last executing test programs:

7.736608585s ago: executing program 4 (id=176):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)}, 0x20)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000340))
close(r2)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3)
r4 = dup(r3)
write$uinput_user_dev(r4, &(0x7f0000000380)={'syz0\x00', {}, 0x0, [], [], [0x2]}, 0x45c)
write$uinput_user_dev(r1, &(0x7f0000002600)={'syz0\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3]}, 0x45c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x440, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0xb4, &(0x7f0000000b00)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd60003a04007e2900fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000008ec0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000004e40)={0x50, 0x0, r7, {0x7, 0x9}}, 0x50)
llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x8c)

6.894451003s ago: executing program 4 (id=180):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000180), 0x8, 0x200042)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200), 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
getsockname$inet6(r2, 0x0, &(0x7f0000000100))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

5.956133151s ago: executing program 0 (id=187):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000994bd740f60d5600b5a0000000010902120001000000000904"], 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000005c0)={0x34, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x0})

5.955746101s ago: executing program 4 (id=188):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))

5.902637755s ago: executing program 4 (id=189):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
tgkill(0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0xc018aec0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = gettid()
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ptrace$getregset(0x4204, r1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800006, 0x11, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x5f}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x39)

5.728863289s ago: executing program 4 (id=192):
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000240)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x202}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x28}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
fcntl$lock(r4, 0x5, &(0x7f0000000200))

4.546599667s ago: executing program 1 (id=198):
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000040), &(0x7f00000001c0))
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xa30e, 0x0, 0x0, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x105, 0x6}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000240)=0x7)
r4 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
linkat(r5, &(0x7f0000000140)='./file1\x00', r5, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

4.304794936s ago: executing program 3 (id=200):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0x8, 0x200042)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200), 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)

