd [ 1669.048165][T23410] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1669.055271][T23420] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1669.064570][ T20] usb 3-1: Manufacturer: syz [ 1669.087911][ T20] usb 3-1: SerialNumber: syz [ 1669.102797][ T20] usb 3-1: config 0 descriptor?? [ 1669.143913][T23420] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0 [ 1669.151249][T23420] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1670.065444][ T9741] usb 3-1: USB disconnect, device number 118 [ 1670.274513][T23444] loop0: detected capacity change from 0 to 128 [ 1670.300172][ T349] usb 6-1: Using ep0 maxpacket: 8 [ 1670.770419][ T349] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1670.782147][ T349] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1670.854456][T23452] Restarting kernel threads ... done. [ 1671.354499][T23450] loop2: detected capacity change from 0 to 40427 [ 1671.390410][ T349] usb 6-1: string descriptor 0 read error: -22 [ 1671.397007][ T349] usb 6-1: Dual-Role OTG device on HNP port [ 1671.411139][T23450] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1671.418810][T23450] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1671.428959][T23450] F2FS-fs (loop2): invalid crc value [ 1671.430209][ T349] usb 6-1: New USB device found, idVendor=17dc, idProduct=0202, bcdDevice=8a.dd [ 1671.443336][ T349] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1671.452504][T23450] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1671.453420][T23457] loop1: detected capacity change from 0 to 40427 [ 1671.465591][ T349] usb 6-1: config 0 descriptor?? [ 1671.492368][T23450] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1671.499433][T23450] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1671.510710][T23457] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1671.520815][ T349] hub 6-1:0.0: bad descriptor, ignoring hub [ 1671.526722][ T349] hub: probe of 6-1:0.0 failed with error -5 [ 1671.533854][T23457] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1671.542606][ T349] usb 6-1: Found UVC 0.00 device (17dc:0202) [ 1671.551026][ T349] usb 6-1: No valid video chain found. [ 1671.570294][ T8946] usb 1-1: new high-speed USB device number 126 using dummy_hcd [ 1671.583922][T23457] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1671.611603][ T30] audit: type=1400 audit(1731349208.137:4099): avc: denied { map } for pid=23449 comm="syz.2.4622" path="/309/file1/hugetlb.2MB.usage_in_bytes" dev="loop2" ino=455 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 1671.656428][T23457] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 1671.667756][T23450] attempt to access beyond end of device [ 1671.667756][T23450] loop2: rw=2049, want=79872, limit=40427 [ 1671.680760][T23469] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4622'. [ 1671.686682][T23450] attempt to access beyond end of device [ 1671.686682][T23450] loop2: rw=2049, want=81920, limit=40427 [ 1671.700097][T23457] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1671.704292][T23450] attempt to access beyond end of device [ 1671.704292][T23450] loop2: rw=2049, want=49928, limit=40427 [ 1671.707990][T23457] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1671.790042][T23469] bridge0: port 1(bridge_slave_0) entered blocking state [ 1671.797113][T23469] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1671.850317][ T353] usb 6-1: USB disconnect, device number 47 [ 1671.853136][ T8946] usb 1-1: Using ep0 maxpacket: 32 [ 1672.972664][ T30] audit: type=1326 audit(1731349208.777:4100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1672.996812][ T30] audit: type=1326 audit(1731349208.777:4101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.022334][T11917] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 1673.031588][T11917] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 1673.124409][ T8946] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1673.140425][ T30] audit: type=1326 audit(1731349208.877:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.187975][ T8946] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1673.273140][T11917] attempt to access beyond end of device [ 1673.273140][T11917] loop2: rw=1, want=45112, limit=40427 [ 1673.314389][ T30] audit: type=1326 audit(1731349208.877:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.440986][ T30] audit: type=1326 audit(1731349208.977:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.469550][ T30] audit: type=1326 audit(1731349208.977:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.493851][ T8946] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1673.626499][ T30] audit: type=1326 audit(1731349208.977:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.632653][ T8946] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1673.659990][ T8946] usb 1-1: Product: syz [ 1673.664019][ T8946] usb 1-1: Manufacturer: syz [ 1673.668466][ T8946] usb 1-1: SerialNumber: syz [ 1673.717081][ T30] audit: type=1326 audit(1731349209.077:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.771078][T23491] loop2: detected capacity change from 0 to 128 [ 1673.777344][ T30] audit: type=1326 audit(1731349209.077:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23456 comm="syz.1.4625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67166b9719 code=0x7ffc0000 [ 1673.924431][T23459] loop0: detected capacity change from 0 to 512 [ 1673.987765][T23489] loop1: detected capacity change from 0 to 40427 [ 1674.020983][T23459] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 1674.028021][T23459] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1674.063752][T23459] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1674.073937][T23459] System zones: 1-12 [ 1674.077734][T23489] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1674.089509][T23489] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1674.103775][T23489] F2FS-fs (loop1): invalid crc value [ 1674.103812][T23459] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2219: inode #15: comm syz.0.4624: corrupted in-inode xattr [ 1674.128467][T23489] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1674.129722][T23459] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.4624: couldn't read orphan inode 15 (err -117) [ 1674.163958][T23459] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1674.188794][T23489] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1674.197005][T23489] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1674.294635][T23459] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.4624: Unrecognised inode hash code 4 [ 1674.350301][T23459] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.4624: Corrupt directory, running e2fsck is recommended [ 1674.550407][T23459] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.4624: Unrecognised inode hash code 4 [ 1674.673466][T23459] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.4624: Corrupt directory, running e2fsck is recommended [ 1674.704056][T23459] EXT4-fs warning (device loop0): dx_probe:833: inode #2: comm syz.0.4624: Unrecognised inode hash code 4 [ 1674.715745][T23459] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.4624: Corrupt directory, running e2fsck is recommended [ 1675.083472][ T8946] usb 1-1: USB disconnect, device number 126 [ 1675.218798][ T468] udevd[468]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1675.306251][T23518] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4636'. [ 1675.335868][T23521] loop1: detected capacity change from 0 to 256 [ 1675.648594][T23513] loop8: detected capacity change from 0 to 40427 [ 1675.757756][T23523] tipc: Started in network mode [ 1675.766911][T23523] tipc: Node identity ac1414aa, cluster identity 4711 [ 1675.790510][T23523] tipc: New replicast peer: 100.1.1.1 [ 1675.811650][T23523] tipc: Enabled bearer , priority 10 [ 1676.150575][T23513] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12 [ 1676.158146][T23513] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock [ 1676.191252][T23521] loop1: detected capacity change from 0 to 40427 [ 1676.209596][T23523] x_tables: duplicate underflow at hook 2 [ 1676.220763][T23513] F2FS-fs (loop8): invalid crc value [ 1676.225998][T23521] F2FS-fs (loop1): fault_injection options not supported [ 1676.240498][T23521] F2FS-fs (loop1): fault_type options not supported [ 1676.257777][T23521] F2FS-fs (loop1): invalid crc value [ 1676.263750][T23513] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1676.281128][T23521] F2FS-fs (loop1): Mismatch valid blocks 0 vs. 1 [ 1676.291816][T23521] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117) [ 1676.360548][T23513] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0 [ 1676.382902][T23513] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1676.977269][ T8946] tipc: Node number set to 2886997162 [ 1677.224701][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 1677.271504][ T30] audit: type=1326 audit(1731349213.707:4147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23536 comm="syz.0.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3629a3719 code=0x7fc00000 [ 1677.410402][ T30] audit: type=1326 audit(1731349213.707:4148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23536 comm="syz.0.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb3629a3719 code=0x7fc00000 [ 1677.434576][T23549] FAULT_INJECTION: forcing a failure. [ 1677.434576][T23549] name failslab, interval 1, probability 0, space 0, times 0 [ 1677.480544][T23549] CPU: 1 PID: 23549 Comm: syz.0.4643 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1677.490392][T23549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1677.500267][T23549] Call Trace: [ 1677.503392][T23549] [ 1677.506168][T23549] dump_stack_lvl+0x151/0x1c0 [ 1677.510678][T23549] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1677.516145][T23549] ? __kasan_check_write+0x14/0x20 [ 1677.521101][T23549] ? mutex_unlock+0xb2/0x260 [ 1677.525519][T23549] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1677.531947][T23549] dump_stack+0x15/0x20 [ 1677.535938][T23549] should_fail+0x3c6/0x510 [ 1677.540191][T23549] __should_failslab+0xa4/0xe0 [ 1677.544793][T23549] should_failslab+0x9/0x20 [ 1677.549132][T23549] slab_pre_alloc_hook+0x37/0xd0 [ 1677.553906][T23549] __kmalloc+0x6d/0x270 [ 1677.557894][T23549] ? __se_sys_memfd_create+0xf2/0x3e0 [ 1677.563103][T23549] __se_sys_memfd_create+0xf2/0x3e0 [ 1677.568135][T23549] __x64_sys_memfd_create+0x5b/0x70 [ 1677.573168][T23549] x64_sys_call+0x871/0x9a0 [ 1677.577511][T23549] do_syscall_64+0x3b/0xb0 [ 1677.581760][T23549] ? clear_bhb_loop+0x35/0x90 [ 1677.586283][T23549] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1677.592000][T23549] RIP: 0033:0x7fb3629a3719 [ 1677.596255][T23549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1677.615704][T23549] RSP: 002b:00007fb36161bd68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f [ 1677.623950][T23549] RAX: ffffffffffffffda RBX: 00000000000005c3 RCX: 00007fb3629a3719 [ 1677.631753][T23549] RDX: 00007fb36161bdec RSI: 0000000000000000 RDI: 00007fb362a16c0a [ 1677.639578][T23549] RBP: 00000000200005c0 R08: 00007fb36161bb07 R09: 0000000000000000 [ 1677.647379][T23549] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001 [ 1677.655187][T23549] R13: 00007fb36161bdec R14: 00007fb36161bdf0 R15: 00007ffdec2c1ff8 [ 1677.663007][T23549] [ 1677.786576][ T30] audit: type=1326 audit(1731349213.707:4149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23536 comm="syz.0.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3629a3719 code=0x7fc00000 [ 1677.822954][T23557] FAULT_INJECTION: forcing a failure. [ 1677.822954][T23557] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1677.859808][T23555] loop2: detected capacity change from 0 to 40427 [ 1677.866705][T23557] CPU: 0 PID: 23557 Comm: syz.0.4647 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1677.876518][T23557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1677.886422][T23557] Call Trace: [ 1677.889535][T23557] [ 1677.892309][T23557] dump_stack_lvl+0x151/0x1c0 [ 1677.896824][T23557] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1677.902295][T23557] ? __stack_depot_save+0x34/0x470 [ 1677.907240][T23557] ? kmem_cache_free+0x116/0x2e0 [ 1677.912015][T23557] dump_stack+0x15/0x20 [ 1677.916006][T23557] should_fail+0x3c6/0x510 [ 1677.920260][T23557] should_fail_usercopy+0x1a/0x20 [ 1677.925118][T23557] _copy_from_user+0x20/0xd0 [ 1677.929546][T23557] __copy_msghdr_from_user+0xaf/0x7c0 [ 1677.934755][T23557] ? __ia32_sys_shutdown+0x70/0x70 [ 1677.939706][T23557] ___sys_sendmsg+0x166/0x2e0 [ 1677.944215][T23557] ? __sys_sendmsg+0x260/0x260 [ 1677.948835][T23557] ? __fdget+0x1bc/0x240 [ 1677.952898][T23557] __se_sys_sendmsg+0x19a/0x260 [ 1677.957582][T23557] ? __x64_sys_sendmsg+0x90/0x90 [ 1677.962355][T23557] ? bpf_trace_run2+0xf1/0x210 [ 1677.966966][T23557] __x64_sys_sendmsg+0x7b/0x90 [ 1677.971556][T23557] x64_sys_call+0x16a/0x9a0 [ 1677.975895][T23557] do_syscall_64+0x3b/0xb0 [ 1677.980147][T23557] ? clear_bhb_loop+0x35/0x90 [ 1677.984665][T23557] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1677.990393][T23557] RIP: 0033:0x7fb3629a3719 [ 1677.994646][T23557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1678.014086][T23557] RSP: 002b:00007fb36161c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1678.022335][T23557] RAX: ffffffffffffffda RBX: 00007fb362b5af80 RCX: 00007fb3629a3719 [ 1678.030142][T23557] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000005 [ 1678.037952][T23557] RBP: 00007fb36161c090 R08: 0000000000000000 R09: 0000000000000000 [ 1678.045763][T23557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1678.053593][T23557] R13: 0000000000000000 R14: 00007fb362b5af80 R15: 00007ffdec2c1ff8 [ 1678.061393][T23557] [ 1678.093510][T23559] loop8: detected capacity change from 0 to 512 [ 1678.144348][T23555] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1678.152169][T23555] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1678.176695][T23555] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1678.230839][T23555] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1678.237711][T23555] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1678.309975][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4642: corrupted inode contents [ 1678.367262][T23559] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #3: comm syz.8.4642: mark_inode_dirty error [ 1678.444918][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4642: