last executing test programs:

1m6.003893901s ago: executing program 32 (id=31):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x1b)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xf, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)

1m0.564488352s ago: executing program 33 (id=98):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000000)="0fb3162f00760c66360f09ded926f36df30f7fed66b9630300000f320f01c90fc75e00ba430066b84b00000066ef", 0x2e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0xdddd1000, 0x10000})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0x0, 0x0, {}, {}, {}, {}, 0x400000}}}})

54.6213849s ago: executing program 5 (id=178):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, 0x0)
syz_fuse_handle_req(r2, 0x0, 0x0, 0x0)
io_cancel(0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

54.384295639s ago: executing program 5 (id=182):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = getpid()
ioprio_set$pid(0x2, r3, 0x4004)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

54.140312118s ago: executing program 5 (id=185):
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[], 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
r4 = memfd_create(&(0x7f0000000000)='\xff\x00l\x1e\xa0</\x00\x8e._\x14zC\x9a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-\xe2\xc7\xd3\xe6M^\x98\x85x\x14\t\xe9Q1\x1dK\x9a\x045\xd3\x17\xb22\x00D(\xd2\xdd\xa0\xff\x1f\x00\x00\n\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xe36g\xfd\xd2\xd4\xe3\x1f\xa6\xc6\xe2\xa6!\x9aE<2`]<\xf2R?8\xb8\xa3\xbf\xc3\x18s\xf7!~0\xc7y\xe2\xb2VP\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yxm\x96\xbfS\x97\x9c/\x1f5i\xc6\x861\x8a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd26<Z|U6\r\xd7\x18\xad\x1d`\x06\xcfN\a\xf9\xd7 \x1a\xd8\xef\xb6\x9e8Z\t:#r\xa2\xb1h\xc0\xc0a\xa9\xc46A\x01\xac\xe6\xbf !5I\xc9<\x19{)\xa4\xad\v\x923\b\x9d\xbd>,\xc1\x8d\\Rxt\'\xb6\xbf\xc8*\n\xaf\x1b\xec\xfd\xbbY\x99\xb3\x06c\xd6\xf6\xb0\xcd=\xf3\x03`\x93\xff\x05e\xaa$\x00\xeaw\xd9\x10\x0f\x1d\x888\x8cS\x12?R\x99\xda7\xce)\x8f\xcc\x87\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd32J\xd7\x9f\xea:=\xcc\x17(|L\xda\xc3\x1ca\xe8s\xb6\xebw\xc7\xabS\xd7pJ\xd2\xa1\xcf\xae\x1f2\x9f\x98\xa80\r\x85\xb4\x86\xbc\xd0\xea\xbf\xb1Z\xb7e$\xcf<\ra\x9b\xa5\xdc\v\x1e\xfd\xc7\x91\xf22\xcf\x96\x99\xc1\xbb\xa1j\xe5\xa8\x7f\a\xa9\xa7G\xad\xa3\x8b\xf1\xdb\\]R\x8cf\xac1\xd7V\xaf\xb5\x8e\x10\x95\x9f=2\xd0-\xe1K:\xc3b\x89\x15OS\xa5\x98Ky\x12\xe7Qt#\xeb\x99\a\x10\x1c\xb3N\x85\xeb\x80\x05\x82_\x15\xdc\xbc\xf93\xdd\xf5g\x98\xd4\x8az\xe4`\xa5\x00\x00\x00\x00\xcd\x13\xfc+\xac\xe5\x8bI\f\xd6\x89\xc7HY\xcf\x00O\x88\xe6\x8b\x8bF/\x82u\xffCnG\x02\x82\xfc\xe9Od\x92\x06\xdeg@y\xa6=4\xb1}\xa8Yr\xad9\xb9b)\xec}\x87=\x91:IV\xab\xdf\xa2\xba+6D\x1fuf\xdeJYw$L\xa1\x83NH\xe3\xf2\x91\x8cW\xb7\b\x04\x12\x8b\x8bV\x19\xf1\r\xcb\x94\xa3\xf4\xe4\x97$\x99c\rG\xd7#\xe2\xfd\x80\xadR\x83\xdc\xb8d\x15|\xac\xb8g$\x0f@\xca3\x9f\xb1\xea\xc6vQ\x1b\xdb#\xa3\"\x9f\x9e\xd8\xba\x13d\x9bx\x9a\xbf\xee\xf2kQ\xe0\xc4/~7\xcd\xd1\x06\xe5\x17\x9b\bW|\xbc\x86D\x05\xaf<\xdfy,I2f\xa7G\xe3Qp<\'6 x\n\x94f\xf8\xa2\xea\xf4\xa5\x9eY\xf80C\x91\x7f\x16u\x8c(Xl\x90\xd2\x9f\xa9\xb9kJy[\x93\xfe{\xe5\x1a\xe9\xb7T\x19;\xb9\t\xe7\x0ei\xfaZ\xfbS:\x9b\xc1r\xcbM.\xf8\xb8wR\xb3p~b\xcb\v1-\a-\x8a#\xaa1\xa9\x9a\x88\a\xc5\xb9*\xd3?\xac\n\x9c\xcd\xe2\xc9\xbd\xeb\xb3\xf65\xbdaP\t\xd6\x06\x1c\xeeNg\x92>\x92>\xaf\b3\x05\xfdM\xd2F\v\xbd\xeb\x83 \x9d\x90S\x11w\xefg\\\xca\xe2\xfc~w\xbe\xefh#\x96\xa5h\xec\xbfr\xc8Bi\x90\"(\xf2\xc6\xcc\xfbX\x14{\x9e5\x87\x91\xe2\x9b\xd4\xc6\xc2whk+\x0f\x82\xca\xc1@\xcb~P\xe4\x18\xf9E\'\xab\xc7z\xd7\x05V{\xa1X\xa3\x10\x13.]tlz\x12\xde\xf2\xa43\xee#\x92J~\xda \x9b\xc4\xc0V\xb3\x9dCO\x1fu\x1c4\x1d\v}\x1b\xe5>w\xfbsm\xa3\fI|\x96-p\x86\xd3O\xfa\x9a\x8f\xb2\x8e\x88qGEG', 0x6)
ftruncate(r4, 0x800000)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="14000200fe8000000000000000000000000000aa08000900"], 0x48}}, 0x0)