3.989141992s ago: executing program 0 (id=201):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0xeea390}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000066c0)="a062030607792c01386f28a428828947de99f79cc542703d923c7cb9d4e1f6fd95fbf2f747ab32f6fb041861fb3f87a88cb85405b4e73c0b6b12c81e42a9f13d82c32b7ddb172bcba1aac5c38f083747ac179f08d4d6d342a87ba8dd9bb7a9680f27433c3357b4f6ac97b19a973592f1ac6e7853a0b15ba42a28efb9cc30b146346b546018966e94976ca28f26a1950dd64c0adbb0c2e09bbd9caa9e7886a2b3d6e2b6d6616b718f1322ea2881ca59ef73948b1bcdc2dd3970e63cbc1043ce42af0ea1f95d17268cbc3ef062c8c31a537e94a20c1c505a6022d5ece7f51bd9c754d8c47cbe80bbb30b2159991a94dd3a25e64aff8a7a17374b5a71e0c7c241cbfd7f084e18a50bea512ada902210a3881ffcd42071ab09c4d80139d8980d6dc5d12c2595ced445caf22f80d8fb1a4c243da47fadb8e28e9c04fea820a8a2f032f5adff8b7d9269e63db68d196bf7f416405e52b6b8abd8bb9d9694b8b5eddae348209963738cd9710bd6c291af1c8eaf0e52d2f2f24bef8c8bc9f77eed40104e07c8ee1b4cb358fc73e2653fef6232b5e9f5d0be26b91a0b7967ed5e3bf10c449424ff4d11951d963677001d9576425d6a9c4503268a407d74854f5e1caacc0ccc463dc56e684db1d80b370da238915579ab82cdbd7d155adf10b96ed71100ea92834e8a4e4f5b7b831bff6fb4febe01bb398ea4065446f277f107aa3cc06e0b7a6e98434bf57744ba9ecb8effe704d7f852e16bc33ac113649f7540b7a7a67cf5493b400ce06e571d485af1732938b79ded4de7dad97a7e1c0be7bd479dc264647bb76503168423e3f6fc95f8ac8ea35e39f476ab54e88286fcf73eead1f794784465592fe4ad112ac63bbc3b3f35b87c40bc5fa6e3ca6cad878f9772a61a23aa00491a9e2442eb90a32af2bd74e99d075bcda20288bfc30f3b00a7e8e1a0b4791573abd65284bbb53e2b7d667239b95b332dd423e4d7c512de559bd53fde5285add9795bda81ec142620e693af9c787a4499dd76ca0d77d9c7c4043e537ec6c1cd0b9a642b12adc782a0e00f6c1ed7379d5fff4c2feb19182db977f657b195e4710ff00f78e35a146119897495b0e1a0068a6606292ee72bf65adcd2cd29b4e59a4b3f82eac77d5254013d03d2fb2511975558906741912d09304f0d4cf08c8f62690c67968c869f75a4025224d8e84baf7a42e01b4ecf7e55d7c45839778c2266880d1bb73e3aad618d1a4f8d5a16914d64d70438a88512649fd4caa90506e5a2d58a33ecaebc9b2e5f8a4fbeca57c829ae02fd2dc146e939c3d295ada7df4a07e74b356c6ffd7a9c546b9eddf7e013cbcb2b57ae0d225249f7e06a415681d9f597a060fd55e39bd56f04b863efeca458a0cbc54b660db50ca40d27a3fda3416860e691cfc780593f06b467700968bb918c32547e378b14b4e0dcd11cb0b2fb36ea70946ac62290184b4eed38b51c322a75367b50f558e063bf363341a17c28ddcbf9ce53da06f26303fd156423a25f686809bc9845a78e0cc3d94e04bc8da85f22a4a8ece2c4ac2c79e54dcc4eabc61e067060ad880377a71fe0c2c0305256e4f3c637575f086e4ae3d7ab5d106fde03d24c47dccba3da23a244c1f50a4f60cd8d71b77390c5ce6d5612fd0260a2f33389b064ae6acac783eca62874232fd3808fb2188151a43de6cebc7e245106183f7d929f1eeff6f972da3e3d967170247925fb0f04bf38e88d06321f9ff9d2c296553d842b69036a2b6de2aad3879aedee723ff00736f7b0dffe6182104105ff0f0b636f5192d6bb5ae7ef950825827d2f3d6285d83aedca3f31474e0ad50ce6290a0e546c30d900e5b4208ecc8b3aca0ba3d110fc3c0a7e004a53e5d0ba1cc1c2bb42c3dbcbb4ceb6674151932ae56f6b03cc34ce450c292fecd2456ddcf42b075e6fd49305fbf265a36f3cff61321dd60f16e844089d659130947672a2d059e04af9ef653e8afec926b5a5d411f60a2a435437095a1df8dc60a616bd1a1ce7b5251ed8f905becffebd635eee8ff0055c40f146f1350a406b853ecb005c6ede4dc270ce6751cff915aa27f5f6b0736da14c9949de599d57868c29cc97ad03bd89502a34b88ad29c8762d0dc24a6df759821882a32e70531cab51fa1752a4fc49cf0706cb24d203174b2940f29ef8b0ce65b40cfde4e0c7310c685cc8de8384e485a951192fa8c36c11f9b88a48caf027dca480caa4fccae70ea6c837eb82f926ad7691c7709f217220d71f6e374fb8522a84c118b5c25f3d56acfb25afbe676fc9e574b6c5a59c00a0bbeeff61fd82a1677f3da9bb596133db491a8f11b945d930c8a67de9ce80025c764d518efcbae25d9194dc96c31ed02c63b1ac976715f7233ffed7cb6e929bbb5afabd34bc37c095acd0abbbdb1ea48e40a30ac99550f0ccca19ecef5acb2604c48fffb53b352d114fac72d6fc019ddec558406668f773fed9476148133c0f9ca4d1fd7e70dd04bfa089dc57e5940f29a5fd33dc79913ff48853794fdaf891d71de94c4a4fed0544e09f2bd578b07003031b8602f08ca8a79fa5ebfd5477f4d4f031c3efe0db273446a99d0cbe21a3cf43f3b82774e4657bb4f9675adbaf71c52953f0b18a61e05a9c770536fbad215848f8238e8730b9085189ea4621780dac500d7d7dc7815b45e232f86592498f1515ac8c50306013524cc5f0a74b67bc85d435d332ce69f00641c86a3e91be84b78ac358f35b18d69679df4197d3be8554417cf44aee6dc623f68ce3388df18168efa1c87c776cbda792f6110b6af178eb8200a91dfb72c1e23b5e5a66b5a3ee3f4c2bba2ccac939dcb036006b86e894093922a95fd70baba9424a3d0327a0f209fe10b39f3cec3f669d301a2834e58fd56f94d622dccf653f08e776c9f3e1b0e5b3cdef133834b93c41c70438d51a0b127262868d49ca91623c3d8b75c2cce0b771b9ac941bb96029e782224a3686a7c0dd164e162ede667e0e5817e7bde85ad3bf30a6a5bdc420f751679be74a02f84aa93b971c3f45a67d155f7ecb1d5284660918dbf102bc16f496fb62a1290e6b88ddaff55740583cba13076afd623276634e0c11663be50766980949095003ef5bc6f90a98bbad436b67928513e70115224f672ca2a24e27bb98bd5288c49ea23d47ef13c5ff28c43ce53ca16a6caeccc1f601226253c4a38a88a93828f6c800547cadbaa6d7ad26db618cccd38a671507cad5ba0065ce2edba81a059b95c36c5d04ab456fd6fd81ec3738ebe546d973c0886a5e7b83dd9c2f58f5d6c19519e67575b3732a486555f8d8c4ae004a62e8d07ab2c8ef74cdb96aa99d75aeb1c25985996f281d71106910a3c3da17de35e04dbe00e2b7b75ec2fed177a7f2d04fbf68bd0b8af682b30911867d4d1497ba060b662f4e97a8e7fd3613015cc34302377497cd08bcdc29f06dae240820d2ccddbf8c95c76a4ba5d3e1b37a62369ce3f79fb74ebd9bc82c3fa3edad4034b6715c2853fa7781c974b5a4e541e8b69bf4bd653fcce4e4340d9409fe9112e4d253a3b7e9d43f4426127b10f2d5d3fcd2193490f7d933e0cc53dae552f2d7c9d77b8f9b27c59105cfae43a0aab314a0820fbb5684bf20986e3be215688b42938d272c4c0edd17bcdc84a514d2483456d6cfb4f5c1218859ee55bfc77da36c9c75734932a12fd03df38232063ed92024f8ee7c21f314129feb10670bb4d6a0ad4fb3dc57a64cfe6509a0770650cdec0efd5e0b1fd29433cf871c9ddbe648319bd481357326ac1eb32b4bef4ad89ab6122e92dc786decac88624a4a3963ae771f8023b9a92e446114764c53d7efc07e3ea77a9daac5cabbe648a223e249db62102ef7b7b6d06df46b6ff913911b89848a47aecc0563fb06b6d77fe1daf4541cf619105ab68e0bcdf7a05af22b0551323bf33dec8167df2b7fac62dc9e286dd3462f488c82ad194f7fd5d3ca72fe9c0c37cdb6d75684326e5cb30319ab333fc70bb197320acda161d2e685e78ac2cb1417223f64742b12a316d590b18a4173b2a105a381baf6f383ec2e81d04860b5cc536475d7c5d05bd6a7db1a5d93930bacba8c1de63707bd24785e19fc1f15ba724660ac00d0f2ebbcd5528b8cbe4f3ca332e8611e937a310fc79d234be6c1cd09d6a5cb06ab36a9d667188144c81f86aaf0851763573b36cc21462ba4f3d6e95d38d1e9b943085661d234ef6d079bc9d84c7447c85baba88263451ba10559e1ce326fee5074b26b54872e690a9a1e589e1c444daa3224b292bf9ec4a604dc512760084084f27386c89a1190b8905f0d720508c0ed69272f396725805480188aa4602a26e833c16aa5079c0577a8203ec0b2b929ef3b410bb427c168b7fefd1be652f06efc61c7a295a5d07a9fd61bd5bfe67ac5f74e485a66c92950a1b460257084ca3a3489943ad450300967234b487fa3def4010f9b715196562ebb0846b7ac3eba47646af6285582b4402f64aa684dff7d9cf81fbe1aa88959f7906f06839389f2ad56efb5029afe1d5ceac99a3e698f49ff0da7db06d7c9e94a8773a13fab93def139667b4dc6b741bd2769da7786acecbe315f9006bb6b72abe5bdc587d8d5aa8f67aaefef68197fd2e7874d9b7da2c3a5618720c12e8fc31db3e334c47abcbf10c6181ec14af4f9e90e19a35360a793b1e9b336e49b3ed67568a860cd4c298f967ba323d315821959629e5b7aaac367e1ddb8a1c5d61500afa69331a4c90861852f533657b28b97a343bc531a11ff634b157a6d859a35f0d2a595375e11a32457575f1d73da033bf5eeda12337b9fdd46bce192d3aaaa240a8c65bf47704d6aa64a9531f9de14a96fc9fe380db35dd5ec52321c67fb4c18abcaf22fbe8f602ed201232251317e1a1b71e1e2c924a92d84685de348eec97fed954b7f6681ddf521b4ee03a1aeb2e446ee2a7f4dfa37b1c53831139fc624c14dcc4d144ccdf758fd9f344b4cdc1df70f6a24fa78cab136c912d1ebffa7053ccbc9b9445762236dca409820f738370117d5c369dfc50fd42277f14eeaf29110aedcd503008c42914d04e219a8b6c01e337d04724919b07157e2275ba6365a9dba5ebc8019bd1aa1b8668023f64cf47e1b49b4fbcfc10d560bb74405c90751504db8100d8a8a1a3ff84d98f1262fbbd6b962f492b9531a7411c08e7e56eb0f838075f754b6a395b6b58a8e4c47eb46bfaba2ac94800a396749d18ba0e6219f8d616ec71a1e60b3bcc24e19d4a20ddbc6a871e6d7efa50a362610598d892a5adecbcfe217534deee3620dfc88c7992ec2e710e083ef0a50c20621405f654804d1af4f24d22b8ca48f26303e6969127a74f0b276a5624c3b84410d4d5ee3c62605876e60a88df2bd6e8db8c7e486fdb452178563e7add6bc126b721b9ef8b12181989b87031573a4010d88e34f15a2344e4808b74c99ad68f0c2aca4e8d504397c03e1328c4b1ec43fd902d206c3cfb63d7541ac57fdbc70b0033f87514286101231fe7e79668c802e1c23d61540cdf13a5e675b736e221ddc29ab747d9c64f6213f51d3c1ded2e2b0efc4e45183d90468f61ec1720f7a0b87947e2c54125cebe6563ee4415d886bbe869d17d36371c942c11db1e13c1dd40ed24cabaf7ee80eae6c4db934e982d9619d753dcd679c5650cd95d21582e31b259043a0d03371cd294f4cc028042c75070c9b534a2d79f164ab9d773295795280d1584ca664b53b263fe2e23534d27b0d85742fae8061e03187795129dd272041c6eb9c10c3406da1f752f4ca697bdbddd74975cd4dbba5687fb30ac4fd5d2579494eac73053a63821a852cf41a80f6668006f7e1c4e30b48d638ebab470c558d42baeed1adc8fc71f73e95f3ca212a4b009b508e89898727f805685e4e7650a2961d62c117d1ee9017236a6bffa0c36ae11bc52d346c83399e43c42cdb9f443aa307109a97ee66ceb7a29eeb2f1a2bb3ee1492229116db07301b2aa4126aee7775daa2d0eab4d206fae11b3c6b565dcc4c7b4dd1cf2abec81150d0629803f6eb221be384b8772fe6d6c4fa98c928a9d0a02e9ff8bb7a2168dbebe140323d93bee8983c496bccf752c372b795a3493624cefb3cfeb4307bd39826cac1ea3f18912deef1b8c8db30bc016990a477bc0a925fb36453a9e21354b2d7e6e3d4ca4dd20f27a8db05429d44b7a485365191dc4ba977a815958faf6434813a9f4046054763dd55dbb7fae892b746e169ae046ae3361a9f75cf622b03f75b1633da864395bd1c3a594fab0b1fb37f088dd1f2776e2b795c78635c2026a8ce7ff40968a1960786049a217dd8872ac0c01f4bafcf2d3d751dd46a5e1bec00540a9ca7afca3ef37575d4a8b1291d05be94913092890a9b4bfff39edbff307e5654896e79228777c0f8ea46c55bfe19e522bf457ab4e6b0167d776dbcd0160598370a12c4a03e4edc82b245a7608797b03d4ed89dfc2a5bf07b9fcb251fb8608553f3b3774818717a9aabe6b2ded811515ba454b390a6065bbc59552f3bfe51d38f139792e1aae60093a7c5770b52a1730feb1049c14a7d5261d644f6b738e22ee72aafa422bd93f61e1ccac0a5ef4726c66f61bb539acb937bd63da82c700c0860be90ce5621ced22b52b63d041266fc258fbfa6641aef22e97804e5138ad2ce4405eaf76bb0acd7fc61b2d6de4aabc5c28a850fcf219cff77c97d3cb6bec0067c171b912d11d82c56cbad56c0032a9657d4cdd1eacaca53f40f5e3fe911127e1cd30781351f180e1413933cee2d46ca0eea31ee01fe4e99a567edd0b10565d47b87c8a48366143e889e52d0ff13c920aea092c2545fa9b7056204fec156549d3c0a997bc1cf4a01338483bf5c69d6958ae038f1c3e3b84baeb2c1f9e064c0750602c34c6c483c316391d975f94f21f6dfe74e92c33228b408a9e2b9abcda33c497abba9c48a63e5c8f1a8d0f4c24d36a44e1601e8a09e8a5c7179bd4c44b17e542dd99cace87aab60a5e53325d544c991b6fa5deffa49fd886332980deeca9229cb2f67f495a7b743153854ed81e1623b12dbd65512d08a5732fee2db3fb455cf6df5a1701a2b8674633c6792162dc86ac76e30da225b0167a7e704ad33ba694f9c902afbeed58eef609874767053f59414d4d3eccbbcdbc7eba997c71f9b1f5139bb020d5dae1db6e2dcfbb51b5371b08bdbc3312b05ee6d8c03c8b5a7d4f23da45f276394f222b1a0bdf4e2603243cdba60ee0530387c88bb457ca9932f2283a4d55bb1195e6d325ed93f714e21908b1baafa467f1cec7fa26e5c384ee6828e77978bd1abd014de549a5e5966f2b2f4ba000f9d77f1abfe3a6c337cdb852c1ec59f61b63d543f3062dd2616a163ed7ca60168b0347b5c5646a678dafb4c502c333a0a48f0341b47f5c5946e42e571db0bfa0682a449ca64e71b5661a842975182399245c6de241512c67ac918d7e0c5cb66565010e881b8333567ca584321ead1c383b099d8bf1c56dac08cb218cde4226ad420d6d6313f9c4884d6394722304fdaa76e61db8c0d54eb1151344c41ce1130272928eecb2f9f0f23c752622374eb1223a80efcf0b937dff7d813d7be0340226c0a7b163741d9aecafcb7ddae5a219323323f621c802be82399e06d2e1cc582e759ffa303c5103f8a44d7129d2853b02e506abda57ad2836d7ff16f95232149fbeb8b62e586d3536bb4ae042ecd9e25d1dee789353071f9c89d4361000c47b763556e8902f1f25cbd8ae71679e03ff27db0ec75eeee3fccafc7fcf22c377ac60d3c61a43cb53abf6162118f2efc86a5ce80e69a02bc1db80018beeef6d567941232e4412a958ed012bf7a832c1eaf68134ecabc4927ad666b3d0f21d4e8d52fa37e0a9751124efed8bf47544299138a6f69d89e295677f12606c79b72451c263fca3eec22bf0c47c641159a0bbfb3b2b03154af533e5c06a149e52adcfae31bfc55f30064a8903c8d3b828d275a937b1e4adffa0597da5e253b50bd71b33f057ffeff0b2a0829b3bf33350fbe67c7c79034f80d69e6a21be495a848d328f416f15966491b218eab390544e39d498258ad80ddae248634c845cbe6f1c1e93e7c2b02075411e075fe936bcc75f4a4e1a3687cb3dbbb61cb31ddfbbc87a1859b3a48fccdd8e5915c8bf4eebe8f7093cef6a7a91c8682915f9908c854c483e90c9643467292884d284134dbaddafdbc74d94a5f9713719d62b4f6b4236803d210181847ca27129fde264156895f4e1822ef78a3b215ef56d7e36d2b94c93f5e931a0d13a3a3030061ce62de595eecf47eae6bf698530145757700df18f66fd7261a12c119d6679663b3c0f99d1705aebe66dc862eb21ccb7360b93f54507149b577abf521113991e06f345e8282fdc18de673e1ca7b188ee34b14f37f86ddcf97fef0b913c33cf8e5d5d33707dbcdbe4b27cef056670252f186735cdd02f6ed6bfe5318a704f00e34ffc4fda9855bf37c51be6a7423e44dd8a98883c8fa82ca37c90d681fb7a0db915576b50e49aff545b99aa3aa6343b814ba0bf64e53b2a1edcae2231bf20d65e4bb4da6dc8382120ede652adfb7c30a46e0ee784cbde74563d83eb8d89a1573fa104fddca9d4833c49dc904bda905426c7dee3e48b596c8ee201bea57fedb1a0649457eaac3c5b5f4519af3adb66f10b861e711cd4034448890e15047c2f8902588268b5645051f3f3968ed8d630e050ccef0d01b61ffeade51e4e72d8fd46bba4c20009396e984c424d174934a67a1930665fbea04c809e7cda0a2cdfd3a14d6b99c3a8d8b3691825830456876f188ff871fc861e4c6a0ca377dc1f0cb0f929f7eb1f5da045d9a588a393312acacca5c5a3b15bb1b488b08fc40ad65ae2c1df187eccd8377525a81d80df57579ae52f775fb2efdd172a41c370300fcc594c2635dcf50e9eb9d34fa8b4bbfd13078422e3a7734a8ae6cc09e39d07c7ee19838f8da4cbafe4162c8f8dc44e284840bd0a5c80bfc657c22e37e0d9a96dda34a51ce616c9ccdc95955cf85d93860da902ab30f11aa333eacc25c47981d8636038761ed4d84fcbb0ca92dd2e07863b9505b451c3c49e36a172527578123049ff2dc2b4e258a3f698a12ca4705a6fd0ce6bc4f1767b4d9c2e57c9ed1388527964ac96ff5e4cf5ad6fdb6a853b43905df32af8bd788b520fd526cbb95195a1bc00d654cb080acdf67938517a6cdac741d86730358be16465b4e1301f47f6a444c4e8d2980b8bd98a8dcd6617cde0b287e2d1f59167b5c445146fa49728111b8a2729428cabd02facb8fbddbdb2769680f288648d6baac53e0d909335da3e2b4c13ebd41f32820c9f491e9124ca444a0532f60e2816e15a5810baa91f64454aa355f9d362c7d1a461561689d08b1350a216b6f1bda57aae0706b3710a1b8e52a7e3084e600b5ee3dc540bba0c16267d549304a7840659a32e40070715c9bb912792d4a7b84fa06e73b9ddbc2f06c4edc19d25f5a198c7e3fc6226842e6215da5d826fcf5949612889f78e9de39d4e64b86b7033b5717a21f8f2b81c799a3fc0bfe6f5837b252eefa360c91a6148296bd19d50a343d909c1edf5261e70c8dfb2c488940cf236941ad3fd01247e37902a4bbfdd1839f7c92c260a2c494022fac08629303c8e54108d78ae2c94289c7f998ba3b622b48931ee7c17c59f5499d282467a1b8050acc94a0b17b21836c80b69f519b9b077d18e33c027faad562fa09f2cc6120f8cf5ee18cf7db9d729ffbb9de58885713215b7aebb8c98d9fa009be0a9ef3ceccdb2b31968db555b26c5c94e382d06ebf6d356e8caa85def5813dd1596d823924c4fb63dba5bd094cb64f204d1e59d31287715f831a1f0be95d8749f2166ba0b0b6b64a37991be1fe1c1e922835f2da0c074ec9413561d52166576b1c4f1e18f078dc046d1c284964b80217b55c59a474740c3649116b33e927479736bff6005859c7c00598f22cb8eca38af802f4c86836e8330492ac7ef3707890a8ff856dc7786ed769bba75b18484b257b3b022eeb51aa720639f79e6e6bd3d3c9a61f7822abe562867b4693f0b2f61135aaeaa510b31112efeec48d2602c6d4f2ddeeb51bb03ab18c18d8e127a37e22881febca47742b9332d3f2251003b1a46c40eca111d02446466b669568c70971bd33254ca577777f126f86f8a3665f065b645ff261e78e0f532e83a81b99c5de3488de74ca82daa0e4e7404eff911ae955acbb800f9f91b774e472bc14aa92817b6d85877b1861a6ca92c03c83b6f1490068bad8eab1f58c9e91e1029683de2ca45c99966966031ee86d8c9995f0612480e2a6d5396e8ae361d6fd2e24557613a1191f5019d4c8078628013512ea3a59532efffa6cfe4970d28d8c7aa8c866c4275ff2b0b4ef1a7e56854d7ee4bc445713da9349d13e30a4a802cb9db2f10280fd9ea043b5b3480441e8ed2d907eae1259befba9d87a04ce42b0010c70af157b90e0bf72549852fd122edd6cf3475f76852b13b4bf887cf32e25ad34aed7fd5a6e97b307f9b4ff1c07b2b55beef5ef3dd96eeb2a57720c18209d911a55341cee67e6ff577f7acaba01c2c9690b15a3b8aaa5b9d734196467a8c074b2eeeb5ae931ddf3deb15b1a8d603e72125c2e68ad206f2c4252a659f8248ff882a8e54126ebc0c77a46101072272460e683d465279a3695be6b64c9eeb4a576d95fd520be42eab5c95cbace0dfd80e2d67bab9f683a1cc9c006c02f0f90a21a0f51218c628f5608fbf1abc79aa63452bde1002383033578f32980e3779a8edeb226f6d3f9b36d8f07bddd7479b60346a4b4fa883940e3aef8ad8d834dad4405960a4409a6255e8753d0c0ad0960ff3ef48ce93fbe6b165e86eab36fccb8b989f5b54e6ccaa19749ff065a0a732d15c41b9072bbc6f07e1fd5a3df2775874e46b61ed50714e8c403fbed6884ec06f52ab71d2c191fcc56ac0b17ba3c46d2dab3e11c79383bd8867ff14b5fbca73b9ae594b6a09fb73a2e8f15aee59150e8d6d3dad9659025d045bbd1b9ca257c67bb78abe8f7eb9c8b3bc32951c41f7390bacc8c7059a2a9b078ab50413605aec604e4666a6ace765b0e7ab558fe6232f2703d07811e3d0ac5bf9434e87876e99250ee9db6527a8ccb4a3ee3bde738563c9746f941cf2cd7efacdbd2593cafdbe5171864b2982b54dc5a32c86638c0e650a331625033b8dd65851965ae791880349d5cd52548f4422a317f96ed79e7ccf3bd671e6dc70365f521c65206386eb1f99570a544d11b3d36fea285f8a3770ca303a965a0c1d598ebe3696e647be734ccf760d3d47dec75e236d7ac08019b6622a7b9f08bc8f0937ab75e75a047a7386befbd56fc4b2f89c852dadce8df946cb3fafe4eed2678caadf1a913ae32b2c0b8a37984cb700343c5e24609f8c5ddeff5e653837a9332a41c8e21466a13d79224125d5f6a4fef79b5adae7f4ab7d351c55400545edd3c00637bd27164828925e9bb5d79f1f1e6eb3270ab799ae38772f779565d92c47503de695f7aad7ddacda6f6c71e755b3737231b64715bf07849d3466e4f92239f733436ce674389bd16900", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x100000000404, 0x0, 0xc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}}, 0x0, 0x0, 0x0, 0x0})
readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7)
setresgid(0x0, 0x0, 0x0)