corrupted inode contents [ 1678.470502][T23559] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #3: comm syz.8.4642: mark_inode_dirty error [ 1678.520475][T23559] Quota error (device loop8): write_blk: dquota write failed [ 1678.538021][T23552] loop1: detected capacity change from 0 to 40427 [ 1678.542687][T23559] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1678.582864][T23559] EXT4-fs error (device loop8): ext4_acquire_dquot:6187: comm syz.8.4642: Failed to acquire dquot type 0 [ 1678.601602][T23574] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4651'. [ 1678.637238][T23552] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1678.641143][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4642: corrupted inode contents [ 1678.656970][T23552] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1678.677798][ T30] audit: type=1400 audit(1731349215.197:4150): avc: denied { bind } for pid=23575 comm="syz.2.4652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 1678.684045][T23576] loop2: detected capacity change from 0 to 256 [ 1678.710838][T23552] F2FS-fs (loop1): invalid crc value [ 1678.745182][T23559] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #16: comm syz.8.4642: mark_inode_dirty error [ 1678.759685][T23576] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0xa154a131, utbl_chksum : 0xe619d30d) [ 1678.761111][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4642: corrupted inode contents [ 1678.784281][T23559] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #16: comm syz.8.4642: mark_inode_dirty error [ 1678.785127][T23552] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1678.795949][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4642: corrupted inode contents [ 1678.818521][T23559] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem [ 1678.827305][T23559] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4642: corrupted inode contents [ 1678.839814][T23559] EXT4-fs error (device loop8): ext4_truncate:4303: inode #16: comm syz.8.4642: mark_inode_dirty error [ 1678.851499][T23559] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem [ 1678.860881][T23559] EXT4-fs (loop8): 1 truncate cleaned up [ 1678.866583][T23559] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1678.896267][T23559] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038 (0x7fffffff) [ 1678.934717][ T30] audit: type=1400 audit(1731349215.457:4151): avc: denied { write } for pid=23575 comm="syz.2.4652" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 1679.027510][T23586] Restarting kernel threads ... done. [ 1679.200570][T23552] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1679.210684][T23552] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1679.724594][T23596] Restarting kernel threads ... done. [ 1679.986296][T23598] tipc: Enabling of bearer rejected, already enabled [ 1680.050740][T23598] x_tables: duplicate underflow at hook 2 [ 1680.562224][T23611] Restarting kernel threads ... done. [ 1680.657726][T23613] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1681.064571][T23615] Restarting kernel threads ... done. [ 1681.475536][T23617] FAULT_INJECTION: forcing a failure. [ 1681.475536][T23617] name failslab, interval 1, probability 0, space 0, times 0 [ 1681.513268][T23617] CPU: 0 PID: 23617 Comm: syz.1.4661 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1681.523100][T23617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1681.532989][T23617] Call Trace: [ 1681.536119][T23617] [ 1681.538887][T23617] dump_stack_lvl+0x151/0x1c0 [ 1681.543406][T23617] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1681.548880][T23617] ? vfs_write+0x94d/0x1110 [ 1681.553209][T23617] ? putname+0xfa/0x150 [ 1681.557196][T23617] dump_stack+0x15/0x20 [ 1681.561191][T23617] should_fail+0x3c6/0x510 [ 1681.565449][T23617] __should_failslab+0xa4/0xe0 [ 1681.570044][T23617] should_failslab+0x9/0x20 [ 1681.574382][T23617] slab_pre_alloc_hook+0x37/0xd0 [ 1681.579156][T23617] ? __se_sys_mount+0x9b/0x3b0 [ 1681.583757][T23617] __kmalloc_track_caller+0x6c/0x260 [ 1681.588874][T23617] ? __se_sys_mount+0x9b/0x3b0 [ 1681.593479][T23617] strndup_user+0x76/0x150 [ 1681.597728][T23617] __se_sys_mount+0x9b/0x3b0 [ 1681.602169][T23617] ? __x64_sys_mount+0xd0/0xd0 [ 1681.606772][T23617] ? debug_smp_processor_id+0x17/0x20 [ 1681.611970][T23617] __x64_sys_mount+0xbf/0xd0 [ 1681.616396][T23617] x64_sys_call+0x49d/0x9a0 [ 1681.620731][T23617] do_syscall_64+0x3b/0xb0 [ 1681.624982][T23617] ? clear_bhb_loop+0x35/0x90 [ 1681.629495][T23617] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1681.635223][T23617] RIP: 0033:0x7f67166b9719 [ 1681.639480][T23617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1681.658922][T23617] RSP: 002b:00007f6715332038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1681.667165][T23617] RAX: ffffffffffffffda RBX: 00007f6716870f80 RCX: 00007f67166b9719 [ 1681.674982][T23617] RDX: 0000000020000380 RSI: 00000000200000c0 RDI: 0000000000000000 [ 1681.682794][T23617] RBP: 00007f6715332090 R08: 0000000020000400 R09: 0000000000000000 [ 1681.690603][T23617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1681.698410][T23617] R13: 0000000000000000 R14: 00007f6716870f80 R15: 00007ffe9ea0b868 [ 1681.706228][T23617] [ 1681.716760][T23621] loop5: detected capacity change from 0 to 512 [ 1681.731590][ T30] audit: type=1326 audit(1731349218.257:4152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23624 comm="syz.8.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6249c719 code=0x7ffc0000 [ 1681.764544][T23621] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 1681.770198][ T30] audit: type=1326 audit(1731349218.257:4153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23624 comm="syz.8.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d6249c719 code=0x7ffc0000 [ 1681.780642][T23621] EXT4-fs (loop5): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1681.799161][T23584] loop0: detected capacity change from 0 to 40427 [ 1681.810918][ T30] audit: type=1326 audit(1731349218.257:4154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23624 comm="syz.8.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6249c719 code=0x7ffc0000 [ 1681.845196][T23628] UDC core: couldn't find an available UDC or it's busy: -16 [ 1681.853787][T23619] tipc: Enabling of bearer rejected, already enabled [ 1681.854579][T23628] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 1681.870598][T23584] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1681.878215][T23584] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1681.910607][T23584] F2FS-fs (loop0): invalid crc value [ 1681.920550][T23584] F2FS-fs (loop0): Failed to start F2FS issue_checkpoint_thread (-12) [ 1681.924562][T23619] x_tables: duplicate underflow at hook 2 [ 1682.085549][T23634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4668'. [ 1682.110167][ T4349] usb 2-1: new high-speed USB device number 121 using dummy_hcd [ 1682.142079][T23638] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4669'. [ 1682.156987][T23630] loop8: detected capacity change from 0 to 40427 [ 1682.241214][T23630] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12 [ 1682.248851][T23630] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock [ 1682.258164][T23630] F2FS-fs (loop8): invalid crc value [ 1682.272925][ T30] kauditd_printk_skb: 44 callbacks suppressed [ 1682.272944][ T30] audit: type=1400 audit(1731349218.757:4199): avc: denied { getopt } for pid=23635 comm="syz.0.4667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 1682.317122][T23630] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1682.360241][ T4349] usb 2-1: Using ep0 maxpacket: 16 [ 1682.425824][ T30] audit: type=1326 audit(1731349218.947:4200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3629a3719 code=0x7ffc0000 [ 1682.455468][T23653] FAULT_INJECTION: forcing a failure. [ 1682.455468][T23653] name failslab, interval 1, probability 0, space 0, times 0 [ 1682.468449][T23653] CPU: 1 PID: 23653 Comm: syz.0.4673 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1682.478260][T23653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1682.488153][T23653] Call Trace: [ 1682.491276][T23653] [ 1682.494052][T23653] dump_stack_lvl+0x151/0x1c0 [ 1682.498565][T23653] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1682.504118][T23653] ? sched_clock+0x9/0x10 [ 1682.508292][T23653] dump_stack+0x15/0x20 [ 1682.512277][T23653] should_fail+0x3c6/0x510 [ 1682.516534][T23653] __should_failslab+0xa4/0xe0 [ 1682.521132][T23653] ? audit_log_start+0x42f/0xa80 [ 1682.525906][T23653] should_failslab+0x9/0x20 [ 1682.530256][T23653] slab_pre_alloc_hook+0x37/0xd0 [ 1682.535020][T23653] ? audit_log_start+0x42f/0xa80 [ 1682.539793][T23653] kmem_cache_alloc+0x44/0x200 [ 1682.544393][T23653] audit_log_start+0x42f/0xa80 [ 1682.548996][T23653] ? audit_serial+0x30/0x30 [ 1682.553339][T23653] ? irqentry_exit_cond_resched+0x2a/0x30 [ 1682.558889][T23653] ? irqentry_exit+0x30/0x40 [ 1682.563320][T23653] ? sysvec_reschedule_ipi+0x7d/0x150 [ 1682.568523][T23653] ? asm_sysvec_reschedule_ipi+0x1b/0x20 [ 1682.573994][T23653] audit_seccomp+0x61/0x1e0 [ 1682.578339][T23653] __seccomp_filter+0xc08/0x1c60 [ 1682.583108][T23653] ? _raw_spin_unlock+0x4d/0x70 [ 1682.587793][T23653] ? __secure_computing+0x300/0x300 [ 1682.592826][T23653] ? __schedule+0xcd4/0x1590 [ 1682.597257][T23653] __secure_computing+0xf0/0x300 [ 1682.602029][T23653] syscall_enter_from_user_mode+0xd5/0x1b0 [ 1682.607666][T23653] do_syscall_64+0x1e/0xb0 [ 1682.611919][T23653] ? clear_bhb_loop+0x35/0x90 [ 1682.616694][T23653] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1682.622426][T23653] RIP: 0033:0x7fb3629a3719 [ 1682.626676][T23653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1682.646116][T23653] RSP: 002b:00007fb36161c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 1682.654361][T23653] RAX: ffffffffffffffda RBX: 00007fb362b5af80 RCX: 00007fb3629a3719 [ 1682.662177][T23653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1682.669984][T23653] RBP: 00007fb36161c090 R08: 0000000000000000 R09: 0000000000000000 [ 1682.674279][ T30] audit: type=1326 audit(1731349218.947:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3629a3719 code=0x7ffc0000 [ 1682.677791][T23653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1682.677810][T23653] R13: 0000000000000000 R14: 00007fb362b5af80 R15: 00007ffdec2c1ff8 [ 1682.701319][ T30] audit: type=1326 audit(1731349218.977:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb3629a20b0 code=0x7ffc0000 [ 1682.708963][T23653] [ 1682.721040][ T4349] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1682.748043][ T30] audit: type=1326 audit(1731349218.977:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb3629a21ff code=0x7ffc0000 [ 1682.777742][T23653] audit: audit_lost=6 audit_rate_limit=0 audit_backlog_limit=64 [ 1682.785844][T23630] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0 [ 1682.795055][T23630] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1682.799330][ T4349] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1682.802906][T23653] audit: out of memory in audit_log_start [ 1682.815611][ T4349] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1682.828424][ T4349] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1682.847562][ T30] audit: type=1326 audit(1731349219.367:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fb3629a215c code=0x7ffc0000 [ 1682.915871][ T30] audit: type=1326 audit(1731349219.367:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb3629a21ff code=0x7ffc0000 [ 1682.952231][ T30] audit: type=1326 audit(1731349219.367:4206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23652 comm="syz.0.4673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb3629a23aa code=0x7ffc0000 [ 1683.299998][ T4349] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1683.309286][ T4349] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1683.317596][ T4349] usb 2-1: Product: syz [ 1683.338226][T23667] FAULT_INJECTION: forcing a failure. [ 1683.338226][T23667] name failslab, interval 1, probability 0, space 0, times 0 [ 1683.360512][T23667] CPU: 0 PID: 23667 Comm: syz.2.4676 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1683.370348][T23667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1683.370405][ T4349] usb 2-1: Manufacturer: syz [ 1683.380315][T23667] Call Trace: [ 1683.380328][T23667] [ 1683.380338][T23667] dump_stack_lvl+0x151/0x1c0 [ 1683.380369][T23667] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1683.395179][ T4349] usb 2-1: SerialNumber: syz [ 1683.400667][T23667] ? proc_pident_lookup+0x1c4/0x260 [ 1683.400700][T23667] ? do_sys_openat2+0x13f/0x820 [ 1683.414769][T23667] ? x64_sys_call+0x6bf/0x9a0 [ 1683.419281][T23667] ? avc_has_perm_noaudit+0x348/0x430 [ 1683.424489][T23667] dump_stack+0x15/0x20 [ 1683.428481][T23667] should_fail+0x3c6/0x510 [ 1683.432734][T23667] __should_failslab+0xa4/0xe0 [ 1683.437594][T23667] should_failslab+0x9/0x20 [ 1683.441936][T23667] slab_pre_alloc_hook+0x37/0xd0 [ 1683.446711][T23667] kmem_cache_alloc_trace+0x48/0x210 [ 1683.451828][T23667] ? futex_requeue+0x1f5b/0x2090 [ 1683.456620][T23667] futex_requeue+0x1f5b/0x2090 [ 1683.461211][T23667] ? futex_wake+0xc80/0xc80 [ 1683.465543][T23667] ? 