54.080586607s ago: executing program 5 (id=186):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000001700)=0x4)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYRESDEC], 0x9, 0x2a8, &(0x7f0000000500)="$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")
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mount$bind(0x0, &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x1217880, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)

53.965681766s ago: executing program 5 (id=187):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000011c0)={{r2}, &(0x7f0000001140), &(0x7f0000001180)='%+9llu \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

53.836524296s ago: executing program 5 (id=191):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

53.835739866s ago: executing program 34 (id=191):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

53.415297824s ago: executing program 1 (id=205):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000180)=@gcm_256={{0x304}, "49258a4bd282d3e1", "b3c97f661ba7d1b2598d7406004b9023499f874df7284d1b46314e964b1fb54f", "579c08c7", "91795560826ee75c"}, 0x38)
writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000380)='2', 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close(r2)

53.229192153s ago: executing program 1 (id=206):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1}, 0x6e)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
connect$unix(r1, &(0x7f0000000080)=@file={0x1}, 0x6e)
close(r0)

53.197015852s ago: executing program 1 (id=207):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_handle={0x77682a85, 0x1}, @flat=@weak_binder={0x77622a85, 0xa, 0x1}}, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000bc0)={0x44, 0x0, &(0x7f0000000a00)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x15, 0x0, 0x0}}], 0x1, 0x1000000, &(0x7f0000000b00)="90"})