3.939669916s ago: executing program 0 (id=202):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))

3.77045757s ago: executing program 0 (id=203):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000071122300000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffd6}, 0x80)

3.442213117s ago: executing program 1 (id=204):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)}, 0x20)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000340))
close(r2)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3)
r4 = dup(r3)
write$uinput_user_dev(r4, &(0x7f0000000380)={'syz0\x00', {}, 0x0, [], [], [0x2]}, 0x45c)
write$uinput_user_dev(r1, &(0x7f0000002600)={'syz0\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3]}, 0x45c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x440, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0xb4, &(0x7f0000000b00)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd60003a04007e2900fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000008ec0)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000004e40)={0x50, 0x0, r8, {0x7, 0x9}}, 0x50)
llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x8c)

3.374740223s ago: executing program 2 (id=205):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={0x0, r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
r2 = timerfd_create(0x8, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

3.326541827s ago: executing program 2 (id=206):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x8, 0x7fe2, 0x1, 0x108}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r1 = syz_mount_image$fuse(0x0, &(0x7f0000000240)='./file0\x00', 0x401003, 0x0, 0x0, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r2, @ANYBLOB="2c726f6f746d6f3d30303030303030303030301d", @ANYBLOB="d26a493caaf772444236e07dfe9199adb5324e947b26c07f5c55419ae42c04d205ecb6a238af", @ANYBLOB=',group_id=', @ANYRESHEX])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2000000000000165, &(0x7f0000000440)=ANY=[@ANYRES64=r1, @ANYRESHEX=0x0, @ANYRESOCT=r0], 0x0, 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x102, 0x2, 0x0, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x1, 0x7}, 0x48)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='oom_score_adj\x00')
preadv(r2, &(0x7f0000000300), 0x0, 0x379, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000100))
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = dup3(r8, r7, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x5)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

3.277267401s ago: executing program 3 (id=207):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000040), &(0x7f00000001c0))
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xa30e, 0x0, 0x0, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x105, 0x6}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000240)=0x7)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
linkat(r6, &(0x7f0000000140)='./file1\x00', r6, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

2.177624421s ago: executing program 1 (id=208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r2)

2.176766211s ago: executing program 2 (id=209):
openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x0, 0x0)

2.106474677s ago: executing program 3 (id=210):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)
ioctl$ASHMEM_SET_NAME(r2, 0x40087708, &(0x7f0000002600)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80`4/\xe9\x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\x16\\n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x04;\xc5[\nja\xb9\'\xc9#\xfcx\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00B\x05\xd4\xea\xea\x7f=\xc6:\\N\xc3\xb7Vw\xc6\x9c\x96s\xaaHL\x96\xc72\n\x18Ynj\xceTS\xfbl\x0f\x9f8M\f\x89\xa1\xd2Hs`\x8bp\x8a\xc4%\xf8\x1d3\nV\x9a\xaf\x1f\xf96^\x93\xc1\xaf)\rg\x86\xd6\xea\xa9\x0f\x9a\xf1V\x1b\xbf\x8b\'-\xab\x8e\t7\xd3\xf7\xa9v\xfbY\xe6\x9b^d\x8c\xb1\xdd')
ioctl$ASHMEM_SET_NAME(r2, 0x40087708, &(0x7f0000000300)='\x00\x00\x00\x06\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

2.091718438s ago: executing program 0 (id=211):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x3, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/protocols\x00')
read$FUSE(r6, &(0x7f00000082c0)={0x2020}, 0x2020)
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x1, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
r7 = open$dir(&(0x7f0000000240)='.\x00', 0x0, 0x0)
renameat(r7, &(0x7f0000000400)='./file0\x00', r7, &(0x7f0000000440)='./file1\x00')

2.083296539s ago: executing program 3 (id=212):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000040), &(0x7f00000001c0))
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xa30e, 0x0, 0x0, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x105, 0x6}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000240)=0x7)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
linkat(r6, &(0x7f0000000140)='./file1\x00', r6, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

2.082991739s ago: executing program 1 (id=213):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), 0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000480)={'wg1\x00', <r3=>0x0})
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
close(r4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000000d0000000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)

2.065984071s ago: executing program 1 (id=214):
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000040), &(0x7f00000001c0))
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xa30e, 0x0, 0x0, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x105, 0x6}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000240)=0x7)
r4 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
linkat(r5, &(0x7f0000000140)='./file1\x00', r5, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