0xffffffffa002c000 [ 1683.469537][T23667] ? stack_trace_save+0x1c0/0x1c0 [ 1683.474396][T23667] ? unwind_get_return_address+0x4d/0x90 [ 1683.479863][T23667] ? arch_stack_walk+0xf3/0x140 [ 1683.484553][T23667] do_futex+0x11bf/0x37f0 [ 1683.488720][T23667] ? kmem_cache_free+0x116/0x2e0 [ 1683.493492][T23667] ? kmem_cache_free+0x116/0x2e0 [ 1683.498264][T23667] ? kasan_set_track+0x5d/0x70 [ 1683.502863][T23667] ? kasan_set_track+0x4b/0x70 [ 1683.507463][T23667] ? kasan_set_free_info+0x23/0x40 [ 1683.512412][T23667] ? ____kasan_slab_free+0x126/0x160 [ 1683.517531][T23667] ? __kasan_slab_free+0x11/0x20 [ 1683.522307][T23667] ? slab_free_freelist_hook+0xbd/0x190 [ 1683.527686][T23667] ? kmem_cache_free+0x116/0x2e0 [ 1683.532459][T23667] ? putname+0xfa/0x150 [ 1683.536539][T23667] ? do_sys_openat2+0x1fc/0x820 [ 1683.541249][T23667] ? __x64_sys_openat+0x243/0x290 [ 1683.546086][T23667] ? x64_sys_call+0x6bf/0x9a0 [ 1683.550604][T23667] ? futex_exit_release+0x1e0/0x1e0 [ 1683.555636][T23667] ? _kstrtoull+0x3a0/0x4a0 [ 1683.559976][T23667] ? kstrtouint_from_user+0x20a/0x2a0 [ 1683.565181][T23667] ? kstrtol_from_user+0x310/0x310 [ 1683.570140][T23667] ? __kasan_check_write+0x14/0x20 [ 1683.575082][T23667] ? proc_fail_nth_write+0x20b/0x290 [ 1683.580196][T23667] ? selinux_file_permission+0x2c4/0x570 [ 1683.585665][T23667] ? proc_fail_nth_read+0x210/0x210 [ 1683.590701][T23667] ? fsnotify_perm+0x6a/0x5b0 [ 1683.595320][T23667] ? vfs_write+0x94d/0x1110 [ 1683.599756][T23667] ? putname+0xfa/0x150 [ 1683.604087][T23667] ? file_end_write+0x1c0/0x1c0 [ 1683.608772][T23667] ? __kasan_check_write+0x14/0x20 [ 1683.613804][T23667] ? mutex_unlock+0xb2/0x260 [ 1683.618231][T23667] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1683.624655][T23667] __se_sys_futex+0x37b/0x3e0 [ 1683.629178][T23667] ? fput+0x1a/0x20 [ 1683.632813][T23667] ? __x64_sys_futex+0x100/0x100 [ 1683.637592][T23667] ? __ia32_sys_read+0x90/0x90 [ 1683.642186][T23667] ? debug_smp_processor_id+0x17/0x20 [ 1683.647481][T23667] __x64_sys_futex+0xe5/0x100 [ 1683.651998][T23667] x64_sys_call+0x561/0x9a0 [ 1683.656334][T23667] do_syscall_64+0x3b/0xb0 [ 1683.660585][T23667] ? clear_bhb_loop+0x35/0x90 [ 1683.665100][T23667] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1683.670827][T23667] RIP: 0033:0x7fbe3b25f719 [ 1683.675080][T23667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1683.694533][T23667] RSP: 002b:00007fbe39ed8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1683.702765][T23667] RAX: ffffffffffffffda RBX: 00007fbe3b416f80 RCX: 00007fbe3b25f719 [ 1683.710578][T23667] RDX: 0000000000000001 RSI: 000000000000000c RDI: 000000002000cffc [ 1683.718398][T23667] RBP: 00007fbe39ed8090 R08: 0000000020048000 R09: 0000000000000000 [ 1683.726209][T23667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1683.734012][T23667] R13: 0000000000000000 R14: 00007fbe3b416f80 R15: 00007ffebd4ee958 [ 1683.741833][T23667] [ 1683.747698][T23669] fuse: Bad value for 'fd' [ 1684.015875][T23679] 9pnet: Could not find request transport: 0xffffffffffffffff0xffffffffffffffff [ 1684.225947][T23690] x_tables: duplicate underflow at hook 1 [ 1684.238164][T23686] Restarting kernel threads ... done. [ 1684.282796][T23692] loop2: detected capacity change from 0 to 128 [ 1684.444142][ T4349] usb 2-1: USB disconnect, device number 121 [ 1684.457066][ T468] udevd[468]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1684.937683][T23706] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1684.946428][T23706] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1686.194654][T23706] overlayfs: missing 'lowerdir' [ 1686.489572][T23714] loop8: detected capacity change from 0 to 40427 [ 1686.543592][T23714] F2FS-fs (loop8): Invalid SB checksum offset: 0 [ 1686.559958][T23714] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock [ 1686.571765][ T4349] usb 2-1: new high-speed USB device number 122 using dummy_hcd [ 1686.599048][T23714] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 1686.633327][T23714] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0 [ 1686.640555][T23714] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1686.810559][ T4349] usb 2-1: Using ep0 maxpacket: 32 [ 1686.930902][ T4349] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1686.981037][ T4349] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1686.992520][T22888] attempt to access beyond end of device [ 1686.992520][T22888] loop8: rw=2049, want=45104, limit=40427 [ 1687.035381][T23740] FAULT_INJECTION: forcing a failure. [ 1687.035381][T23740] name failslab, interval 1, probability 0, space 0, times 0 [ 1687.056627][T23740] CPU: 1 PID: 23740 Comm: syz.2.4698 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1687.066452][T23740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1687.076349][T23740] Call Trace: [ 1687.079468][T23740] [ 1687.082244][T23740] dump_stack_lvl+0x151/0x1c0 [ 1687.086763][T23740] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1687.092227][T23740] ? vfs_write+0x94d/0x1110 [ 1687.096568][T23740] dump_stack+0x15/0x20 [ 1687.100555][T23740] should_fail+0x3c6/0x510 [ 1687.104812][T23740] __should_failslab+0xa4/0xe0 [ 1687.109423][T23740] should_failslab+0x9/0x20 [ 1687.113752][T23740] slab_pre_alloc_hook+0x37/0xd0 [ 1687.118523][T23740] ? __se_sys_mount+0x9b/0x3b0 [ 1687.123123][T23740] __kmalloc_track_caller+0x6c/0x260 [ 1687.128247][T23740] ? __se_sys_mount+0x9b/0x3b0 [ 1687.132848][T23740] strndup_user+0x76/0x150 [ 1687.137101][T23740] __se_sys_mount+0x9b/0x3b0 [ 1687.141529][T23740] ? __x64_sys_mount+0xd0/0xd0 [ 1687.146127][T23740] ? debug_smp_processor_id+0x17/0x20 [ 1687.151333][T23740] __x64_sys_mount+0xbf/0xd0 [ 1687.155755][T23740] x64_sys_call+0x49d/0x9a0 [ 1687.160107][T23740] do_syscall_64+0x3b/0xb0 [ 1687.164347][T23740] ? clear_bhb_loop+0x35/0x90 [ 1687.168863][T23740] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1687.174588][T23740] RIP: 0033:0x7fbe3b25f719 [ 1687.178843][T23740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1687.198287][T23740] RSP: 002b:00007fbe39ed8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1687.206530][T23740] RAX: ffffffffffffffda RBX: 00007fbe3b416f80 RCX: 00007fbe3b25f719 [ 1687.214341][T23740] RDX: 0000000020000b80 RSI: 0000000020000040 RDI: 0000000000000000 [ 1687.222150][T23740] RBP: 00007fbe39ed8090 R08: 00000000200001c0 R09: 0000000000000000 [ 1687.229964][T23740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1687.237865][T23740] R13: 0000000000000000 R14: 00007fbe3b416f80 R15: 00007ffebd4ee958 [ 1687.245681][T23740] [ 1687.307002][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 1687.307019][ T30] audit: type=1400 audit(1731349223.827:4216): avc: denied { compute_member } for pid=23742 comm="syz.2.4699" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 1687.350219][ T4349] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1687.359095][ T4349] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1687.371014][ T4349] usb 2-1: Product: syz [ 1687.375261][ T4349] usb 2-1: Manufacturer: syz [ 1687.379945][ T4349] usb 2-1: SerialNumber: syz [ 1687.624220][T23715] loop1: detected capacity change from 0 to 512 [ 1687.650318][T11506] usb 3-1: new high-speed USB device number 119 using dummy_hcd [ 1687.701222][T23715] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 1687.708240][T23715] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1687.729254][T23746] loop8: detected capacity change from 0 to 40427 [ 1687.745945][T23715] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1687.791207][T23715] System zones: 1-12 [ 1687.797084][T23752] Restarting kernel threads ... done. [ 1687.803582][T23715] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2219: inode #15: comm syz.1.4691: corrupted in-inode xattr [ 1687.841269][T23746] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12 [ 1687.848840][T23746] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock [ 1687.857172][T23715] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.4691: couldn't read orphan inode 15 (err -117) [ 1687.871478][T23746] F2FS-fs (loop8): invalid crc value [ 1687.883635][T23715] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1687.904783][T11506] usb 3-1: Using ep0 maxpacket: 16 [ 1687.921538][T23746] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1687.987587][T23715] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4691: Unrecognised inode hash code 4 [ 1687.998989][T23746] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0 [ 1688.006130][T23715] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4691: Corrupt directory, running e2fsck is recommended [ 1688.007215][T23746] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1688.020677][T11506] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 1688.112814][T11506] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 1688.116675][T23715] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4691: Unrecognised inode hash code 4 [ 1688.121802][T11506] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1688.122781][T11506] usb 3-1: config 0 descriptor?? [ 1688.146185][T23715] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4691: Corrupt directory, running e2fsck is recommended [ 1688.159135][T23715] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4691: Unrecognised inode hash code 4 [ 1688.171193][T23715] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4691: Corrupt directory, running e2fsck is recommended [ 1688.499993][T23743] loop2: detected capacity change from 0 to 2048 [ 1688.854430][ T4349] usb 2-1: USB disconnect, device number 122 [ 1688.990649][T11506] usbhid 3-1:0.0: can't add hid device: -71 [ 1688.996904][T11506] usbhid: probe of 3-1:0.0 failed with error -71 [ 1689.052723][T11506] usb 3-1: USB disconnect, device number 119 [ 1689.168700][T23771] loop8: detected capacity change from 0 to 128 [ 1689.173196][T23768] loop5: detected capacity change from 0 to 40427 [ 1689.211408][T23771] EXT4-fs (loop8): Test dummy encryption mode enabled [ 1689.219632][T23771] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none. [ 1689.233157][T23771] ext4 filesystem being mounted at /38/mnt supports timestamps until 2038 (0x7fffffff) [ 1689.317841][T23768] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1689.335051][T23768] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1689.347209][T23768] F2FS-fs (loop5): invalid crc value [ 1689.354009][T23768] F2FS-fs (loop5): Found nat_bits in checkpoint [ 1689.763864][T23768] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1689.780381][T23768] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1689.788520][T23787] loop1: detected capacity change from 0 to 256 [ 1689.802179][ T30] audit: type=1400 audit(1731349226.327:4217): avc: denied { unlink } for pid=23767 comm="syz.5.4704" name="#2d" dev="loop5" ino=460 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 1689.839835][T23768] overlayfs: conflicting lowerdir path [ 1689.915382][T23791] loop2: detected capacity change from 0 to 512 [ 1689.971477][T23791] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1689.994711][T23791] EXT4-fs (loop2): 1 truncate cleaned up [ 1690.000878][T23791] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1690.072637][ T2116] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 1690.087084][ T2116] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 1690.108189][T23794] FAULT_INJECTION: forcing a failure. [ 1690.108189][T23794] name failslab, interval 1, probability 0, space 0, times 0 [ 1690.141394][T23787] loop1: detected capacity change from 0 to 40427 [ 1690.149747][T23794] CPU: 1 PID: 23794 Comm: syz.8.4709 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1690.159576][T23794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1690.169463][T23794] Call Trace: [ 1690.170781][T23787] F2FS-fs (loop1): fault_injection options not supported [ 1690.172582][T23794] [ 1690.172594][T23794] dump_stack_lvl+0x151/0x1c0 [ 1690.179489][T23787] F2FS-fs (loop1): fault_type options not supported [ 1690.182216][T23794] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1690.182243][T23794] dump_stack+0x15/0x20 [ 1690.182264][T23794] should_fail+0x3c6/0x510 [ 1690.195292][T23787] F2FS-fs (loop1): invalid crc value [ 1690.198626][T23794] __should_failslab+0xa4/0xe0 [ 1690.216681][T23794] should_failslab+0x9/0x20 [ 1690.221016][T23794] slab_pre_alloc_hook+0x37/0xd0 [ 1690.225792][T23794] kmem_cache_alloc_trace+0x48/0x210 [ 1690.230914][T23794] ? alloc_fdtable+0xaf/0x2a0 [ 1690.235428][T23794] alloc_fdtable+0xaf/0x2a0 [ 1690.239782][T23794] dup_fd+0x7af/0xb30 [ 1690.243584][T23794] ? lockref_get+0xb4/0x110 [ 1690.247932][T23794] ksys_unshare+0x4a0/0xa00 [ 1690.252275][T23794] ? unshare_fd+0x240/0x240 [ 1690.256609][T23794] ? debug_smp_processor_id+0x17/0x20 [ 1690.261811][T23794] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1690.267716][T23794] __x64_sys_unshare+0x38/0x40 [ 1690.272315][T23794] x64_sys_call+0x728/0x9a0 [ 1690.276657][T23794] do_syscall_64+0x3b/0xb0 [ 1690.280904][T23794] ? clear_bhb_loop+0x35/0x90 [ 1690.285426][T23794] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1690.291146][T23794] RIP: 0033:0x7f7d6249c719 [ 1690.295403][T23794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1690.314846][T23794] RSP: 002b:00007f7d61115038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1690.323087][T23794] RAX: ffffffffffffffda RBX: 00007f7d62653f80 RCX: 00007f7d6249c719 [ 1690.330898][T23794] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c020400 [ 1690.338713][T23794] RBP: 00007f7d61115090 R08: 0000000000000000 R09: 0000000000000000 [ 1690.346527][T23794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1690.354334][T23794] R13: 0000000000000000 R14: 00007f7d62653f80 R15: 00007ffdf95434d8 [ 1690.362155][T23794] [ 1690.366363][T23787] F2FS-fs (loop1): Mismatch valid blocks 0 vs. 1 [ 1690.378381][T23787] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117) [ 1691.191071][T23805] loop0: detected capacity change from 0 to 40427 [ 1691.210601][T23805] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1691.234196][T23805] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1691.285504][T23805] F2FS-fs (loop0): invalid crc value [ 1691.298703][T23818] loop8: detected capacity change from 0 to 512 [ 1691.314285][T23803] loop2: detected capacity change from 0 to 40427 [ 1691.321648][T23805] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1691.354062][T23805] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1691.361013][T23805] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1691.391541][T23803] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1691.409316][T23803] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1691.420318][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4716: corrupted inode contents [ 1691.433691][T23803] F2FS-fs (loop2): invalid crc value [ 1691.450379][T23818] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #3: comm syz.8.4716: mark_inode_dirty error [ 1691.471453][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4716: corrupted inode contents [ 1691.647476][T23818] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #3: comm syz.8.4716: mark_inode_dirty error [ 1691.709920][T23803] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1691.733685][T23818] Quota error (device loop8): write_blk: dquota write failed [ 1691.762999][T23818] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1691.772833][T23818] EXT4-fs error (device loop8): ext4_acquire_dquot:6187: comm syz.8.4716: Failed to acquire dquot type 0 [ 