53.164979982s ago: executing program 1 (id=209):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1000006, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d3174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c8c536f64df3ead70943de5d656df13bb45b52f00"/219, @ANYRESOCT], 0x1, 0x370, &(0x7f0000000900)="$eJzs3U9oHNUfAPDvZDa7SeH3a26iIKzeBA1tb3qxRVIo5qKy+OcgLjZV2UQhwWB7aBIPikfBo568KejBg3gUQRFvHrxaQaviQXMrWHwyO7Oz2+zmXzFq8fOBTr/73vvO+87ssDtZsi/PnI7e+em4sL19NWZmsmicfuh0XMtiLvIY2Ixxzf42m9QFAPzLXUspfkulA6ZkR1wSAHDE+u//z0VEO+bKllc/32t88u4PALe86uf/2b3GzOzW8dKRlAQAHLGxz//vvqG72f/XGDxsjPxWAABwq3rsyacePrMY8Wi7PROx8vp6Z70TDwz7z1yIF2I5luJEHI/rEeWNQrHJ+tuz5xYXWhGxET/ORScipqrETnmncCbv57fiZN1T322klPKzHy0unGz3RcTmRn/+WMnWO9NxrJr/22OxNLzxmBsUEf3NucWFU+1qB52VQf5GxNbwc4ui/vk4Hl8/W+8mpWYVLS5cPjlVPRjmr3dacb4+C7t+AgIAAAAAAAAAAAAAAAAAAAAAADdlvl2bq9fPScX/5Uo58/MT+vvr45T51fpAW+X6QKmVIqVfX7mv80Ye9fpAJyasz7NuIUEAAAAAAAAAAAAAAAAAAACorV1sRnd5eWl17eKl3miwsbp2cSoiipYXv/zgs9kYH7NP0CinaEXUU7SraS/1uikfDE55xHh6Xkw+aHnv47ri0TGt+igmltGa3LUdRfC/u75/e9h1Zz7Y8x/DwXlMPsB8pIwHd0y68v+ypMOcqDo4NdrSGp/9SkpppOW10fTLT4/vMLKIxuGfuEu9qdh9TCqCL64+f/vg7Hc/TaV77j3++JW33v25112OLH6Y7T+DzdW166nXzQaDD3dailM9aMmiDLLRK6GxV/rWjS3d/Jtfnrjjza8ONnsabXm5uJ53jMnLw/lwZ3qzDIoyi6A5vFpmh+nT1UEsL01PuPj3C27iOb3tnU/eT+m7n/YZnA1OeFVfUf3U2MtG9pe+CAEAAAAAAAAAAAAAAAAAAH0j3xWvVF/2nd4r6/5Hjr4yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPj7DP/+/0iwtRk7Wg4S/L4xIau1tLoW0fynDxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP+4PwMAAP//KJZVEw==")
fallocate(0xffffffffffffffff, 0x0, 0x2, 0x1000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000005c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000001900), 0x1, 0x762, &(0x7f0000001180)="$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")
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x0)
ptrace$poke(0x5, r1, &(0x7f0000000080), 0xffffffff)
open(0x0, 0x0, 0x0)

52.884693711s ago: executing program 1 (id=210):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r4, &(0x7f0000000180), 0x40010)

52.80943597s ago: executing program 1 (id=212):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="f8000000160001000000000000000000fc010000000000000000000000000000ac1414bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0100"/13], 0xf8}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
sendmsg$nl_route_sched_retired(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@delqdisc={0x3c, 0x25, 0x20, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xffe0, 0xfff2}, {0x8, 0x1}, {0xf, 0x1}}, [@q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfffb}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

52.77892585s ago: executing program 35 (id=212):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="f8000000160001000000000000000000fc010000000000000000000000000000ac1414bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0100"/13], 0xf8}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
sendmsg$nl_route_sched_retired(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@delqdisc={0x3c, 0x25, 0x20, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xffe0, 0xfff2}, {0x8, 0x1}, {0xf, 0x1}}, [@q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfffb}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

51.925298016s ago: executing program 8 (id=213):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = dup(r4)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