1.143385176s ago: executing program 3 (id=215):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x2, 0x3, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/protocols\x00')
read$FUSE(r6, &(0x7f00000082c0)={0x2020}, 0x2020)
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x1, 0x0)
mount$incfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000340), 0x0, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
open$dir(&(0x7f0000000240)='.\x00', 0x0, 0x0)

1.1012606s ago: executing program 2 (id=216):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000180), 0x8, 0x200042)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200), 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
getsockname$inet6(r2, 0x0, &(0x7f0000000100))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

1.09351074s ago: executing program 0 (id=217):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={0x0, r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
r2 = timerfd_create(0x8, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

300.010846ms ago: executing program 4 (id=218):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)}, 0x20)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000340))
close(r2)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x3)
r4 = dup(r3)
write$uinput_user_dev(r4, &(0x7f0000000380)={'syz0\x00', {}, 0x0, [], [], [0x2]}, 0x45c)
write$uinput_user_dev(r1, &(0x7f0000002600)={'syz0\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3]}, 0x45c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x440, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0xb4, &(0x7f0000000b00)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa0086dd60003a04007e2900fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000008ec0)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000004e40)={0x50, 0x0, r8, {0x7, 0x9}}, 0x50)
llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x8c)

204.214893ms ago: executing program 3 (id=219):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000180), 0x8, 0x200042)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200), 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)

48.083586ms ago: executing program 2 (id=220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
r2 = timerfd_create(0x8, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

24.751558ms ago: executing program 2 (id=221):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000040), &(0x7f00000001c0))
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xa30e, 0x0, 0x0, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x105, 0x6}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000240)=0x7)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
linkat(r6, &(0x7f0000000140)='./file1\x00', r6, &(0x7f00000002c0)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