1691.804341][T23803] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1691.811321][T23803] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1691.836446][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4716: corrupted inode contents [ 1691.854940][T23818] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #16: comm syz.8.4716: mark_inode_dirty error [ 1691.879709][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4716: corrupted inode contents [ 1691.921461][T23818] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #16: comm syz.8.4716: mark_inode_dirty error [ 1691.951175][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4716: corrupted inode contents [ 1691.998921][T23818] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem [ 1692.008299][T23818] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4716: corrupted inode contents [ 1692.021486][T23818] EXT4-fs error (device loop8): ext4_truncate:4303: inode #16: comm syz.8.4716: mark_inode_dirty error [ 1692.151750][T23818] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem [ 1692.345150][T23818] EXT4-fs (loop8): 1 truncate cleaned up [ 1692.355863][T23835] loop0: detected capacity change from 0 to 512 [ 1692.362049][T23818] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1692.392786][T23818] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038 (0x7fffffff) [ 1692.542437][T23835] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1692.553697][T23835] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038 (0x7fffffff) [ 1692.573524][T23835] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 18: comm syz.0.4717: lblock 23 mapped to illegal pblock 18 (length 1) [ 1693.034070][T23843] loop2: detected capacity change from 0 to 40427 [ 1693.050390][T23843] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1693.057955][T23843] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1693.067363][T23843] F2FS-fs (loop2): invalid crc value [ 1693.074578][T23843] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1693.430784][T23843] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1693.438071][T23843] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1693.506789][T23859] loop1: detected capacity change from 0 to 512 [ 1693.530079][T23859] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 1693.537828][T23859] EXT4-fs (loop1): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1693.597306][T23850] loop0: detected capacity change from 0 to 40427 [ 1693.651191][T23850] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1693.658876][T23850] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1693.674827][T23850] F2FS-fs (loop0): invalid crc value [ 1694.032392][T23850] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1694.097689][T23850] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1694.174384][T23850] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1695.248677][T23887] Restarting kernel threads ... done. [ 1695.351183][T23874] loop5: detected capacity change from 0 to 40427 [ 1695.449328][T23874] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1695.465965][T23874] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1695.490458][T23874] F2FS-fs (loop5): invalid crc value [ 1695.539922][T23874] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1695.607633][T23874] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1695.618999][T23874] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1696.356436][ T30] audit: type=1400 audit(1731349232.877:4218): avc: denied { sys_admin } for pid=23913 comm="syz.0.4736" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 1696.451090][T23918] loop2: detected capacity change from 0 to 256 [ 1696.465061][T23919] loop8: detected capacity change from 0 to 512 [ 1696.521897][T23919] EXT4-fs (loop8): Ignoring removed mblk_io_submit option [ 1696.531048][T23919] EXT4-fs (loop8): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1696.561072][ T30] audit: type=1400 audit(1731349233.087:4219): avc: denied { write } for pid=23922 comm="syz.5.4735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1696.610276][ T30] audit: type=1400 audit(1731349233.107:4220): avc: denied { ioctl } for pid=23922 comm="syz.5.4735" path="socket:[81372]" dev="sockfs" ino=81372 ioctlcmd=0x2100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1696.660698][ T30] audit: type=1400 audit(1731349233.107:4221): avc: denied { accept } for pid=23922 comm="syz.5.4735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1696.751725][ T30] audit: type=1400 audit(1731349233.107:4222): avc: denied { getopt } for pid=23922 comm="syz.5.4735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1696.918914][T23933] loop1: detected capacity change from 0 to 512 [ 1696.996446][ T30] audit: type=1326 audit(1731349233.477:4223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23932 comm="syz.2.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe3b25f719 code=0x7ffc0000 [ 1697.040249][ T30] audit: type=1326 audit(1731349233.487:4224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23932 comm="syz.2.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe3b25f719 code=0x7ffc0000 [ 1697.104973][T23921] loop0: detected capacity change from 0 to 40427 [ 1697.124085][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4742: corrupted inode contents [ 1697.136070][T23933] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #3: comm syz.1.4742: mark_inode_dirty error [ 1697.148134][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4742: corrupted inode contents [ 1697.160577][T23921] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1697.168197][T23933] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz.1.4742: mark_inode_dirty error [ 1697.179185][T23921] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1697.187939][T23933] Quota error (device loop1): write_blk: dquota write failed [ 1697.195371][T23933] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1697.206623][T23933] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.4742: Failed to acquire dquot type 0 [ 1697.206728][T23921] F2FS-fs (loop0): invalid crc value [ 1697.224900][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4742: corrupted inode contents [ 1697.237332][T23933] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #16: comm syz.1.4742: mark_inode_dirty error [ 1697.248967][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4742: corrupted inode contents [ 1697.250247][T23921] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1697.271735][T23933] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.4742: mark_inode_dirty error [ 1697.290270][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4742: corrupted inode contents [ 1697.302425][T23938] loop2: detected capacity change from 0 to 40427 [ 1697.308784][T23933] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 1697.317433][T23938] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1697.323088][T23921] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1697.325327][T23933] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4742: corrupted inode contents [ 1697.332882][T23921] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1697.344314][T23938] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1697.362955][T23933] EXT4-fs error (device loop1): ext4_truncate:4303: inode #16: comm syz.1.4742: mark_inode_dirty error [ 1697.363796][T23938] F2FS-fs (loop2): invalid crc value [ 1697.379575][T23933] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 1697.389178][T23933] EXT4-fs (loop1): 1 truncate cleaned up [ 1697.390577][T23938] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1697.395534][T23933] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1697.427807][T23938] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1697.438322][T23938] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1697.446905][T23933] ext4 filesystem being mounted at /350/file1 supports timestamps until 2038 (0x7fffffff) [ 1698.659179][T23959] tipc: Enabling of bearer rejected, already enabled [ 1698.720968][T23959] x_tables: duplicate underflow at hook 2 [ 1698.886328][T23968] loop5: detected capacity change from 0 to 256 [ 1699.072103][T23978] Restarting kernel threads ... done. [ 1699.234428][T23976] loop2: detected capacity change from 0 to 40427 [ 1699.310864][T23976] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1699.329686][T23976] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1699.359621][T23976] F2FS-fs (loop2): invalid crc value [ 1699.408079][T23976] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1699.508037][T23976] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1699.515959][T23976] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1700.218989][T23987] loop5: detected capacity change from 0 to 40427 [ 1700.272145][T23987] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1700.281734][T24003] loop1: detected capacity change from 0 to 512 [ 1700.288966][T23987] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1700.339831][T24008] loop2: detected capacity change from 0 to 128 [ 1700.350225][T24003] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 1700.357518][T24003] EXT4-fs (loop1): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1700.367779][T23987] F2FS-fs (loop5): Found nat_bits in checkpoint [ 1700.370069][T24003] 9pnet: Insufficient options for proto=fd [ 1700.406309][T24008] attempt to access beyond end of device [ 1700.406309][T24008] loop2: rw=2049, want=1041, limit=128 [ 1700.417918][T24001] loop0: detected capacity change from 0 to 40427 [ 1700.457080][T24008] attempt to access beyond end of device [ 1700.457080][T24008] loop2: rw=0, want=178, limit=128 [ 1700.492477][T24007] attempt to access beyond end of device [ 1700.492477][T24007] loop2: rw=0, want=178, limit=128 [ 1700.492669][T23987] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1700.504346][T24007] Buffer I/O error on dev loop2, logical block 177, async page read [ 1700.518176][T24001] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1700.526114][T23987] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1700.527251][T24001] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1700.550447][T24007] attempt to access beyond end of device [ 1700.550447][T24007] loop2: rw=0, want=179, limit=128 [ 1700.564578][T24007] Buffer I/O error on dev loop2, logical block 178, async page read [ 1700.573189][T24001] F2FS-fs (loop0): invalid crc value [ 1700.580477][T24007] attempt to access beyond end of device [ 1700.580477][T24007] loop2: rw=0, want=180, limit=128 [ 1700.594414][T24007] Buffer I/O error on dev loop2, logical block 179, async page read [ 1700.602936][T24007] attempt to access beyond end of device [ 1700.602936][T24007] loop2: rw=0, want=181, limit=128 [ 1700.614361][T24001] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1700.644153][T24007] Buffer I/O error on dev loop2, logical block 180, async page read [ 1700.673075][T24007] attempt to access beyond end of device [ 1700.673075][T24007] loop2: rw=0, want=182, limit=128 [ 1700.687309][T24001] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1700.696483][T24025] loop8: detected capacity change from 0 to 256 [ 1700.710424][T24001] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1700.720912][T24007] Buffer I/O error on dev loop2, logical block 181, async page read [ 1700.735992][T24007] attempt to access beyond end of device [ 1700.735992][T24007] loop2: rw=0, want=183, limit=128 [ 1700.747020][T24007] Buffer I/O error on dev loop2, logical block 182, async page read [ 1700.755070][T24007] attempt to access beyond end of device [ 1700.755070][T24007] loop2: rw=0, want=184, limit=128 [ 1700.771181][T24007] Buffer I/O error on dev loop2, logical block 183, async page read [ 1700.781568][T24007] attempt to access beyond end of device [ 1700.781568][T24007] loop2: rw=0, want=185, limit=128 [ 1700.792133][T24007] Buffer I/O error on dev loop2, logical block 184, async page read [ 1700.799990][T24007] Buffer I/O error on dev loop2, logical block 177, async page read [ 1700.808502][T24007] Buffer I/O error on dev loop2, logical block 178, async page read [ 1701.198835][T24033] device pim6reg1 entered promiscuous mode [ 1701.202078][ T30] audit: type=1326 audit(1731349237.697:4225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24032 comm="syz.5.4768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30063c6719 code=0x7ffc0000 [ 1701.337035][T24042] loop5: detected capacity change from 0 to 512 [ 1701.401066][T24042] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 1701.418375][T24042] EXT4-fs (loop5): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1701.440151][T11506] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 1701.461574][T24045] Restarting kernel threads ... done. [ 1701.512480][T24042] 9pnet: Insufficient options for proto=fd [ 1701.773209][T24044] loop0: detected capacity change from 0 to 40427 [ 1701.800224][T11506] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1701.824859][T11506] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1701.842363][T24044] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1701.852417][T24044] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1701.855024][T11506] usb 9-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00 [ 1701.867623][T24044] F2FS-fs (loop0): invalid crc value [ 1701.899811][T24044] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1701.901623][T11506] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1701.955244][T11506] usb 9-1: config 0 descriptor?? [ 1701.990798][T24044] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1701.997721][T24044] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1702.493623][T11506] logitech-hidpp-device 0003:046D:C086.0008: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.8-1/input0 [ 1702.649662][T24062] loop5: detected capacity change from 0 to 512 [ 1702.743148][T24065] Restarting kernel threads ... done. [ 1702.790854][T24038] UDC core: couldn't find an available UDC or it's busy: -16 [ 1702.798156][T24038] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 1702.812368][ T8946] usb 9-1: USB disconnect, device number 2 [ 1702.863483][T24068] FAULT_INJECTION: forcing a failure. [ 1702.863483][T24068] name failslab, interval 1, probability 0, space 0, times 0 [ 1702.880512][T24068] CPU: 0 PID: 24068 Comm: syz.1.4777 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1702.881891][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4776: corrupted inode contents [ 