0s ago: executing program 1 (id=222):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000071122300000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffd6}, 0x80)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.115' (ED25519) to the list of known hosts.
[   25.376791][   T30] audit: type=1400 audit(1721591113.738:66): avc:  denied  { integrity } for  pid=284 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   25.400477][   T30] audit: type=1400 audit(1721591113.768:67): avc:  denied  { mounton } for  pid=284 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   25.401812][  T284] cgroup: Unknown subsys name 'net'
[   25.422892][   T30] audit: type=1400 audit(1721591113.768:68): avc:  denied  { mount } for  pid=284 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.450046][  T284] cgroup: Unknown subsys name 'devices'
[   25.450076][   T30] audit: type=1400 audit(1721591113.798:69): avc:  denied  { unmount } for  pid=284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.648690][  T284] cgroup: Unknown subsys name 'hugetlb'
[   25.654141][  T284] cgroup: Unknown subsys name 'rlimit'
[   25.877053][   T30] audit: type=1400 audit(1721591114.248:70): avc:  denied  { setattr } for  pid=284 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   25.900052][   T30] audit: type=1400 audit(1721591114.248:71): avc:  denied  { mounton } for  pid=284 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   25.905987][  T287] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   25.924496][   T30] audit: type=1400 audit(1721591114.248:72): avc:  denied  { mount } for  pid=284 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   25.955805][   T30] audit: type=1400 audit(1721591114.308:73): avc:  denied  { relabelto } for  pid=287 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   25.980980][   T30] audit: type=1400 audit(1721591114.308:74): avc:  denied  { write } for  pid=287 comm="mkswap" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   26.018761][   T30] audit: type=1400 audit(1721591114.388:75): avc:  denied  { read } for  pid=284 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   26.044692][  T284] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   26.821566][  T295] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.828503][  T295] bridge0: port 1(bridge_slave_0) entered disabled state
[   26.835551][  T295] device bridge_slave_0 entered promiscuous mode
[   26.842300][  T295] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.849232][  T295] bridge0: port 2(bridge_slave_1) entered disabled state
[   26.856354][  T295] device bridge_slave_1 entered promiscuous mode
[   26.912421][  T298] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.919280][  T298] bridge0: port 1(bridge_slave_0) entered disabled state
[   26.926484][  T298] device bridge_slave_0 entered promiscuous mode
[   26.934242][  T298] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.941159][  T298] bridge0: port 2(bridge_slave_1) entered disabled state
[   26.948304][  T298] device bridge_slave_1 entered promiscuous mode
[   26.992879][  T294] bridge0: port 1(bridge_slave_0) entered blocking state
[   26.999745][  T294] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.007132][  T294] device bridge_slave_0 entered promiscuous mode
[   27.025029][  T294] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.031890][  T294] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.039075][  T294] device bridge_slave_1 entered promiscuous mode
[   27.053300][  T297] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.060171][  T297] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.067366][  T297] device bridge_slave_0 entered promiscuous mode
[   27.083277][  T297] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.090135][  T297] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.097336][  T297] device bridge_slave_1 entered promiscuous mode
[   27.123637][  T296] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.130485][  T296] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.137851][  T296] device bridge_slave_0 entered promiscuous mode
[   27.158713][  T296] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.165543][  T296] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.172806][  T296] device bridge_slave_1 entered promiscuous mode
[   27.215364][  T295] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.222295][  T295] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.307330][  T298] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.314173][  T298] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.321299][  T298] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.328068][  T298] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.358474][  T297] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.365312][  T297] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.372422][  T297] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.379210][  T297] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.393616][  T294] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.400492][  T294] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.407594][  T294] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.414355][  T294] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.433868][  T296] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.440713][  T296] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.447815][  T296] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.454590][  T296] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.465325][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.472452][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.479494][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.486539][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.493730][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.500722][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.508095][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.515028][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.521933][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.529343][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   27.536496][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   27.570412][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   27.577880][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   27.585935][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   27.594547][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   27.602608][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.609461][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.616590][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   27.624498][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.631333][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.638603][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   27.646311][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   27.679993][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   27.689022][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   27.697085][  T299] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.703916][  T299] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.711594][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   27.719534][  T299] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.726350][  T299] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.733668][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   27.741356][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   27.749107][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   27.757026][  T299] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.763841][  T299] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.771029][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   27.778948][  T299] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.785763][  T299] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.802979][  T297] device veth0_vlan entered promiscuous mode
[   27.814450][  T295] device veth0_vlan entered promiscuous mode
[   27.821733][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   27.829338][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   27.837250][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   27.844410][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   27.852262][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   27.860424][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   27.868145][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   27.875260][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   27.882669][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   27.890637][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.897468][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.904609][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   27.912499][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.919332][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.926448][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   27.933660][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   27.941584][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.948426][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.955525][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   27.963457][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.970283][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.985716][  T297] device veth1_macvtap entered promiscuous mode
[   27.995563][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   28.003752][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   28.011566][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   28.019634][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   28.027469][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   28.035172][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   28.043101][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   28.050888][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   28.066914][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   28.074846][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   28.082898][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   28.090772][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   28.098772][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   28.106492][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   28.116841][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   28.124831][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   28.140808][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   28.148878][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   28.156805][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   28.164839][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   28.173922][  T295] device veth1_macvtap entered promiscuous mode
[   28.202435][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   28.210072][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   28.219793][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   28.271203][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   28.279746][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   28.291200][  T296] device veth0_vlan entered promiscuous mode
[   28.301054][  T298] device veth0_vlan entered promiscuous mode
[   28.308331][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   28.315912][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   28.323680][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   28.337151][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   28.357096][  T296] device veth1_macvtap entered promiscuous mode
[   28.369744][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   28.378087][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   28.385334][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   28.392672][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   28.400501][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   28.407741][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   28.415786][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   28.423948][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   28.432062][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   28.440421][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   28.448790][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   28.456966][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   28.464673][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   28.472561][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   28.480709][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   28.489029][  T294] device veth0_vlan entered promiscuous mode
[   28.501281][  T298] device veth1_macvtap entered promiscuous mode
[   28.526292][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   28.530517][  T330] loop1: detected capacity change from 0 to 512
[   28.533810][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   28.547463][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   28.555390][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   28.563855][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   28.571642][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   28.579986][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   28.596550][  T294] device veth1_macvtap entered promiscuous mode
[   28.620775][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   28.643167][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   28.656109][  T330] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   28.667751][  T330] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038 (0x7fffffff)
[   28.677488][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   28.697201][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   28.715359][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   28.751377][  T338] loop1: detected capacity change from 0 to 512
[   28.763114][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   28.772295][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   28.787048][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   28.805221][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   29.183543][  T338] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.7: corrupted in-inode xattr
[   29.204898][  T338] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.7: couldn't read orphan inode 15 (err -117)
[   29.217058][  T338] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   29.336799][  T319] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   29.721790][  T358] loop4: detected capacity change from 0 to 512
[   29.797445][  T358] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[   29.807845][  T358] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   29.835488][  T358] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   29.869210][  T363] loop1: detected capacity change from 0 to 512
[   29.932416][  T358] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.8: corrupted in-inode xattr
[   29.956288][  T358] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.8: couldn't read orphan inode 15 (err -117)
[   29.974780][  T358] EXT4-fs (loop4): mounted filesystem without journal. Opts: noload,mblk_io_submit,user_xattr,auto_da_alloc,block_validity,quota,,errors=continue. Quota mode: writeback.
[   30.007588][  T363] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[   30.016656][  T363] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   30.056873][  T319] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   30.079046][  T363] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.10: corrupted in-inode xattr
[   30.081918][  T319] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   30.106235][  T363] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.10: couldn't read orphan inode 15 (err -117)
[   30.116763][  T319] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[   30.126628][  T319] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   30.135308][  T319] usb 1-1: config 0 descriptor??
[   30.140731][  T363] EXT4-fs (loop1): mounted filesystem without journal. Opts: noload,mblk_io_submit,user_xattr,auto_da_alloc,block_validity,quota,,errors=continue. Quota mode: writeback.
[   30.454064][  T361] loop2: detected capacity change from 0 to 131072
[   30.483492][  T361] F2FS-fs (loop2): Test dummy encryption mode enabled
[   30.501051][  T361] F2FS-fs (loop2): invalid crc value
[   30.508080][  T361] F2FS-fs (loop2): Found nat_bits in checkpoint
[   30.521614][  T388] loop1: detected capacity change from 0 to 256
[   30.544716][  T361] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   30.709286][   T30] kauditd_printk_skb: 46 callbacks suppressed
[   30.709300][   T30] audit: type=1400 audit(1721591119.078:122): avc:  denied  { unmount } for  pid=295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   30.770303][  T319] hid-rmi 0003:06CB:81A7.0001: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.0-1/input0
[   30.933148][   T30] audit: type=1400 audit(1721591119.268:123): avc:  denied  { create } for  pid=359 comm="syz.2.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   30.941292][   T26] usb 1-1: USB disconnect, device number 2
[   31.202049][  T399] fscrypt (loop2, inode 10): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))")
[   31.312918][   T30] audit: type=1400 audit(1721591119.268:124): avc:  denied  { write } for  pid=359 comm="syz.2.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   31.349405][   T30] audit: type=1400 audit(1721591119.338:125): avc:  denied  { create } for  pid=359 comm="syz.2.9" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   31.627913][   T30] audit: type=1400 audit(1721591119.998:126): avc:  denied  { create } for  pid=412 comm="syz.3.22" dev="anon_inodefs" ino=13754 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   31.710285][  T415] loop1: detected capacity change from 0 to 16
[   31.712254][   T30] audit: type=1400 audit(1721591120.078:127): avc:  denied  { ioctl } for  pid=412 comm="syz.3.22" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=13754 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   31.742040][  T415] erofs: (device loop1): mounted with root inode @ nid 36.
[   31.759760][  T415] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[   31.770808][  T415] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -35 in[64, 4032] out[1851]
[   31.787956][  T415] erofs: (device loop1): z_erofs_readpage: failed to read, err [-117]
[   31.868426][   T30] audit: type=1400 audit(1721591120.158:128): avc:  denied  { ioctl } for  pid=417 comm="syz.3.24" path="socket:[13763]" dev="sockfs" ino=13763 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   32.690982][  T428] loop0: detected capacity change from 0 to 2048
[   32.708760][  T428] =======================================================
[   32.708760][  T428] WARNING: The mand mount option has been deprecated and
[   32.708760][  T428]          and is ignored by this kernel. Remove the mand
[   32.708760][  T428]          option from the mount to silence this warning.
[   32.708760][  T428] =======================================================
[   32.749942][  T428] EXT4-fs error (device loop0): ext4_fill_super:4831: inode #2: comm syz.0.27: casefold flag without casefold feature
[   32.762468][  T428] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   32.853716][  T428] EXT4-fs (loop0): Errors on filesystem, clearing orphan list.
[   32.864061][  T437] loop2: detected capacity change from 0 to 256
[   32.883438][  T428] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   32.916077][   T30] audit: type=1400 audit(1721591121.278:129): avc:  denied  { ioctl } for  pid=438 comm="syz.4.29" path="/dev/kvm" dev="devtmpfs" ino=82 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   32.940335][  T344] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   32.954314][  T439] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   33.082955][   T30] audit: type=1400 audit(1721591121.448:130): avc:  denied  { read write } for  pid=446 comm="syz.2.30" name="fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   33.114995][   T30] audit: type=1400 audit(1721591121.448:131): avc:  denied  { open } for  pid=446 comm="syz.2.30" path="/dev/fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   33.916765][  T344] usb 2-1: Using ep0 maxpacket: 16
[   34.201942][  T481] netlink: 28 bytes leftover after parsing attributes in process `syz.3.43'.
[   34.210826][  T344] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 8
[   34.236109][  T481] Zero length message leads to an empty skb
[   34.371723][  T504] loop0: detected capacity change from 0 to 256
[   34.431729][  T344] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[   34.440749][  T344] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   34.448894][  T344] usb 2-1: Product: syz
[   34.452865][  T344] usb 2-1: Manufacturer: syz
[   34.457469][  T344] usb 2-1: SerialNumber: syz
[   34.464180][  T344] usb 2-1: config 0 descriptor??
[   34.519899][  T344] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[   34.571011][  T344] usb 2-1: Detected FT232RL
[   34.726831][  T344] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[   34.758499][  T344] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[   34.793159][  T344] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71
[   34.807737][  T344] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   34.826455][  T344] usb 2-1: USB disconnect, device number 2
[   34.847563][  T344] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   34.885114][  T344] ftdi_sio 2-1:0.0: device disconnected
[   34.979768][  T542] netlink: 'syz.2.69': attribute type 3 has an invalid length.
[   35.355847][  T566] netlink: 40 bytes leftover after parsing attributes in process `syz.2.78'.
[   35.402251][  T577] loop2: detected capacity change from 0 to 512
[   35.437211][  T577] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[   35.446834][  T577] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   35.466125][  T577] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b016c118, mo2=0002]
[   35.474239][  T577] System zones: 1-12
[   35.482904][  T577] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2213: inode #15: comm syz.2.84: corrupted in-inode xattr
[   35.494818][  T577] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.84: couldn't read orphan inode 15 (err -117)
[   35.506654][  T577] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,grpquota,,errors=continue. Quota mode: writeback.
[   35.547396][  T577] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz.2.84: dx entry: limit 124 != root limit 123
[   35.566771][  T577] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz.2.84: Corrupt directory, running e2fsck is recommended
[   35.654157][  T297] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor: dx entry: limit 124 != root limit 123
[   35.676677][  T297] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor: Corrupt directory, running e2fsck is recommended
[   35.705277][  T297] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   35.761042][  T297] EXT4-fs error (device loop2): ext4_readdir:220: inode #2: comm syz-executor: path /22/file0: directory fails checksum at offset 1024
[   35.778974][  T296] syz-executor (296) used greatest stack depth: 20880 bytes left
[   35.782000][  T586] loop1: detected capacity change from 0 to 2048
[   35.787085][  T297] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   35.808330][  T297] EXT4-fs error (device loop2): ext4_readdir:220: inode #2: comm syz-executor: path /22/file0: directory fails checksum at offset 2048
[   35.831160][  T297] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor: dx entry: limit 124 != root limit 123
[   35.843332][  T297] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor: Corrupt directory, running e2fsck is recommended
[   35.861105][  T586] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.87: casefold flag without casefold feature
[   35.881499][  T586] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   35.891963][  T586] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[   35.901294][  T586] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   35.925784][  T587] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.958720][  T587] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.966097][  T587] device bridge_slave_0 entered promiscuous mode
[   35.983148][  T587] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.996775][  T587] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.007276][  T587] device bridge_slave_1 entered promiscuous mode
[   36.093074][   T30] kauditd_printk_skb: 26 callbacks suppressed
[   36.093088][   T30] audit: type=1400 audit(1721591124.458:158): avc:  denied  { create } for  pid=585 comm="syz.1.87" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   36.196687][  T587] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.203548][  T587] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.210722][  T587] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.217515][  T587] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.420408][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   36.430074][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.444608][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.482830][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   36.493599][  T557] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.500479][  T557] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.516846][  T607] process 'syz.3.92' launched './file1' with NULL argv: empty string added
[   36.526071][  T598] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.532966][  T598] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.540710][  T598] device bridge_slave_0 entered promiscuous mode
[   36.547661][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   36.555929][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.562790][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.570329][  T598] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.577638][  T598] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.585050][  T598] device bridge_slave_1 entered promiscuous mode
[   36.626391][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   36.640172][  T612] Â: renamed from pim6reg1
[   36.643675][   T30] audit: type=1400 audit(1721591125.008:159): avc:  denied  { create } for  pid=613 comm="syz.1.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   36.664698][   T30] audit: type=1400 audit(1721591125.008:160): avc:  denied  { write } for  pid=613 comm="syz.1.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   36.684483][   T30] audit: type=1400 audit(1721591125.008:161): avc:  denied  { nlmsg_write } for  pid=613 comm="syz.1.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   36.689542][  T616] loop1: detected capacity change from 0 to 512
[   36.720169][  T365] device bridge_slave_1 left promiscuous mode
[   36.726185][  T365] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.733603][  T365] device bridge_slave_0 left promiscuous mode
[   36.739671][  T365] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.740476][  T616] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[   36.753580][  T616] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   36.761773][  T365] device veth1_macvtap left promiscuous mode
[   36.762189][  T616] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b016c118, mo2=0002]
[   36.767644][  T365] device veth0_vlan left promiscuous mode
[   36.780952][  T616] System zones: 1-12
[   36.785569][  T616] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.95: corrupted in-inode xattr
[   36.797544][  T616] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.95: couldn't read orphan inode 15 (err -117)
[   36.809318][  T616] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,grpquota,,errors=continue. Quota mode: writeback.
[   36.850969][  T616] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz.1.95: dx entry: limit 124 != root limit 123
[   36.862801][  T616] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz.1.95: Corrupt directory, running e2fsck is recommended
[   36.881302][  T295] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor: dx entry: limit 124 != root limit 123
[   36.893219][  T295] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor: Corrupt directory, running e2fsck is recommended
[   36.906295][  T295] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   36.921757][  T295] EXT4-fs error (device loop1): ext4_readdir:220: inode #2: comm syz-executor: path /11/file0: directory fails checksum at offset 1024
[   36.935649][  T295] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[   36.951291][  T295] EXT4-fs error (device loop1): ext4_readdir:220: inode #2: comm syz-executor: path /11/file0: directory fails checksum at offset 2048
[   36.965373][  T295] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor: dx entry: limit 124 != root limit 123
[   36.977359][  T295] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor: Corrupt directory, running e2fsck is recommended
[   37.058855][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   37.101563][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   37.110740][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   37.122289][  T587] device veth0_vlan entered promiscuous mode
[   37.122709][  T295] syz-executor (295) used greatest stack depth: 19424 bytes left
[   37.138161][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   37.145804][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   37.157928][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   37.165125][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   37.189560][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   37.197784][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   37.223547][  T587] device veth1_macvtap entered promiscuous mode
[   37.240195][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   37.247669][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   37.255636][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   37.277240][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   37.285383][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   37.293604][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   37.300806][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   37.317070][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   37.325168][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   37.333198][  T557] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.340039][  T557] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.347749][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   37.355806][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   37.363630][   T60] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   37.371054][  T557] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.377887][  T557] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.385033][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   37.392761][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   37.400486][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   37.408328][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   37.422306][  T623] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.429197][  T623] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.436353][  T623] device bridge_slave_0 entered promiscuous mode
[   37.443687][  T623] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.450558][  T623] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.457768][  T623] device bridge_slave_1 entered promiscuous mode
[   37.467741][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   37.480931][  T598] device veth0_vlan entered promiscuous mode
[   37.492671][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   37.495314][   T30] audit: type=1400 audit(1721591125.858:162): avc:  denied  { mount } for  pid=587 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   37.502526][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   37.529912][   T30] audit: type=1400 audit(1721591125.898:163): avc:  denied  { mounton } for  pid=587 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   37.541517][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   37.560634][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   37.593591][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   37.603003][  T598] device veth1_macvtap entered promiscuous mode
[   37.624214][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   37.632973][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   37.659237][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   37.667534][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   37.735126][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   37.757557][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   37.775846][  T317] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.782710][  T317] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.808452][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   37.816556][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.823422][  T317] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.838020][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   37.846642][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   37.854663][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   37.866991][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   37.887395][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   37.930974][   T60] usb 4-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[   37.967980][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   38.047863][   T60] usb 4-1: config 0 descriptor??
[   38.114374][  T623] device veth0_vlan entered promiscuous mode
[   38.122217][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   38.130549][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   38.139527][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   38.147629][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   38.178401][  T623] device veth1_macvtap entered promiscuous mode