1702.890331][T24068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1702.890348][T24068] Call Trace: [ 1702.890355][T24068] [ 1702.890363][T24068] dump_stack_lvl+0x151/0x1c0 [ 1702.890397][T24068] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1702.890421][T24068] ? __kasan_check_write+0x14/0x20 [ 1702.890445][T24068] ? mutex_unlock+0xb2/0x260 [ 1702.890467][T24068] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1702.890491][T24068] dump_stack+0x15/0x20 [ 1702.890512][T24068] should_fail+0x3c6/0x510 [ 1702.932531][T24062] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #3: comm syz.5.4776: mark_inode_dirty error [ 1702.933785][T24068] __should_failslab+0xa4/0xe0 [ 1702.933817][T24068] should_failslab+0x9/0x20 [ 1702.938812][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4776: corrupted inode contents [ 1702.944640][T24068] slab_pre_alloc_hook+0x37/0xd0 [ 1702.944676][T24068] __kmalloc+0x6d/0x270 [ 1702.944706][T24068] ? __se_sys_memfd_create+0xf2/0x3e0 [ 1702.944730][T24068] __se_sys_memfd_create+0xf2/0x3e0 [ 1702.944754][T24068] __x64_sys_memfd_create+0x5b/0x70 [ 1702.944777][T24068] x64_sys_call+0x871/0x9a0 [ 1702.944798][T24068] do_syscall_64+0x3b/0xb0 [ 1702.944817][T24068] ? clear_bhb_loop+0x35/0x90 [ 1702.944838][T24068] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1702.944859][T24068] RIP: 0033:0x7f67166b9719 [ 1702.944877][T24068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1702.944895][T24068] RSP: 002b:00007f6715331e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f [ 1702.944920][T24068] RAX: ffffffffffffffda RBX: 0000000000000452 RCX: 00007f67166b9719 [ 1702.944935][T24068] RDX: 00007f6715331ef0 RSI: 0000000000000000 RDI: 00007f671672cc0a [ 1702.944951][T24068] RBP: 0000000020000880 R08: 00007f6715331bb7 R09: 00007f6715331e40 [ 1702.944966][T24068] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0 [ 1702.944980][T24068] R13: 00007f6715331ef0 R14: 00007f6715331eb0 R15: 0000000020000240 [ 1702.945000][T24068] [ 1703.102147][T24062] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #3: comm syz.5.4776: mark_inode_dirty error [ 1703.115725][T24062] __quota_error: 20 callbacks suppressed [ 1703.115743][T24062] Quota error (device loop5): write_blk: dquota write failed [ 1703.129617][T24062] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1703.139522][T24062] EXT4-fs error (device loop5): ext4_acquire_dquot:6187: comm syz.5.4776: Failed to acquire dquot type 0 [ 1703.152146][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4776: corrupted inode contents [ 1703.166293][T24062] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #16: comm syz.5.4776: mark_inode_dirty error [ 1703.180197][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4776: corrupted inode contents [ 1703.192419][T24062] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm syz.5.4776: mark_inode_dirty error [ 1703.204091][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4776: corrupted inode contents [ 1703.216317][T24062] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 1703.224934][T24062] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4776: corrupted inode contents [ 1703.237153][T24062] EXT4-fs error (device loop5): ext4_truncate:4303: inode #16: comm syz.5.4776: mark_inode_dirty error [ 1703.248281][T24062] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 1703.260064][T24062] EXT4-fs (loop5): 1 truncate cleaned up [ 1703.265834][T24062] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1703.277136][T24062] ext4 filesystem being mounted at /417/file1 supports timestamps until 2038 (0x7fffffff) [ 1703.293656][T24079] 9pnet: Insufficient options for proto=fd [ 1703.380212][ T353] usb 1-1: new high-speed USB device number 127 using dummy_hcd [ 1703.433718][T24086] loop2: detected capacity change from 0 to 512 [ 1703.510467][T24086] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 1703.522686][T24086] EXT4-fs (loop2): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1703.600807][T24081] loop1: detected capacity change from 0 to 40427 [ 1703.622874][T24086] 9pnet: Insufficient options for proto=fd [ 1703.630214][ T349] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 1703.661542][T24081] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1703.679356][T24081] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1703.701051][T24081] F2FS-fs (loop1): invalid crc value [ 1703.731763][T24081] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1703.750283][ T353] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1703.770315][ T353] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1703.790191][ T353] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1703.796649][ T353] usb 1-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 1703.820147][ T353] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1703.842825][ T353] usb 1-1: config 0 descriptor?? [ 1703.871588][T24081] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1703.878469][T24081] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1703.884161][T24090] loop5: detected capacity change from 0 to 40427 [ 1703.912203][T24099] Restarting kernel threads ... done. [ 1704.002089][T24090] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1704.013057][T24090] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1704.031964][T24090] F2FS-fs (loop5): invalid crc value [ 1704.281233][T24090] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1704.372054][T24090] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1704.383052][T24090] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1704.484875][ T353] hid-multitouch 0003:1FD2:6007.0009: collection stack underflow [ 1704.500639][ T349] usb 9-1: New USB device found, idVendor=0421, idProduct=0128, bcdDevice=a6.84 [ 1704.509520][ T349] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1704.527819][ T353] hid-multitouch 0003:1FD2:6007.0009: item 0 4 0 12 parsing failed [ 1704.842695][ T353] hid-multitouch: probe of 0003:1FD2:6007.0009 failed with error -22 [ 1704.851338][ T349] usb 9-1: Product: syz [ 1704.855332][ T349] usb 9-1: Manufacturer: syz [ 1704.859755][ T349] usb 9-1: SerialNumber: syz [ 1704.865424][ T353] usb 1-1: USB disconnect, device number 127 [ 1704.873580][ T349] usb 9-1: config 0 descriptor?? [ 1704.911156][ T349] rndis_host: probe of 9-1:0.0 failed with error -22 [ 1704.918007][ T349] cdc_acm 9-1:0.0: Control and data interfaces are not separated! [ 1704.939371][ T349] cdc_acm 9-1:0.0: This needs exactly 3 endpoints [ 1704.954754][T24112] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4787'. [ 1704.963585][ T349] cdc_acm: probe of 9-1:0.0 failed with error -22 [ 1705.124409][T24084] futex_wake_op: syz.8.4782 tries to shift op by 32; fix this program [ 1705.133825][T24120] 9pnet: Insufficient options for proto=fd [ 1705.150414][T22330] usb 9-1: USB disconnect, device number 3 [ 1705.170505][T24122] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4792'. [ 1705.348592][T24115] loop1: detected capacity change from 0 to 40427 [ 1705.351543][T24128] loop5: detected capacity change from 0 to 512 [ 1705.396339][T24115] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1705.531053][T24115] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1705.542414][T24124] Restarting kernel threads ... done. [ 1705.568699][T24115] F2FS-fs (loop1): invalid crc value [ 1705.595008][T24115] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1705.597165][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4794: corrupted inode contents [ 1705.618908][T24128] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #3: comm syz.5.4794: mark_inode_dirty error [ 1705.632574][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4794: corrupted inode contents [ 1705.644807][T24115] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1705.645161][T24128] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #3: comm syz.5.4794: mark_inode_dirty error [ 1705.663645][T24115] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1705.664720][T24128] Quota error (device loop5): write_blk: dquota write failed [ 1705.679058][T24128] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1705.690222][T24128] EXT4-fs error (device loop5): ext4_acquire_dquot:6187: comm syz.5.4794: Failed to acquire dquot type 0 [ 1705.703933][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4794: corrupted inode contents [ 1705.793040][T24128] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #16: comm syz.5.4794: mark_inode_dirty error [ 1705.834891][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4794: corrupted inode contents [ 1706.610625][T24128] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm syz.5.4794: mark_inode_dirty error [ 1706.640955][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4794: corrupted inode contents [ 1706.644681][T24149] loop0: detected capacity change from 0 to 2048 [ 1706.669824][T24128] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 1706.689390][T24128] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4794: corrupted inode contents [ 1706.711565][T24128] EXT4-fs error (device loop5): ext4_truncate:4303: inode #16: comm syz.5.4794: mark_inode_dirty error [ 1706.723204][T24128] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 1706.733173][T24128] EXT4-fs (loop5): 1 truncate cleaned up [ 1706.738650][T24128] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1706.749995][T24128] ext4 filesystem being mounted at /422/file1 supports timestamps until 2038 (0x7fffffff) [ 1706.760784][T24149] EXT4-fs (loop0): Ignoring removed bh option [ 1706.799874][T24149] EXT4-fs (loop0): mounted filesystem without journal. Opts: discard,bh,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none. [ 1706.831375][T24149] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 1706.850545][T24149] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 1706.880500][T24149] EXT4-fs (loop0): This should not happen!! Data will be lost [ 1706.880500][T24149] [ 1706.889981][T24149] EXT4-fs (loop0): Total free blocks count 0 [ 1706.982422][T24160] Restarting kernel threads ... done. [ 1707.017393][T24149] EXT4-fs (loop0): Free/Dirty block details [ 1707.075086][T24149] EXT4-fs (loop0): free_blocks=2415919104 [ 1707.091499][T24149] EXT4-fs (loop0): dirty_blocks=32 [ 1707.108237][T24149] EXT4-fs (loop0): Block reservation details [ 1707.150334][T24149] EXT4-fs (loop0): i_reserved_data_blocks=2 [ 1707.175418][T24159] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28 [ 1707.200431][T24159] EXT4-fs (loop0): This should not happen!! Data will be lost [ 1707.200431][T24159] [ 1707.430141][ T353] usb 6-1: new high-speed USB device number 48 using dummy_hcd [ 1707.690164][ T353] usb 6-1: Using ep0 maxpacket: 8 [ 1707.768231][T24172] 9pnet: Insufficient options for proto=fd [ 1707.787580][T24174] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4804'. [ 1707.814224][T24177] loop8: detected capacity change from 0 to 512 [ 1707.817003][T24178] loop2: detected capacity change from 0 to 512 [ 1707.842805][T24178] EXT4-fs (loop2): 1 orphan inode deleted [ 1707.848446][T24178] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1707.859659][T24178] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038 (0x7fffffff) [ 1707.903409][ T30] audit: type=1326 audit(1731349244.397:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24176 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe3b25f719 code=0x7ffc0000 [ 1707.927379][ T30] audit: type=1326 audit(1731349244.397:4247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24176 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fbe3b25f719 code=0x7ffc0000 [ 1707.952798][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4806: corrupted inode contents [ 1707.965021][T24177] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #3: comm syz.8.4806: mark_inode_dirty error [ 1707.976710][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4806: corrupted inode contents [ 1707.976814][ T30] audit: type=1326 audit(1731349244.397:4248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24176 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe3b25f719 code=0x7ffc0000 [ 1708.008301][T24177] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #3: comm syz.8.4806: mark_inode_dirty error [ 1708.023494][T24177] Quota error (device loop8): write_blk: dquota write failed [ 1708.093740][T24192] Restarting kernel threads ... done. [ 1708.111118][T24177] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1708.124114][T24177] EXT4-fs error (device loop8): ext4_acquire_dquot:6187: comm syz.8.4806: Failed to acquire dquot type 0 [ 1708.140063][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4806: corrupted inode contents [ 1708.155867][T24177] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #16: comm syz.8.4806: mark_inode_dirty error [ 1708.594705][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4806: corrupted inode contents [ 1708.609901][T24177] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #16: comm syz.8.4806: mark_inode_dirty error [ 1708.626159][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4806: corrupted inode contents [ 1708.632272][ T353] usb 6-1: New USB device found, idVendor=05d1, idProduct=9003, bcdDevice= 2.00 [ 1708.646778][ T353] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1708.654647][ T353] usb 6-1: Product: syz [ 1708.658609][ T353] usb 6-1: Manufacturer: syz [ 1708.663342][T24177] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem [ 1708.671731][ T353] usb 6-1: SerialNumber: syz [ 1708.676417][T24177] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4806: corrupted inode contents [ 1708.694513][ T353] usb 6-1: config 0 descriptor?? [ 1708.699645][T24177] EXT4-fs error (device loop8): ext4_truncate:4303: inode #16: comm syz.8.4806: mark_inode_dirty error [ 1708.711099][T24177] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem [ 1708.731051][ T353] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected [ 1708.739104][T24177] EXT4-fs (loop8): 1 truncate cleaned up [ 1708.744675][T24177] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1708.751173][ T353] usb 6-1: Detected FT8U232AM [ 1708.758110][T24177] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038 (0x7fffffff) [ 1708.895989][ T353] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1708.923638][T24201] Restarting kernel threads ... done. [ 1709.155678][ T353] usb 6-1: USB disconnect, device number 48 [ 1709.162088][ T353] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1709.171545][ T353] ftdi_sio 6-1:0.0: device disconnected [ 1709.180736][T22330] usb 3-1: new high-speed USB device number 120 using dummy_hcd [ 1709.247997][T24205] loop8: detected capacity change from 0 to 256 [ 1709.420197][T22330] usb 3-1: Using ep0 maxpacket: 32 [ 1709.440409][ T1302] usb 2-1: new high-speed USB device number 123 using dummy_hcd [ 1709.482626][T24205] loop8: detected capacity change from 0 to 40427 [ 1709.524647][T24205] F2FS-fs (loop8): fault_injection options not supported [ 1709.534429][T24205] F2FS-fs (loop8): fault_type options not supported [ 1709.540268][T22330] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1709.543954][T24205] F2FS-fs (loop8): invalid crc value [ 1709.552594][T24207] loop5: detected capacity change from 0 to 128 [ 1709.557306][T24205] F2FS-fs (loop8): Mismatch valid blocks 0 vs. 1 [ 1709.562436][T22330] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1709.569828][T24205] F2FS-fs (loop8): Failed to initialize F2FS segment manager (-117) [ 1709.587939][T24207] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 1709.594991][T24207] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option [ 1709.602873][T24207] EXT4-fs error (device loop5): ext4_fill_super:4831: inode #2: comm syz.5.4814: iget: checksum invalid [ 1709.614590][T24207] EXT4-fs (loop5): get root inode failed [ 1709.620053][T24207] EXT4-fs (loop5): mount failed [ 1709.700177][ T1302] usb 2-1: Using ep0 maxpacket: 32 [ 1709.732349][T24215] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4817'. [ 1709.750412][T22330] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1709.764538][T22330] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1709.772674][T22330] usb 3-1: Product: syz [ 1709.777110][T22330] usb 3-1: Manufacturer: syz [ 1709.781638][T22330] usb 3-1: SerialNumber: syz [ 1709.839481][T24224] loop5: detected capacity change from 0 to 256 [ 1709.846062][ T1302] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1709.863346][ T1302] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1709.880222][T24231] Restarting kernel threads ... done. [ 1709.945754][T24228] loop8: detected capacity change from 0 to 256 [ 1709.967803][T24228] exfat: Deprecated parameter 'utf8' [ 1709.974631][T24228] exfat: Deprecated parameter 'namecase' [ 1709.981115][T24228] exfat: Deprecated parameter 'namecase' [ 1709.986670][T24228] exfat: Deprecated parameter 'utf8' [ 1710.003559][T24228] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d) [ 1710.079253][T24199] loop2: detected capacity change from 0 to 512 [ 1710.100728][T24199] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 1710.110496][ T1302] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1710.120002][T24199] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1710.129377][T24235] loop8: detected capacity change from 0 to 512 [ 1710.135779][ T1302] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1710.144379][ T1302] usb 2-1: Product: syz [ 1710.149253][T24199] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1710.157173][ T1302] usb 2-1: Manufacturer: syz [ 1710.161641][T24199] System zones: 1-12 [ 1710.165738][ T1302] usb 2-1: SerialNumber: syz [ 1710.170842][T24199] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2219: inode #15: comm syz.2.4812: corrupted in-inode xattr [ 1710.184552][T24199] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.4812: couldn't read orphan inode 15 (err -117) [ 1710.196779][T24199] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1710.222903][T24199] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4812: Unrecognised inode hash code 4 [ 1710.234394][T24199] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4812: Corrupt directory, running e2fsck is recommended [ 1710.249786][T24199] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4812: Unrecognised inode hash code 4 [ 1710.261992][T24199] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4812: Corrupt directory, running e2fsck is recommended [ 1710.269068][T24224] loop5: detected capacity change from 0 to 40427 [ 1710.283358][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4823: corrupted inode contents [ 1710.290739][T24199] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4812: Unrecognised inode hash code 4 [ 1710.306938][T24199] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4812: Corrupt directory, running e2fsck is recommended [ 1710.321165][T24235] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #3: comm syz.8.4823: mark_inode_dirty error [ 1710.333137][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.4823: corrupted inode contents [ 1710.347738][T24235] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #3: comm syz.8.4823: mark_inode_dirty error [ 1710.359687][T24235] Quota error (device loop8): write_blk: dquota write failed [ 1710.359798][T24224] F2FS-fs (loop5): fault_injection options not supported [ 1710.366996][T24235] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1710.367033][T24235] EXT4-fs error (device loop8): ext4_acquire_dquot:6187: comm syz.8.4823: Failed to acquire dquot type 0 [ 1710.368216][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4823: corrupted inode contents [ 1710.374415][T24224] F2FS-fs (loop5): fault_type options not supported [ 1710.385088][T24235] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #16: comm syz.8.4823: mark_inode_dirty error [ 1710.397347][T24224] F2FS-fs (loop5): invalid crc value [ 1710.407704][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4823: corrupted inode contents [ 1710.424444][T22330] usb 3-1: USB disconnect, device number 120 [ 1710.431237][ T468] udevd[468]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1710.442662][T24235] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #16: comm syz.8.4823: mark_inode_dirty error [ 1710.457245][T24224] F2FS-fs (loop5): Mismatch valid blocks 0 vs. 1 [ 1710.467108][T24196] loop1: detected capacity change from 0 to 512 [ 1710.484566][T24224] F2FS-fs (loop5): Failed to initialize F2FS segment manager (-117) [ 1710.486470][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4823: corrupted inode contents [ 1710.506984][T24235] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem [ 1710.515580][T24235] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #16: comm syz.8.4823: corrupted inode contents [ 1710.527827][T24235] EXT4-fs error (device loop8): ext4_truncate:4303: inode #16: comm syz.8.4823: mark_inode_dirty error [ 1710.539135][T24235] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem [ 1710.548328][T24196] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 1710.549121][T24235] EXT4-fs (loop8): 1 truncate cleaned up [ 1710.560723][T24196] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1710.571029][T24235] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1710.583232][T24235] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038 (0x7fffffff) [ 1710.587268][T24196] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1710.613297][T24196] System zones: 1-12 [ 1710.627199][T24196] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2219: inode #15: comm syz.1.4811: corrupted in-inode xattr [ 1710.668231][T24196] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.4811: couldn't read orphan inode 15 (err -117) [ 1710.681645][T24196] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1710.727468][T24196] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4811: Unrecognised inode hash code 4 [ 1710.739311][T24196] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4811: Corrupt directory, running e2fsck is recommended [ 1710.764786][T24196] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4811: Unrecognised inode hash code 4 [ 1710.776126][T24196] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4811: Corrupt directory, running e2fsck is recommended [ 1710.789723][T24196] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.4811: Unrecognised inode hash code 4 [ 1710.824504][T24196] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.4811: Corrupt directory, running e2fsck is recommended [ 1710.853130][T24255] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4828'. [ 1710.866765][T24246] Restarting kernel threads ... done. [ 1710.886749][T24257] netlink: 'syz.5.4829': attribute type 3 has an invalid length. [ 1711.388401][ T1302] usb 2-1: USB disconnect, device number 123 [ 1711.413212][ T1121] udevd[1121]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 1711.446433][T24271] loop2: detected capacity change from 0 to 512 [ 1711.492083][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #3: comm syz.2.4836: corrupted inode contents [ 1711.504452][T24271] EXT4-fs error (device loop2): ext4_dirty_inode:6038: inode #3: comm syz.2.4836: mark_inode_dirty error [ 1711.516679][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #3: comm syz.2.4836: corrupted inode contents [ 1711.533955][T24271] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.4836: mark_inode_dirty error [ 1711.545654][T24271] Quota error (device loop2): write_blk: dquota write failed [ 1711.553473][T24271] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 1711.564154][T24271] EXT4-fs error (device loop2): ext4_acquire_dquot:6187: comm syz.2.4836: Failed to acquire dquot type 0 [ 1711.581486][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4836: corrupted inode contents [ 1711.583689][T24278] loop0: detected capacity change from 0 to 512 [ 1711.593859][T24271] EXT4-fs error (device loop2): ext4_dirty_inode:6038: inode #16: comm syz.2.4836: mark_inode_dirty error [ 1711.616774][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4836: corrupted inode contents [ 1711.631023][T24271] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.4836: mark_inode_dirty error [ 1711.643940][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4836: corrupted inode contents [ 1711.666724][T24279] Restarting kernel threads ... done. [ 1711.682923][T24271] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 1711.692971][T24271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4836: corrupted inode contents [ 1711.707060][T24271] EXT4-fs error (device loop2): ext4_truncate:4303: inode #16: comm syz.2.4836: mark_inode_dirty error [ 1711.796082][T24271] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 1711.819120][T24271] EXT4-fs (loop2): 1 truncate cleaned up [ 1711.824848][T24271] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1711.826552][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4837: corrupted inode contents [ 1711.836307][T24271] ext4 filesystem being mounted at /363/file1 supports timestamps until 2038 (0x7fffffff) [ 1711.858491][T24278] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #3: comm syz.0.4837: mark_inode_dirty error [ 1711.870687][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4837: corrupted inode contents [ 1711.882932][T24278] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.4837: mark_inode_dirty error [ 1711.895851][ T349] usb 6-1: new high-speed USB device number 49 using dummy_hcd [ 1711.915831][T24278] Quota error (device loop0): write_blk: dquota write failed [ 1711.923520][T24278] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1711.934183][T24278] EXT4-fs error (device loop0): ext4_acquire_dquot:6187: comm syz.0.4837: Failed to acquire dquot type 0 [ 1711.947903][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4837: corrupted inode contents [ 1711.961051][T24278] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #16: comm syz.0.4837: mark_inode_dirty error [ 1711.973138][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4837: corrupted inode contents [ 1711.985323][T24278] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.4837: mark_inode_dirty error [ 1711.996854][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4837: corrupted inode contents [ 1712.008895][T24278] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 1712.017871][T24278] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4837: corrupted inode contents [ 1712.030264][T24278] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.4837: mark_inode_dirty error [ 1712.046722][T24278] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 1712.058008][T24278] EXT4-fs (loop0): 1 truncate cleaned up [ 1712.064227][T24278] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1712.075954][T24278] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038 (0x7fffffff) [ 1712.475302][T24296] overlayfs: failed to resolve './file0': -2 [ 1712.513026][T24297] Restarting kernel threads ... done. [ 1712.570391][ T349] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1712.581446][ T349] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1712.591663][ T349] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00 [ 1712.600773][ T349] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1712.613388][ T349] usb 6-1: config 0 descriptor?? [ 1712.927578][T24301] loop0: detected capacity change from 0 to 512 [ 1712.967832][T24308] FAULT_INJECTION: forcing a failure. [ 1712.967832][T24308] name failslab, interval 1, probability 0, space 0, times 0 [ 1712.981448][T24308] CPU: 0 PID: 24308 Comm: syz.1.4845 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1712.991256][T24308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1713.001147][T24308] Call Trace: [ 1713.004272][T24308] [ 1713.007051][T24308] dump_stack_lvl+0x151/0x1c0 [ 1713.011563][T24308] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1713.017034][T24308] ? vfs_write+0x94d/0x1110 [ 1713.021373][T24308] dump_stack+0x15/0x20 [ 1713.025364][T24308] should_fail+0x3c6/0x510 [ 1713.029617][T24308] __should_failslab+0xa4/0xe0 [ 1713.034220][T24308] should_failslab+0x9/0x20 [ 1713.038554][T24308] slab_pre_alloc_hook+0x37/0xd0 [ 1713.043332][T24308] ? __se_sys_mount+0x9b/0x3b0 [ 1713.047932][T24308] __kmalloc_track_caller+0x6c/0x260 [ 1713.053049][T24308] ? __se_sys_mount+0x9b/0x3b0 [ 1713.057652][T24308] strndup_user+0x76/0x150 [ 1713.061905][T24308] __se_sys_mount+0x9b/0x3b0 [ 1713.066330][T24308] ? __x64_sys_mount+0xd0/0xd0 [ 1713.070932][T24308] ? debug_smp_processor_id+0x17/0x20 [ 1713.076140][T24308] __x64_sys_mount+0xbf/0xd0 [ 1713.080563][T24308] x64_sys_call+0x49d/0x9a0 [ 1713.084908][T24308] do_syscall_64+0x3b/0xb0 [ 1713.089156][T24308] ? clear_bhb_loop+0x35/0x90 [ 1713.093670][T24308] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1713.099398][T24308] RIP: 