[   38.187051][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   38.195005][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   38.207045][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   38.227006][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   38.235814][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   38.245889][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   38.254998][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   38.470828][   T30] audit: type=1400 audit(1721591126.838:164): avc:  denied  { write } for  pid=644 comm="syz.0.102" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.498965][  T365] device bridge_slave_1 left promiscuous mode
[   38.505981][  T365] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.506302][   T30] audit: type=1400 audit(1721591126.838:165): avc:  denied  { add_name } for  pid=644 comm="syz.0.102" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.533313][  T365] device bridge_slave_0 left promiscuous mode
[   38.548700][   T30] audit: type=1400 audit(1721591126.838:166): avc:  denied  { associate } for  pid=644 comm="syz.0.102" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   38.548728][  T365] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.571803][   T60] hid-rmi 0003:06CB:81A7.0002: item fetching failed at offset 3/5
[   38.586622][   T60] hid-rmi 0003:06CB:81A7.0002: parse failed
[   38.623016][  T365] device bridge_slave_1 left promiscuous mode
[   38.638546][   T30] audit: type=1400 audit(1721591127.008:167): avc:  denied  { append } for  pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   38.660503][  T365] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.671079][   T60] hid-rmi: probe of 0003:06CB:81A7.0002 failed with error -22
[   38.678704][  T365] device bridge_slave_0 left promiscuous mode
[   38.684732][  T365] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.694153][  T365] device veth1_macvtap left promiscuous mode
[   38.701857][  T365] device veth0_vlan left promiscuous mode
[   38.720259][  T365] device veth1_macvtap left promiscuous mode
[   38.732153][  T365] device veth0_vlan left promiscuous mode
[   38.772698][  T344] usb 4-1: USB disconnect, device number 2
[   38.801742][  T647] loop0: detected capacity change from 0 to 40427
[   38.823882][  T647] F2FS-fs (loop0): Found nat_bits in checkpoint
[   38.865186][  T647] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   38.972136][  T662] loop2: detected capacity change from 0 to 256
[   39.013577][  T662] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[   39.375800][  T674] loop3: detected capacity change from 0 to 512
[   39.497139][  T677] attempt to access beyond end of device
[   39.497139][  T677] loop2: rw=0, want=304, limit=256
[   39.580761][  T674] EXT4-fs (loop3): Encoding requested by superblock is unknown
[   39.640494][  T587] attempt to access beyond end of device
[   39.640494][  T587] loop0: rw=2049, want=45104, limit=40427
[   39.739730][  T680] loop1: detected capacity change from 0 to 2048
[   39.759505][  T683] loop3: detected capacity change from 0 to 512
[   39.855596][  T680] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   39.883223][  T683] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.117: inode #1: comm syz.3.117: iget: illegal inode #
[   39.936945][  T683] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.117: error while reading EA inode 1 err=-117
[   39.939451][  T680] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   39.997372][  T680] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   40.011380][  T680] EXT4-fs (loop1): This should not happen!! Data will be lost
[   40.011380][  T680] 
[   40.021256][  T680] EXT4-fs (loop1): Total free blocks count 0
[   40.028383][  T680] EXT4-fs (loop1): Free/Dirty block details
[   40.034666][  T680] EXT4-fs (loop1): free_blocks=2415919104
[   40.040328][  T680] EXT4-fs (loop1): dirty_blocks=16
[   40.045379][  T680] EXT4-fs (loop1): Block reservation details
[   40.051293][  T680] EXT4-fs (loop1): i_reserved_data_blocks=1
[   40.052481][  T683] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   40.097361][  T683] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.117: inode #1: comm syz.3.117: iget: illegal inode #
[   40.117021][  T683] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.117: error while reading EA inode 1 err=-117
[   40.133690][  T683] EXT4-fs (loop3): 1 orphan inode deleted
[   40.139484][  T683] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,,errors=continue. Quota mode: writeback.
[   40.222382][  T294] EXT4-fs error (device loop3): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[   40.254423][  T678] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   40.275135][  T678] EXT4-fs (loop1): This should not happen!! Data will be lost
[   40.275135][  T678] 
[   40.275218][  T294] EXT4-fs error (device loop3): ext4_lookup:1859: inode #2: comm syz-executor: deleted inode referenced: 15
[   40.346261][  T294] EXT4-fs error (device loop3): ext4_lookup:1859: inode #2: comm syz-executor: deleted inode referenced: 15
[   40.811307][  T712] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.818484][  T712] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.826462][  T712] device bridge_slave_0 entered promiscuous mode
[   40.837212][  T712] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.858985][  T712] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.875359][  T712] device bridge_slave_1 entered promiscuous mode
[   41.036362][  T712] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.043254][  T712] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.050349][  T712] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.057130][  T712] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.107715][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.121249][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.138737][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.157853][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.168981][  T557] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.172282][  T736] loop4: detected capacity change from 0 to 8192
[   41.175826][  T557] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.189312][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.197478][  T557] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.204328][  T557] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.217786][  T678] device bridge_slave_1 left promiscuous mode
[   41.224302][  T678] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.232651][  T678] device bridge_slave_0 left promiscuous mode
[   41.238859][  T678] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.247707][  T678] device veth1_macvtap left promiscuous mode
[   41.253649][  T678] device veth0_vlan left promiscuous mode
[   41.453332][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   41.461594][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   41.485082][  T712] device veth0_vlan entered promiscuous mode
[   41.492671][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   41.501436][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   41.509623][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   41.518386][  T557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   41.532932][  T712] device veth1_macvtap entered promiscuous mode
[   41.540849][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   41.548483][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   41.555528][   T30] kauditd_printk_skb: 18 callbacks suppressed
[   41.555541][   T30] audit: type=1400 audit(1721591129.918:186): avc:  denied  { create } for  pid=750 comm="syz.1.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   41.581346][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   41.590342][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   41.598528][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   41.612831][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   41.621134][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   41.629393][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   41.637657][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   41.658200][  T299] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   41.916746][  T299] usb 5-1: Using ep0 maxpacket: 16
[   42.066783][  T299] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   42.086744][  T299] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   42.099664][  T299] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   42.108712][  T299] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   42.120565][  T299] usb 5-1: config 0 descriptor??
[   42.303026][   T30] audit: type=1400 audit(1721591130.668:187): avc:  denied  { create } for  pid=769 comm="syz.2.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.323137][   T30] audit: type=1400 audit(1721591130.668:188): avc:  denied  { write } for  pid=769 comm="syz.2.143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.348259][   T30] audit: type=1400 audit(1721591130.718:189): avc:  denied  { read } for  pid=774 comm="syz.2.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.368710][   T30] audit: type=1400 audit(1721591130.728:190): avc:  denied  { ioctl } for  pid=774 comm="syz.2.145" path="socket:[16987]" dev="sockfs" ino=16987 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.389086][  T777] loop2: detected capacity change from 0 to 2048
[   42.488157][  T777] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   42.504099][  T777] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   42.518859][  T777] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   42.531036][  T777] EXT4-fs (loop2): This should not happen!! Data will be lost
[   42.531036][  T777] 
[   42.540781][  T777] EXT4-fs (loop2): Total free blocks count 0
[   42.546602][  T777] EXT4-fs (loop2): Free/Dirty block details
[   42.552345][  T777] EXT4-fs (loop2): free_blocks=2415919104
[   42.557881][  T777] EXT4-fs (loop2): dirty_blocks=16
[   42.562843][  T777] EXT4-fs (loop2): Block reservation details
[   42.568740][  T777] EXT4-fs (loop2): i_reserved_data_blocks=1
[   42.584093][  T360] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   42.596150][  T360] EXT4-fs (loop2): This should not happen!! Data will be lost
[   42.596150][  T360] 
[   42.611293][  T299] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0003/input/input4
[   42.626498][   T30] audit: type=1400 audit(1721591130.988:191): avc:  denied  { name_bind } for  pid=781 comm="syz.1.148" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   42.648272][   T30] audit: type=1400 audit(1721591130.998:192): avc:  denied  { node_bind } for  pid=781 comm="syz.1.148" saddr=224.0.0.1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   42.718306][  T299] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[   42.913351][  T800] loop0: detected capacity change from 0 to 256
[   42.975071][   T30] audit: type=1400 audit(1721591131.338:193): avc:  denied  { mount } for  pid=799 comm="syz.0.155" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   43.015709][   T60] usb 5-1: USB disconnect, device number 2
[   43.027202][   T30] audit: type=1400 audit(1721591131.378:194): avc:  denied  { unmount } for  pid=587 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   43.622013][  T845] loop1: detected capacity change from 0 to 2048
[   43.678167][  T845] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   43.693363][  T845] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   43.708650][  T845] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   43.720680][  T845] EXT4-fs (loop1): This should not happen!! Data will be lost
[   43.720680][  T845] 
[   43.730116][  T845] EXT4-fs (loop1): Total free blocks count 0
[   43.735920][  T845] EXT4-fs (loop1): Free/Dirty block details
[   43.741794][  T845] EXT4-fs (loop1): free_blocks=2415919104
[   43.747380][  T845] EXT4-fs (loop1): dirty_blocks=16
[   43.752362][  T845] EXT4-fs (loop1): Block reservation details
[   43.758125][  T845] EXT4-fs (loop1): i_reserved_data_blocks=1
[   43.773779][  T360] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   43.785898][  T360] EXT4-fs (loop1): This should not happen!! Data will be lost
[   43.785898][  T360] 
[   43.831858][   T30] audit: type=1400 audit(1721591132.198:195): avc:  denied  { read write } for  pid=858 comm="syz.4.176" name="uinput" dev="devtmpfs" ino=166 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   43.861386][  T863] fuse: Unknown parameter 'rootmo'
[   45.206856][   T20] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   45.476847][   T20] usb 4-1: Using ep0 maxpacket: 16
[   45.686819][   T20] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   45.697782][   T20] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   45.710737][   T20] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   45.726807][   T20] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   45.735502][   T20] usb 4-1: config 0 descriptor??
[   45.896783][  T299] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   46.239185][   T20] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0004/input/input7
[   46.316822][  T299] usb 1-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[   46.327296][   T20] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[   46.341069][  T299] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   46.351936][  T299] usb 1-1: config 0 descriptor??
[   46.669616][  T299] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[   46.679425][  T299] asix: probe of 1-1:0.0 failed with error -61
[   46.689704][  T557] usb 4-1: USB disconnect, device number 3
[   46.868302][   T60] usb 1-1: USB disconnect, device number 3
[   46.965803][   T30] kauditd_printk_skb: 22 callbacks suppressed
[   46.965818][   T30] audit: type=1400 audit(1721591135.328:218): avc:  denied  { map } for  pid=925 comm="syz.1.197" path="/dev/ashmem" dev="devtmpfs" ino=173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   47.597485][   T30] audit: type=1326 audit(1721591135.968:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.622124][   T30] audit: type=1326 audit(1721591135.978:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.645617][   T30] audit: type=1326 audit(1721591135.978:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.669433][   T30] audit: type=1326 audit(1721591135.978:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.693009][   T30] audit: type=1326 audit(1721591135.978:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.716861][   T30] audit: type=1326 audit(1721591135.978:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f446a54663c code=0x7ffc0000
[   47.740118][   T30] audit: type=1326 audit(1721591135.978:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.763309][   T30] audit: type=1326 audit(1721591135.978:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   47.906188][   T30] audit: type=1326 audit(1721591135.978:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=941 comm="syz.0.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f446a547b59 code=0x7ffc0000
[   48.200577][  T955] fuse: Unknown parameter 'rootmo'
[   50.472282][  T587] ------------[ cut here ]------------
[   50.477988][  T587] WARNING: CPU: 0 PID: 587 at fs/inode.c:307 drop_nlink+0xc1/0x110
[   50.536864][  T587] Modules linked in:
[   50.540654][  T587] CPU: 1 PID: 587 Comm: syz-executor Not tainted 5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   50.744248][  T587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   50.755169][  T587] RIP: 0010:drop_nlink+0xc1/0x110
[   50.760558][  T587] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 c7 f8 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 ff bc ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[   51.246765][  T587] RSP: 0018:ffffc90000b37c88 EFLAGS: 00010293
[   51.252779][  T587] RAX: ffffffff81c17ac1 RBX: 0000000000000000 RCX: ffff8881148fe2c0
[   51.345527][  T587] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   51.356395][  T587] RBP: ffffc90000b37cb0 R08: ffffffff81c17a44 R09: 0000000000000003
[   51.369764][  T712] ------------[ cut here ]------------
[   51.375029][  T712] WARNING: CPU: 0 PID: 712 at fs/inode.c:307 drop_nlink+0xc1/0x110
[   51.392453][  T587] R10: fffff52000166f80 R11: dffffc0000000001 R12: dffffc0000000000
[   51.401103][  T712] Modules linked in:
[   51.404812][  T712] CPU: 0 PID: 712 Comm: syz-executor Not tainted 5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   51.414888][  T587] R13: 1ffff11025069d5f R14: ffff88812834eab0 R15: ffff88812834eaf8
[   51.423160][  T587] FS:  00005555564a8500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   51.432232][  T712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   51.443046][  T587] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   51.449605][  T712] RIP: 0010:drop_nlink+0xc1/0x110
[   51.454529][  T587] CR2: 0000000020004e40 CR3: 0000000113ca6000 CR4: 00000000003506b0
[   51.462509][  T712] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 c7 f8 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 ff bc ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[   51.482162][  T587] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   51.490086][  T587] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   51.498121][  T712] RSP: 0018:ffffc900009e7c88 EFLAGS: 00010293
[   51.504043][  T587] Call Trace:
[   51.507317][  T587]  <TASK>
[   51.518594][  T712] RAX: ffffffff81c17ac1 RBX: 0000000000000000 RCX: ffff88810aa22780