0033:0x7f67166b9719 [ 1713.103654][T24308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1713.123093][T24308] RSP: 002b:00007f6715332038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1713.131337][T24308] RAX: ffffffffffffffda RBX: 00007f6716870f80 RCX: 00007f67166b9719 [ 1713.139153][T24308] RDX: 0000000020000380 RSI: 00000000200000c0 RDI: 0000000000000000 [ 1713.146964][T24308] RBP: 00007f6715332090 R08: 0000000020000400 R09: 0000000000000000 [ 1713.154774][T24308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1713.162585][T24308] R13: 0000000000000000 R14: 00007f6716870f80 R15: 00007ffe9ea0b868 [ 1713.170404][T24308] [ 1713.194094][T24301] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 1713.203785][ T349] appleir 0003:05AC:8243.000A: report_id 0 is invalid [ 1713.213137][ T349] appleir 0003:05AC:8243.000A: item 0 0 1 8 parsing failed [ 1713.233191][ T349] appleir 0003:05AC:8243.000A: parse failed [ 1713.259824][ T349] appleir: probe of 0003:05AC:8243.000A failed with error -22 [ 1713.406499][ T349] usb 6-1: USB disconnect, device number 49 [ 1713.414129][T24315] Restarting kernel threads ... done. [ 1713.457637][T24308] loop1: detected capacity change from 0 to 512 [ 1713.553768][T24308] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 1714.192790][T24331] loop1: detected capacity change from 0 to 256 [ 1714.460256][ T349] usb 3-1: new high-speed USB device number 121 using dummy_hcd [ 1714.479734][T24329] loop5: detected capacity change from 0 to 40427 [ 1714.579761][T24329] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1714.683116][T24329] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1714.731822][T24329] F2FS-fs (loop5): invalid crc value [ 1714.755931][T24329] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1714.771423][ T349] usb 3-1: Using ep0 maxpacket: 32 [ 1714.793954][T24331] loop1: detected capacity change from 0 to 40427 [ 1714.807186][T24329] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1714.814472][T24329] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1714.822119][T24331] F2FS-fs (loop1): fault_injection options not supported [ 1714.846566][T24331] F2FS-fs (loop1): fault_type options not supported [ 1714.890629][ T349] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1714.901908][T24331] F2FS-fs (loop1): invalid crc value [ 1714.917163][ T349] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1714.945158][T24331] F2FS-fs (loop1): Mismatch valid blocks 0 vs. 1 [ 1714.952493][T24331] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117) [ 1715.430609][ T349] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1715.439501][ T349] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1715.478397][ T349] usb 3-1: Product: syz [ 1715.484952][ T349] usb 3-1: Manufacturer: syz [ 1715.489377][ T349] usb 3-1: SerialNumber: syz [ 1715.674302][T24354] loop0: detected capacity change from 0 to 512 [ 1715.744211][T24327] loop2: detected capacity change from 0 to 512 [ 1715.767836][T24358] Restarting kernel threads ... done. [ 1715.770526][T24327] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 1715.800404][T24327] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1715.801101][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4859: corrupted inode contents [ 1715.835593][T24327] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002] [ 1715.873090][T24327] System zones: 1-12 [ 1715.902963][T24327] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2219: inode #15: comm syz.2.4851: corrupted in-inode xattr [ 1715.920463][T24354] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #3: comm syz.0.4859: mark_inode_dirty error [ 1715.967707][T24327] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.4851: couldn't read orphan inode 15 (err -117) [ 1715.982145][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4859: corrupted inode contents [ 1716.024448][T24354] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.4859: mark_inode_dirty error [ 1716.036014][T24327] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none. [ 1716.036812][T24354] Quota error (device loop0): write_blk: dquota write failed [ 1716.068354][T24327] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4851: Unrecognised inode hash code 4 [ 1716.080019][T24327] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4851: Corrupt directory, running e2fsck is recommended [ 1716.097296][T24327] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4851: Unrecognised inode hash code 4 [ 1716.108773][T24327] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4851: Corrupt directory, running e2fsck is recommended [ 1716.121975][T24354] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1716.132390][T24327] EXT4-fs warning (device loop2): dx_probe:833: inode #2: comm syz.2.4851: Unrecognised inode hash code 4 [ 1716.143955][T24354] EXT4-fs error (device loop0): ext4_acquire_dquot:6187: comm syz.0.4859: Failed to acquire dquot type 0 [ 1716.158616][T24327] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4851: Corrupt directory, running e2fsck is recommended [ 1716.174264][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4859: corrupted inode contents [ 1716.199772][T24354] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #16: comm syz.0.4859: mark_inode_dirty error [ 1716.228048][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4859: corrupted inode contents [ 1716.247418][T24354] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.4859: mark_inode_dirty error [ 1716.264719][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4859: corrupted inode contents [ 1716.283068][T24354] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 1716.297066][T24354] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4859: corrupted inode contents [ 1716.319243][ T349] usb 3-1: USB disconnect, device number 121 [ 1716.352555][T24354] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.4859: mark_inode_dirty error [ 1716.378384][T24354] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 1716.395230][T24354] EXT4-fs (loop0): 1 truncate cleaned up [ 1716.405153][T24354] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1716.423501][T24354] ext4 filesystem being mounted at /344/file1 supports timestamps until 2038 (0x7fffffff) [ 1716.558782][T24374] loop5: detected capacity change from 0 to 512 [ 1716.648813][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4864: corrupted inode contents [ 1716.673383][T24374] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #3: comm syz.5.4864: mark_inode_dirty error [ 1716.698402][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #3: comm syz.5.4864: corrupted inode contents [ 1716.712873][T24374] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #3: comm syz.5.4864: mark_inode_dirty error [ 1716.727730][T24374] Quota error (device loop5): write_blk: dquota write failed [ 1716.736596][T24374] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1716.746600][T24374] EXT4-fs error (device loop5): ext4_acquire_dquot:6187: comm syz.5.4864: Failed to acquire dquot type 0 [ 1716.769242][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4864: corrupted inode contents [ 1716.838592][T24381] loop0: detected capacity change from 0 to 512 [ 1716.855237][T24374] EXT4-fs error (device loop5): ext4_dirty_inode:6038: inode #16: comm syz.5.4864: mark_inode_dirty error [ 1716.881167][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4864: corrupted inode contents [ 1716.898179][T24374] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm syz.5.4864: mark_inode_dirty error [ 1716.917239][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4864: corrupted inode contents [ 1716.938466][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4865: corrupted inode contents [ 1716.941840][T24374] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 1716.961666][T24381] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #3: comm syz.0.4865: mark_inode_dirty error [ 1716.964128][T24374] EXT4-fs error (device loop5): ext4_do_update_inode:5205: inode #16: comm syz.5.4864: corrupted inode contents [ 1716.985454][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4865: corrupted inode contents [ 1716.997719][T24374] EXT4-fs error (device loop5): ext4_truncate:4303: inode #16: comm syz.5.4864: mark_inode_dirty error [ 1717.009185][T24381] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.4865: mark_inode_dirty error [ 1717.021005][T24381] Quota error (device loop0): write_blk: dquota write failed [ 1717.028245][T24381] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1717.038027][T24381] EXT4-fs error (device loop0): ext4_acquire_dquot:6187: comm syz.0.4865: Failed to acquire dquot type 0 [ 1717.041779][T24374] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 1717.050005][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4865: corrupted inode contents [ 1717.069722][T24381] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #16: comm syz.0.4865: mark_inode_dirty error [ 1717.081348][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4865: corrupted inode contents [ 1717.093220][T24381] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.4865: mark_inode_dirty error [ 1717.104961][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4865: corrupted inode contents [ 1717.116813][T24374] EXT4-fs (loop5): 1 truncate cleaned up [ 1717.122625][T24374] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1717.133648][T24374] ext4 filesystem being mounted at /442/file1 supports timestamps until 2038 (0x7fffffff) [ 1717.143632][T24381] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 1717.160451][T24381] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4865: corrupted inode contents [ 1717.172921][T24381] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.4865: mark_inode_dirty error [ 1717.196206][T24381] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 1717.241110][T24381] EXT4-fs (loop0): 1 truncate cleaned up [ 1717.246706][T24381] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1717.260142][ T8946] usb 2-1: new high-speed USB device number 124 using dummy_hcd [ 1717.273403][T24381] ext4 filesystem being mounted at /345/file1 supports timestamps until 2038 (0x7fffffff) [ 1717.313874][T24396] loop2: detected capacity change from 0 to 512 [ 1717.894913][T24396] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 1717.902599][T24396] EXT4-fs (loop2): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1717.922937][T24396] 9pnet: Insufficient options for proto=fd [ 1717.930369][ T8946] usb 2-1: Using ep0 maxpacket: 32 [ 1718.050469][ T8946] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1718.069922][ T8946] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1718.132207][ T8946] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1718.171486][ T8946] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1718.205428][ T8946] usb 2-1: config 0 descriptor?? [ 1718.236135][T24410] Restarting kernel threads ... done. [ 1718.261117][ T8946] hub 2-1:0.0: USB hub found [ 1718.470557][ T8946] hub 2-1:0.0: 16 ports detected [ 1718.490212][ T8946] hub 2-1:0.0: insufficient power available to use all downstream ports [ 1718.639613][T24407] loop5: detected capacity change from 0 to 40427 [ 1718.680603][ T8946] hub 2-1:0.0: hub_hub_status failed (err = -71) [ 1718.686832][ T8946] hub 2-1:0.0: config failed, can't get hub status (err -71) [ 1718.793901][T24407] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1718.810572][ T8946] usbhid 2-1:0.0: can't add hid device: -71 [ 1718.827853][ T8946] usbhid: probe of 2-1:0.0 failed with error -71 [ 1718.855337][T24407] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1718.932849][T24407] F2FS-fs (loop5): invalid crc value [ 1718.948568][T24407] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 1718.961090][ T8946] usb 2-1: USB disconnect, device number 124 [ 1719.013609][T24407] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1719.021579][T24407] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1719.210747][T24422] loop1: detected capacity change from 0 to 512 [ 1720.539997][T24426] Restarting kernel threads ... done. [ 1720.593876][T24433] loop0: detected capacity change from 0 to 256 [ 1720.597933][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4876: corrupted inode contents [ 1720.614640][T24422] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #3: comm syz.1.4876: mark_inode_dirty error [ 1720.626742][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4876: corrupted inode contents [ 1720.639442][T24422] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz.1.4876: mark_inode_dirty error [ 1720.750537][T24422] Quota error (device loop1): write_blk: dquota write failed [ 1720.768177][T24422] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1720.800929][T24422] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.4876: Failed to acquire dquot type 0 [ 1720.870863][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4876: corrupted inode contents [ 1720.900424][T24422] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #16: comm syz.1.4876: mark_inode_dirty error [ 1720.920413][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4876: corrupted inode contents [ 1720.950527][T24422] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.4876: mark_inode_dirty error [ 1720.980370][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4876: corrupted inode contents [ 1721.005534][T24422] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 1721.024646][T24422] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4876: corrupted inode contents [ 1721.042316][T24422] EXT4-fs error (device loop1): ext4_truncate:4303: inode #16: comm syz.1.4876: mark_inode_dirty error [ 1721.056228][T24422] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 1721.065726][T24422] EXT4-fs (loop1): 1 truncate cleaned up [ 1721.071626][T24422] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1721.077444][T24445] loop8: detected capacity change from 0 to 512 [ 1721.082908][T24422] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038 (0x7fffffff) [ 1721.131401][T24445] EXT4-fs (loop8): Ignoring removed mblk_io_submit option [ 1721.143927][T24445] EXT4-fs (loop8): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1721.234644][T24433] loop0: detected capacity change from 0 to 40427 [ 1721.681020][T24433] F2FS-fs (loop0): fault_injection options not supported [ 1721.710455][T24433] F2FS-fs (loop0): fault_type options not supported [ 1721.782512][T24433] F2FS-fs (loop0): invalid crc value [ 1721.794337][T24433] F2FS-fs (loop0): Mismatch valid blocks 0 vs. 1 [ 1721.814543][T24433] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-117) [ 1721.823235][T24456] loop1: detected capacity change from 0 to 512 [ 1722.129108][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4884: corrupted inode contents [ 1722.193428][T24456] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #3: comm syz.1.4884: mark_inode_dirty error [ 1722.215208][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #3: comm syz.1.4884: corrupted inode contents [ 1722.235446][T24456] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz.1.4884: mark_inode_dirty error [ 1722.250871][T24456] Quota error (device loop1): write_blk: dquota write failed [ 1722.259662][T24456] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1722.280519][T24456] EXT4-fs error (device loop1): ext4_acquire_dquot:6187: comm syz.1.4884: Failed to acquire dquot type 0 [ 1722.292811][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4884: corrupted inode contents [ 1722.305087][T24456] EXT4-fs error (device loop1): ext4_dirty_inode:6038: inode #16: comm syz.1.4884: mark_inode_dirty error [ 1722.317363][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4884: corrupted inode contents [ 1722.329667][T24456] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.4884: mark_inode_dirty error [ 1722.341860][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4884: corrupted inode contents [ 1722.354116][T24456] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 1722.369738][T24456] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #16: comm syz.1.4884: corrupted inode contents [ 1722.392341][T24456] EXT4-fs error (device loop1): ext4_truncate:4303: inode #16: comm syz.1.4884: mark_inode_dirty error [ 1722.404550][T24456] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 1722.495616][T24456] EXT4-fs (loop1): 1 truncate cleaned up [ 1722.501371][T24456] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1722.512644][T24456] ext4 filesystem being mounted at /376/file1 supports timestamps until 2038 (0x7fffffff) [ 1723.382856][T24480] loop2: detected capacity change from 0 to 512 [ 1723.503863][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #3: comm syz.2.4890: corrupted inode contents [ 1723.515861][T24480] EXT4-fs error (device loop2): ext4_dirty_inode:6038: inode #3: comm syz.2.4890: mark_inode_dirty error [ 1723.528573][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #3: comm syz.2.4890: corrupted inode contents [ 1723.541450][T24480] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.4890: mark_inode_dirty error [ 1724.576499][T24490] Restarting kernel threads ... done. [ 1724.610972][T24480] Quota error (device loop2): write_blk: dquota write failed [ 1724.650472][T24480] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 1724.663313][T24480] EXT4-fs error (device loop2): ext4_acquire_dquot:6187: comm syz.2.4890: Failed to acquire dquot type 0 [ 1724.671702][T24493] loop8: detected capacity change from 0 to 512 [ 1724.682065][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4890: corrupted inode contents [ 1724.683175][T24495] loop0: detected capacity change from 0 to 512 [ 1724.694748][T24480] EXT4-fs error (device loop2): ext4_dirty_inode:6038: inode #16: comm syz.2.4890: mark_inode_dirty error [ 1724.741394][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4890: corrupted inode contents [ 1724.753034][T24497] loop5: detected capacity change from 0 to 512 [ 1724.762593][T24480] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.4890: mark_inode_dirty error [ 1724.774498][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4890: corrupted inode contents [ 1724.787176][T24497] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 1724.787569][T24480] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 1724.803377][T24497] EXT4-fs (loop5): Unrecognized mount option "mask=^MAY_APPEND" or missing value [ 1724.813415][T24480] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #16: comm syz.2.4890: corrupted inode contents [ 1724.813940][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4895: corrupted inode contents [ 1724.837498][T24480] EXT4-fs error (device loop2): ext4_truncate:4303: inode #16: comm syz.2.4890: mark_inode_dirty error [ 1724.851201][T24480] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 1724.862305][T24493] ================================================================== [ 1724.870200][T24493] BUG: KASAN: slab-out-of-bounds in __ext4_iget+0x2ee/0x3ef0 [ 1724.877399][T24493] Read of size 8 at addr ffff88814145fef8 by task syz.8.4894/24493 [ 1724.885123][T24493] [ 1724.887291][T24493] CPU: 0 PID: 24493 Comm: syz.8.4894 Not tainted 5.15.167-syzkaller-00002-g3bfe08931bff #0 [ 1724.897102][T24493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1724.906998][T24493] Call Trace: [ 1724.910120][T24493] [ 1724.912900][T24493] dump_stack_lvl+0x151/0x1c0 [ 1724.917411][T24493] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1724.922885][T24493] ? panic+0x760/0x760 [ 1724.926785][T24493] ? __kasan_check_write+0x14/0x20 [ 1724.931730][T24493] print_address_description+0x87/0x3b0 [ 1724.937110][T24493] ? __se_sys_mount+0x2c4/0x3b0 [ 1724.941806][T24493] ? __x64_sys_mount+0xbf/0xd0 [ 1724.946404][T24493] kasan_report+0x179/0x1c0 [ 1724.950740][T24493] ? __ext4_iget+0x2ee/0x3ef0 [ 1724.955250][T24493] ? __ext4_iget+0x2ee/0x3ef0 [ 1724.959765][T24493] __asan_report_load8_noabort+0x14/0x20 [ 1724.965233][T24493] __ext4_iget+0x2ee/0x3ef0 [ 1724.969574][T24493] ? xas_nomem+0x19a/0x1d0 [ 1724.973829][T24493] ? ida_alloc_range+0x9fd/0xa80 [ 1724.978602][T24493] ? __kasan_kmalloc+0x9/0x10 [ 1724.983115][T24493] ? ext4_get_projid+0x140/0x140 [ 1724.987885][T24493] ? __kasan_check_write+0x14/0x20 [ 1724.992836][T24493] ? _raw_write_lock+0xa4/0x170 [ 1724.997527][T24493] ? __proc_create+0x65a/0xa00 [ 1725.002129][T24493] ? ext4_init_orphan_info+0x161/0x1080 [ 1725.007505][T24493] ext4_enable_quotas+0x556/0x980 [ 1725.012364][T24493] ? ext4_force_commit+0xc0/0xc0 [ 1725.017135][T24493] ? proc_create+0x2b0/0x2b0 [ 1725.021563][T24493] ? ext4_register_sysfs+0x281/0x2c0 [ 1725.026684][T24493] ext4_fill_super+0x8b95/0x96e0 [ 1725.031467][T24493] ? ext4_mount+0x40/0x40 [ 1725.035710][T24493] ? vscnprintf+0x80/0x80 [ 1725.039876][T24493] ? set_blocksize+0x1f0/0x380 [ 1725.044477][T24493] ? sb_set_blocksize+0xa8/0xf0 [ 1725.049168][T24493] mount_bdev+0x282/0x3b0 [ 1725.053331][T24493] ? ext4_mount+0x40/0x40 [ 1725.057496][T24493] ext4_mount+0x34/0x40 [ 1725.061487][T24493] legacy_get_tree+0xf1/0x190 [ 1725.066000][T24493] ? ext4_errno_to_code+0x140/0x140 [ 1725.071035][T24493] vfs_get_tree+0x88/0x290 [ 1725.075377][T24493] do_new_mount+0x2ba/0xb30 [ 1725.079716][T24493] ? do_move_mount_old+0x160/0x160 [ 1725.084661][T24493] ? security_capable+0x87/0xb0 [ 1725.089349][T24493] ? ns_capable+0x89/0xe0 [ 1725.093514][T24493] path_mount+0x671/0x1070 [ 1725.097769][T24493] __se_sys_mount+0x2c4/0x3b0 [ 1725.102289][T24493] ? exc_page_fault+0x47a/0x7f0 [ 1725.106975][T24493] ? __x64_sys_mount+0xd0/0xd0 [ 1725.111569][T24493] __x64_sys_mount+0xbf/0xd0 [ 1725.115994][T24493] x64_sys_call+0x49d/0x9a0 [ 1725.120333][T24493] do_syscall_64+0x3b/0xb0 [ 1725.124584][T24493] ? clear_bhb_loop+0x35/0x90 [ 1725.129102][T24493] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1725.134827][T24493] RIP: 0033:0x7f7d6249deba [ 1725.139085][T24493] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1725.158524][T24493] RSP: 002b:00007f7d61114e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1725.166772][T24493] RAX: ffffffffffffffda RBX: 00007f7d61114ef0 RCX: 00007f7d6249deba [ 1725.174585][T24493] RDX: 0000000020000100 RSI: 0000000020000080 RDI: 00007f7d61114eb0 [ 1725.182389][T24493] RBP: 0000000020000100 R08: 00007f7d61114ef0 R09: 0000000003000010 [ 1725.190203][T24493] R10: 0000000003000010 R11: 0000000000000246 R12: 0000000020000080 [ 1725.198013][T24493] R13: 00007f7d61114eb0 R14: 000000000000052c R15: 0000000020000000 [ 1725.205839][T24493] [ 1725.208688][T24493] [ 1725.210861][T24493] Allocated by task 64: [ 1725.214855][T24493] __kasan_slab_alloc+0xb1/0xe0 [ 1725.219538][T24493] slab_post_alloc_hook+0x53/0x2c0 [ 1725.224488][T24493] kmem_cache_alloc+0xf5/0x200 [ 1725.229085][T24493] alloc_buffer_head+0x26/0x110 [ 1725.233775][T24493] alloc_page_buffers+0x192/0x390 [ 1725.238633][T24493] __getblk_gfp+0x3ed/0x7c0 [ 1725.242973][T24493] jbd2_journal_get_descriptor_buffer+0x158/0x420 [ 1725.249221][T24493] jbd2_journal_commit_transaction+0x1629/0x6170 [ 1725.255385][T24493] kjournald2+0x489/0x890 [ 1725.259552][T24493] kthread+0x421/0x510 [ 1725.263456][T24493] ret_from_fork+0x1f/0x30 [ 1725.267710][T24493] [ 1725.269878][T24493] The buggy address belongs to the object at ffff88814145fe70 [ 1725.269878][T24493] which belongs to the cache buffer_head of size 104 [ 1725.283766][T24493] The buggy address is located 32 bytes to the right of [ 1725.283766][T24493] 104-byte region [ffff88814145fe70, ffff88814145fed8) [ 1725.297396][T24493] The buggy address belongs to the page: [ 1725.302875][T24493] page:ffffea00050517c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88814145fd20 pfn:0x14145f [ 1725.314235][T24493] flags: 0x4000000000000200(slab|zone=1) [ 1725.319711][T24493] raw: 4000000000000200 ffffea0004c978c8 ffffea000449f388 ffff8881001cca80 [ 1725.328128][T24493] raw: ffff88814145fd20 000000000018000f 00000001ffffffff 0000000000000000 [ 1725.336539][T24493] page dumped because: kasan: bad access detected [ 1725.342794][T24493] page_owner tracks the page as allocated [ 1725.348343][T24493] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0x112c50(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 6607, ts 487292088560, free_ts 486882434452 [ 1725.367351][T24493] post_alloc_hook+0x1a3/0x1b0 [ 1725.372071][T24493] prep_new_page+0x1b/0x110 [ 1725.376401][T24493] get_page_from_freelist+0x3550/0x35d0 [ 1725.381780][T24493] __alloc_pages+0x27e/0x8f0 [ 1725.386205][T24493] new_slab+0x9a/0x4e0 [ 1725.390118][T24493] ___slab_alloc+0x39e/0x830 [ 1725.394539][T24493] __slab_alloc+0x4a/0x90 [ 1725.398706][T24493] kmem_cache_alloc+0x134/0x200 [ 1725.403394][T24493] alloc_buffer_head+0x26/0x110 [ 1725.408088][T24493] alloc_page_buffers+0x192/0x390 [ 1725.412939][T24493] __getblk_gfp+0x3ed/0x7c0 [ 1725.417278][T24493] ext4_get_branch+0x309/0x750 [ 1725.421878][T24493] ext4_ind_map_blocks+0x29f/0x2830 [ 1725.426915][T24493] ext4_map_blocks+0x3ed/0x1c70 [ 1725.431600][T24493] _ext4_get_block+0x23b/0x660 [ 1725.436199][T24493] ext4_block_zero_page_range+0x3b0/0x970 [ 1725.441758][T24493] page last free stack trace: [ 1725.446270][T24493] free_unref_page_prepare+0x7c8/0x7d0 [ 1725.451561][T24493] free_unref_page+0xe8/0x750 [ 1725.456072][T24493] __free_pages+0x61/0xf0 [ 1725.460242][T24493] __free_slab+0xec/0x1d0 [ 1725.464410][T24493] __unfreeze_partials+0x165/0x1a0 [ 1725.469353][T24493] put_cpu_partial+0xc4/0x120 [ 1725.473866][T24493] __slab_free+0x1c8/0x290 [ 1725.478118][T24493] ___cache_free+0x109/0x120 [ 1725.482548][T24493] qlink_free+0x4d/0x90 [ 1725.486538][T24493] qlist_free_all+0x44/0xb0 [ 1725.490877][T24493] kasan_quarantine_reduce+0x15a/0x180 [ 1725.496178][T24493] __kasan_slab_alloc+0x2f/0xe0 [ 1725.500863][T24493] slab_post_alloc_hook+0x53/0x2c0 [ 1725.505806][T24493] kmem_cache_alloc+0xf5/0x200 [ 1725.510413][T24493] getname_flags+0xba/0x520 [ 1725.514751][T24493] user_path_at_empty+0x2d/0x1a0 [ 1725.519528][T24493] [ 1725.521691][T24493] Memory state around the buggy address: [ 1725.527165][T24493] ffff88814145fd80: fb fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 [ 1725.535064][T24493] ffff88814145fe00: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 [ 1725.542958][T24493] >ffff88814145fe80: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc [ 1725.550855][T24493] ^ [ 1725.558669][T24493] ffff88814145ff00: fc fc fc 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 1725.566570][T24493] ffff88814145ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1725.574464][T24493] ================================================================== [ 1725.582376][T24493] Disabling lock debugging due to kernel taint [ 1725.590264][T24495] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #3: comm syz.0.4895: mark_inode_dirty error [ 1725.599001][T24480] EXT4-fs (loop2): 1 truncate cleaned up [ 1725.602165][T24493] EXT4-fs warning (device loop8): ext4_enable_quotas:6422: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix. [ 1725.606802][T24480] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1725.630836][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.4895: corrupted inode contents [ 1725.632314][T24480] ext4 filesystem being mounted at /377/file1 supports timestamps until 2038 (0x7fffffff) [ 1725.654849][T24495] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.4895: mark_inode_dirty error [ 1725.666809][T24493] EXT4-fs (loop8): mount failed [ 1725.672143][T24495] Quota error (device loop0): write_blk: dquota write failed [ 1725.679651][T24495] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1725.703799][T24495] EXT4-fs error (device loop0): ext4_acquire_dquot:6187: comm syz.0.4895: Failed to acquire dquot type 0 [ 1725.741551][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4895: corrupted inode contents [ 1725.772915][T24495] EXT4-fs error (device loop0): ext4_dirty_inode:6038: inode #16: comm syz.0.4895: mark_inode_dirty error [ 1725.796201][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4895: corrupted inode contents [ 1725.823864][T24495] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.4895: mark_inode_dirty error [ 1725.841416][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4895: corrupted inode contents [ 1725.859199][T24495] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 1725.868358][T24495] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4895: corrupted inode contents [ 1725.885584][T24495] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.4895: mark_inode_dirty error [ 1725.898130][T24495] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 1725.907837][T24495] EXT4-fs (loop0): 1 truncate cleaned up [ 1725.915010][T24495] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1725.928924][T24495] ext4 filesystem being mounted at /351/file1 supports timestamps until 2038 (0x7fffffff)