[   51.530977][  T587]  ? show_regs+0x58/0x60
[   51.549203][  T587]  ? __warn+0x160/0x2f0
[   51.550841][  T712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   51.557359][  T587]  ? drop_nlink+0xc1/0x110
[   51.562944][  T712] RBP: ffffc900009e7cb0 R08: ffffffff81c17a44 R09: 0000000000000003
[   51.566864][  T587]  ? report_bug+0x3d9/0x5b0
[   51.573278][  T712] R10: fffff5200013cf80 R11: dffffc0000000001 R12: dffffc0000000000
[   51.596454][  T587]  ? drop_nlink+0xc1/0x110
[   51.601046][  T587]  ? handle_bug+0x41/0x70
[   51.605265][  T587]  ? exc_invalid_op+0x1b/0x50
[   51.610166][  T587]  ? asm_exc_invalid_op+0x1b/0x20
[   51.615070][  T587]  ? drop_nlink+0x44/0x110
[   51.619522][  T587]  ? drop_nlink+0xc1/0x110
[   51.623794][  T587]  ? drop_nlink+0xc1/0x110
[   51.628510][  T587]  ? drop_nlink+0xc1/0x110
[   51.632811][  T587]  shmem_rmdir+0x59/0x90
[   51.637389][  T587]  vfs_rmdir+0x324/0x470
[   51.641510][  T587]  incfs_kill_sb+0x113/0x230
[   51.645939][  T587]  deactivate_locked_super+0xad/0x110
[   51.652556][  T587]  deactivate_super+0xbe/0xf0
[   51.653931][  T712] R13: 1ffff1102393b655 R14: ffff88811c9db260 R15: ffff88811c9db2a8
[   51.665069][  T712] FS:  00005555569a6500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   51.689165][  T712] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   51.695550][  T712] CR2: 00007fc56e74dfa8 CR3: 0000000120421000 CR4: 00000000003506a0
[   51.703439][  T712] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   51.711193][  T712] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   51.719036][  T712] Call Trace:
[   51.722108][  T712]  <TASK>
[   51.724865][  T587]  cleanup_mnt+0x45c/0x510
[   51.724886][  T712]  ? show_regs+0x58/0x60
[   51.729908][  T587]  __cleanup_mnt+0x19/0x20
[   51.733289][  T712]  ? __warn+0x160/0x2f0
[   51.741553][  T587]  task_work_run+0x129/0x190
[   51.745938][  T587]  exit_to_user_mode_loop+0xc4/0xe0
[   51.751343][  T587]  exit_to_user_mode_prepare+0x5a/0xa0
[   51.756685][  T712]  ? drop_nlink+0xc1/0x110
[   51.760944][  T712]  ? report_bug+0x3d9/0x5b0
[   51.765361][  T587]  syscall_exit_to_user_mode+0x26/0x160
[   51.771126][  T712]  ? drop_nlink+0xc1/0x110
[   51.775480][  T587]  do_syscall_64+0x49/0xb0
[   51.780903][  T712]  ? handle_bug+0x41/0x70
[   51.851862][  T587]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   51.858506][  T712]  ? exc_invalid_op+0x1b/0x50
[   51.863750][  T587] RIP: 0033:0x7f446a548e87
[   51.869219][  T712]  ? asm_exc_invalid_op+0x1b/0x20
[   51.874419][  T587] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   51.921987][  T712]  ? drop_nlink+0x44/0x110
[   51.926294][  T712]  ? drop_nlink+0xc1/0x110
[   51.930556][  T712]  ? drop_nlink+0xc1/0x110
[   51.934792][  T712]  ? drop_nlink+0xc1/0x110
[   51.939058][  T712]  shmem_rmdir+0x59/0x90
[   51.943126][  T712]  vfs_rmdir+0x324/0x470
[   51.947211][  T712]  incfs_kill_sb+0x113/0x230
[   51.951631][  T712]  deactivate_locked_super+0xad/0x110
[   51.956844][  T712]  deactivate_super+0xbe/0xf0
[   51.961352][  T712]  cleanup_mnt+0x45c/0x510
[   51.965609][  T712]  __cleanup_mnt+0x19/0x20
[   51.969864][  T712]  task_work_run+0x129/0x190
[   51.974287][  T712]  exit_to_user_mode_loop+0xc4/0xe0
[   51.979326][  T712]  exit_to_user_mode_prepare+0x5a/0xa0
[   51.984621][  T712]  syscall_exit_to_user_mode+0x26/0x160
[   51.990116][  T587] RSP: 002b:00007ffd5c2b69c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   51.999574][  T712]  do_syscall_64+0x49/0xb0
[   52.003982][  T587] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f446a548e87
[   52.011851][  T712]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.019815][  T712] RIP: 0033:0x7f55b81e7e87
[   52.024130][  T587] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5c2b6a80
[   52.028999][  T712] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   52.035301][  T587] RBP: 00007ffd5c2b6a80 R08: 0000000000000000 R09: 0000000000000000
[   52.059280][  T712] RSP: 002b:00007ffc39afa648 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   52.060693][  T587] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5c2b7b40
[   52.067530][  T712] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f55b81e7e87
[   52.075652][  T587] R13: 00007f446a5b544c R14: 000000000000c181 R15: 000000000000c134
[   52.083141][  T712] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc39afa700
[   52.083155][  T712] RBP: 00007ffc39afa700 R08: 0000000000000000 R09: 0000000000000000
[   52.083177][  T712] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffc39afb7c0
[   52.091277][  T587]  </TASK>
[   52.098763][  T712] R13: 00007f55b825444c R14: 000000000000c81a R15: 000000000000c4e5
[   52.098782][  T712]  </TASK>
[   52.106850][  T587] ---[ end trace 630d859b34aec55d ]---
[   52.114450][  T712] ---[ end trace 630d859b34aec55e ]---
[   52.117526][  T587] ==================================================================
[   52.125122][  T712] BUG: kernel NULL pointer dereference, address: 0000000000000170
[   52.127912][  T587] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[   52.133204][  T712] #PF: supervisor write access in kernel mode
[   52.138499][  T587] Write of size 4 at addr 0000000000000170 by task syz-executor/587
[   52.146398][  T712] #PF: error_code(0x0002) - not-present page
[   52.154035][  T587] 
[   52.154042][  T587] CPU: 0 PID: 587 Comm: syz-executor Tainted: G        W         5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   52.160198][  T712] PGD 126a1c067 
[   52.166100][  T587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   52.173910][  T712] P4D 126a1c067 
[   52.179725][  T587] Call Trace:
[   52.179732][  T587]  <TASK>
[   52.181896][  T712] PUD 0 
[   52.193095][  T587]  dump_stack_lvl+0x151/0x1b7
[   52.196480][  T712] Oops: 0002 [#1] PREEMPT SMP KASAN
[   52.206375][  T587]  ? io_uring_drop_tctx_refs+0x190/0x190
[   52.209759][  T712] CPU: 1 PID: 712 Comm: syz-executor Tainted: G        W         5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   52.212882][  T587]  ? _raw_spin_lock+0xa4/0x1b0
[   52.215657][  T712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   52.218348][  T587]  ? _raw_spin_trylock_bh+0x190/0x190
[   52.222865][  T712] RIP: 0010:ihold+0x25/0x60
[   52.227900][  T587]  kasan_report+0x16f/0x1c0
[   52.233365][  T712] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 11 b5 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 94 b8 ae
[   52.244560][  T587]  ? ihold+0x20/0x60
[   52.249159][  T712] RSP: 0018:ffffc900009e7cc8 EFLAGS: 00010202
[   52.259058][  T587]  ? ihold+0x20/0x60
[   52.264263][  T712] 
[   52.264268][  T712] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81c182c0
[   52.268602][  T587]  kasan_check_range+0x293/0x2a0
[   52.272942][  T712] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170
[   52.292387][  T587]  __kasan_check_write+0x14/0x20
[   52.296116][  T712] RBP: ffffc900009e7cd8 R08: ffffffff81bdf397 R09: ffffed1021f64450
[   52.302017][  T587]  ihold+0x20/0x60
[   52.305750][  T712] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   52.307920][  T587]  vfs_rmdir+0x201/0x470
[   52.315734][  T712] R13: ffff88812366f770 R14: 0000000000000000 R15: 1ffff110246cdef4
[   52.320513][  T587]  incfs_kill_sb+0x113/0x230
[   52.328317][  T712] FS:  00005555569a6500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   52.333091][  T587]  deactivate_locked_super+0xad/0x110
[   52.340902][  T712] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.344461][  T587]  deactivate_super+0xbe/0xf0
[   52.352270][  T712] CR2: 0000000000000170 CR3: 0000000120421000 CR4: 00000000003506a0
[   52.356353][  T587]  cleanup_mnt+0x45c/0x510
[   52.364165][  T712] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.368590][  T587]  __cleanup_mnt+0x19/0x20
[   52.377353][  T712] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.382561][  T587]  task_work_run+0x129/0x190
[   52.388985][  T712] Call Trace:
[   52.388991][  T712]  <TASK>
[   52.393500][  T587]  exit_to_user_mode_loop+0xc4/0xe0
[   52.401310][  T712]  ? __die_body+0x62/0xb0
[   52.405562][  T587]  exit_to_user_mode_prepare+0x5a/0xa0
[   52.413375][  T712]  ? __die+0x7e/0x90
[   52.417641][  T587]  syscall_exit_to_user_mode+0x26/0x160
[   52.425441][  T712]  ? page_fault_oops+0x7f9/0xa90
[   52.429867][  T587]  do_syscall_64+0x49/0xb0
[   52.432993][  T712]  ? kernelmode_fixup_or_oops+0x270/0x270
[   52.435803][  T587]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.440812][  T712]  ? __kasan_check_read+0x11/0x20
[   52.444965][  T587] RIP: 0033:0x7f446a548e87
[   52.450275][  T712]  ? call_rcu+0xd90/0x1310
[   52.453998][  T587] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   52.459379][  T712]  ? exc_page_fault+0x521/0x830
[   52.464149][  T587] RSP: 002b:00007ffd5c2b69c8 EFLAGS: 00000246
[   52.468406][  T712]  ? asm_exc_page_fault+0x27/0x30
[   52.473957][  T587]  ORIG_RAX: 00000000000000a6
[   52.479695][  T712]  ? vfs_rmdir+0x1d7/0x470
[   52.484545][  T587] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f446a548e87
[   52.488798][  T712]  ? ihold+0x20/0x60
[   52.493052][  T587] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5c2b6a80
[   52.512491][  T712]  ? ihold+0x25/0x60
[   52.517185][  T587] RBP: 00007ffd5c2b6a80 R08: 0000000000000000 R09: 0000000000000000
[   52.523212][  T712]  ? ihold+0x20/0x60
[   52.528067][  T587] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5c2b7b40
[   52.532580][  T712]  vfs_rmdir+0x201/0x470
[   52.536834][  T587] R13: 00007f446a5b544c R14: 000000000000c181 R15: 000000000000c134
[   52.544644][  T712]  incfs_kill_sb+0x113/0x230
[   52.548381][  T587]  </TASK>
[   52.556188][  T712]  deactivate_locked_super+0xad/0x110
[   52.559919][  T587] ==================================================================
[   52.611656][  T712]  deactivate_super+0xbe/0xf0
[   52.616164][  T712]  cleanup_mnt+0x45c/0x510
[   52.620423][  T712]  __cleanup_mnt+0x19/0x20
[   52.624672][  T712]  task_work_run+0x129/0x190
[   52.629095][  T712]  exit_to_user_mode_loop+0xc4/0xe0
[   52.634127][  T712]  exit_to_user_mode_prepare+0x5a/0xa0
[   52.639429][  T712]  syscall_exit_to_user_mode+0x26/0x160
[   52.644890][  T712]  do_syscall_64+0x49/0xb0
[   52.649141][  T712]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.654874][  T712] RIP: 0033:0x7f55b81e7e87
[   52.659124][  T712] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   52.678565][  T712] RSP: 002b:00007ffc39afa648 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[   52.686810][  T712] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f55b81e7e87
[   52.694621][  T712] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc39afa700
[   52.702432][  T712] RBP: 00007ffc39afa700 R08: 0000000000000000 R09: 0000000000000000
[   52.710244][  T712] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffc39afb7c0
[   52.718055][  T712] R13: 00007f55b825444c R14: 000000000000c81a R15: 000000000000c4e5
[   52.725872][  T712]  </TASK>
[   52.728735][  T712] Modules linked in:
[   52.732476][  T712] CR2: 0000000000000170
[   52.736469][  T712] ---[ end trace 630d859b34aec55f ]---
[   52.736494][  T587] BUG: kernel NULL pointer dereference, address: 0000000000000170
[   52.741752][  T712] RIP: 0010:ihold+0x25/0x60
[   52.749389][  T587] #PF: supervisor write access in kernel mode
[   52.753729][  T712] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 11 b5 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 94 b8 ae
[   52.759632][  T587] #PF: error_code(0x0002) - not-present page
[   52.779072][  T712] RSP: 0018:ffffc900009e7cc8 EFLAGS: 00010202
[   52.784887][  T587] PGD 117485067 P4D 117485067 PUD 0 
[   52.790791][  T712] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81c182c0
[   52.790804][  T712] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170
[   52.795912][  T587] 
[   52.795917][  T587] Oops: 0002 [#2] PREEMPT SMP KASAN
[   52.803720][  T712] RBP: ffffc900009e7cd8 R08: ffffffff81bdf397 R09: ffffed1021f64450
[   52.811541][  T587] CPU: 0 PID: 587 Comm: syz-executor Tainted: G    B D W         5.15.151-syzkaller-00415-gdb06c48ab67e #0
[   52.813703][  T712] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   52.818738][  T587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   52.826548][  T712] R13: ffff88812366f770 R14: 0000000000000000 R15: 1ffff110246cdef4
[   52.837747][  T587] RIP: 0010:ihold+0x25/0x60
[   52.845556][  T712] FS:  00005555569a6500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   52.855623][  T587] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 11 b5 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 94 b8 ae
[   52.863538][  T712] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.867878][  T587] RSP: 0018:ffffc90000b37cc8 EFLAGS: 00010246
[   52.876644][  T712] CR2: 0000000000000170 CR3: 0000000120421000 CR4: 00000000003506a0
[   52.896088][  T587] 
[   52.896093][  T587] RAX: ffff8881148fe200 RBX: 0000000000000001 RCX: ffff8881148fe2c0
[   52.902508][  T712] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.908408][  T587] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[   52.916220][  T712] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.918390][  T587] RBP: ffffc90000b37cd8 R08: ffffffff8141703b R09: 0000000000000003
[   52.926210][  T712] Kernel panic - not syncing: Fatal exception
[   52.934014][  T587] R10: fffffbfff0e5284c R11: dffffc0000000001 R12: dffffc0000000000
[   52.971162][  T587] R13: ffff88810f9d8220 R14: 0000000000000000 R15: 1ffff11021f3b04a
[   52.978975][  T587] FS:  00005555564a8500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   52.987739][  T587] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.994162][  T587] CR2: 0000000000000170 CR3: 0000000113ca6000 CR4: 00000000003506b0
[   53.001976][  T587] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   53.009784][  T587] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   53.017596][  T587] Call Trace:
[   53.020722][  T587]  <TASK>
[   53.023501][  T587]  ? __die_body+0x62/0xb0
[   53.027745][  T587]  ? __die+0x7e/0x90
[   53.031399][  T587]  ? page_fault_oops+0x7f9/0xa90
[   53.036171][  T587]  ? __kasan_check_write+0x14/0x20
[   53.041121][  T587]  ? kernelmode_fixup_or_oops+0x270/0x270
[   53.046677][  T587]  ? __schedule+0xcd4/0x1590
[   53.051103][  T587]  ? show_trace_log_lvl+0x269/0x380
[   53.056135][  T587]  ? exc_page_fault+0x521/0x830
[   53.060831][  T587]  ? asm_exc_page_fault+0x27/0x30
[   53.065686][  T587]  ? check_panic_on_warn+0x5b/0xb0
[   53.070630][  T587]  ? ihold+0x25/0x60
[   53.074401][  T587]  ? ihold+0x20/0x60
[   53.078177][  T587]  vfs_rmdir+0x201/0x470
[   53.082265][  T587]  incfs_kill_sb+0x113/0x230
[   53.086684][  T587]  deactivate_locked_super+0xad/0x110
[   53.091894][  T587]  deactivate_super+0xbe/0xf0
[   53.096407][  T587]  cleanup_mnt+0x45c/0x510
[   53.100664][  T587]  __cleanup_mnt+0x19/0x20
[   53.104912][  T587]  task_work_run+0x129/0x190
[   53.109343][  T587]  exit_to_user_mode_loop+0xc4/0xe0
[   53.114373][  T587]  exit_to_user_mode_prepare+0x5a/0xa0
[   53.119667][  T587]  syscall_exit_to_user_mode+0x26/0x160
[   53.125045][  T587]  do_syscall_64+0x49/0xb0
[   53.129299][  T587]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.135032][  T587] RIP: 0033:0x7f446a548e87
[   53.139284][  T587] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   53.158723][  T587] RSP: 002b:00007ffd5c2b69c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   53.166968][  T587] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f446a548e87
[   53.174782][  T587] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5c2b6a80
[   53.182593][  T587] RBP: 00007ffd5c2b6a80 R08: 0000000000000000 R09: 0000000000000000
[   53.190402][  T587] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5c2b7b40
[   53.198216][  T587] R13: 00007f446a5b544c R14: 000000000000c181 R15: 000000000000c134
[   53.206029][  T587]  </TASK>
[   53.208892][  T587] Modules linked in:
[   53.212624][  T587] CR2: 0000000000000170
[   53.216618][  T587] ---[ end trace 630d859b34aec560 ]---
[   53.221912][  T587] RIP: 0010:ihold+0x25/0x60
[   53.226246][  T587] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 11 b5 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 94 b8 ae
[   53.245691][  T587] RSP: 0018:ffffc900009e7cc8 EFLAGS: 00010202
[   53.251592][  T587] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81c182c0
[   53.259406][  T587] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170
[   53.267218][  T587] RBP: ffffc900009e7cd8 R08: ffffffff81bdf397 R09: ffffed1021f64450
[   53.275028][  T587] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   53.282843][  T587] R13: ffff88812366f770 R14: 0000000000000000 R15: 1ffff110246cdef4
[   53.290646][  T587] FS:  00005555564a8500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   53.299415][  T587] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   53.305836][  T587] CR2: 0000000000000170 CR3: 0000000113ca6000 CR4: 00000000003506b0
[   53.313651][  T587] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   53.321462][  T587] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   54.134408][  T712] Shutting down cpus with NMI
[   54.139178][  T712] Kernel Offset: disabled
[   54.143299][  T712] Rebooting in 86400 seconds..