51.524551914s ago: executing program 8 (id=229):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe80, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000002b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x400, &(0x7f00000001c0), 0xfd, 0x25c, &(0x7f0000000b40)="$eJzs3U9oFFccB/Df7J9u04SStpdC6R8opbSBkB4KhV7aSwuBUkIphSpERDxJIsQEb1lPXjzoWSUnL0G8GT17CV4Er1FziBcPBg8GD3pY2Z1d2Ww2GLPZHcl8PrCZ9/LezHsD832ZHGY2gNwajYjfIqIYEWMRUY6IpL3DN+lntFldGlqdjqjV/nmWNPql9VRrv+GIqEbELxGlVtvCypGNF2t/fn9hvvzdtZX/hwZ1fu02N9b/2rr69/mbkz8tFCKiEhEjzbb28zhISZfflZKIT/sx2HsiKWU9A/Zi6uyNB/XcfxYR3zbyX45CM7IX5z64U44fr+y276Wn978Y5FyBg1erlet/A6s1IHcKjXvgpDAeEWm5UBgfT+/hHxaTODU7d2bs5Oz8zImsVyrgACTV9P/e9T9uV24Nd+T/STHN/5783OeZAn1Rz/+/U8uP6uWtYtazAQbiy3RTz//YscUfQv4hd+Qf8kv+Ib/kHw6BfWZX/iG/5B/yS/7hECu3CtWuzfIP+SX/kF8d+c/keVwgG+35BwDypVbJ+glkICtZrz8AAAAAAAAAAAAAAAAAAMBOS0Or063PoMa8ezli8/eIKG0fv9JoLTa+jzjiw8bPj54n9W5vJOluPTn6dY8H6NH1jJ++/vhxtuPf+6o/xz23vbrru+0WZyKq9c4TpdLO6z9pXn/798lb2svHexzgHSUd9V//G+z4nV4tZzv+5FqzMNFt/SvE541t9/VnpP0Vy/t0+mWPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBgXgcAAP//ygBpzg==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB='defcontext=u'])

51.138657062s ago: executing program 8 (id=235):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
setxattr(0x0, 0x0, 0x0, 0x0, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000010018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
sendfile(r1, r0, 0x0, 0x3ffff)

51.004656021s ago: executing program 8 (id=238):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001868000000000000000000080000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
syz_emit_ethernet(0x36, &(0x7f0000000180)={@link_local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @private=0xa010102}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r1, &(0x7f0000000180)=ANY=[], 0x240)

51.004322961s ago: executing program 36 (id=238):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001868000000000000000000080000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
syz_emit_ethernet(0x36, &(0x7f0000000180)={@link_local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @private=0xa010102}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r1, &(0x7f0000000180)=ANY=[], 0x240)

50.366343488s ago: executing program 6 (id=248):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='kfree\x00', r0}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fgetxattr(r1, &(0x7f0000000100)=@known='security.selinux\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x4, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x40fd)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0)

50.300782857s ago: executing program 6 (id=251):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = dup3(r1, r0, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

50.173130546s ago: executing program 6 (id=252):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xb79, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

50.125223456s ago: executing program 6 (id=254):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x40040, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x9101a, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000003480)={0x2020}, 0x2020)

50.105692336s ago: executing program 6 (id=255):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dcbeec0696c37b64e3b24da3183dbe97e805165c0f63cdc2e82818254950ee03568b88091e6a86450545c0e18e09"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r1, r0, 0x2, 0x0, @void}, 0x10)
bpf$LINK_DETACH(0x22, &(0x7f0000000380)=r2, 0x4)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r3, &(0x7f00000002c0), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

50.032178806s ago: executing program 6 (id=259):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
setsockopt$sock_attach_bpf(r2, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)

50.016363396s ago: executing program 37 (id=259):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
setsockopt$sock_attach_bpf(r2, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)

48.645775378s ago: executing program 7 (id=285):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(0xffffffffffffffff, 0x4068aea3, &(0x7f00000004c0)={0xbe, 0x0, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000540)={[0x8aba, 0xca26, 0x4, 0xd646, 0x7, 0xf, 0x6, 0x1ff, 0x7ff, 0x8, 0x8000000000000001, 0x2, 0xffff, 0x101, 0x5, 0x1], 0x8000000, 0x141200})
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x4)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

48.540468238s ago: executing program 7 (id=286):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f0000000000)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016f64b4ef8a9cedaf6bec340dee49474360b24cb8", 0x0, 0x48)

47.660696883s ago: executing program 7 (id=307):
pipe2$9p(&(0x7f0000002180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000900)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = dup(r1)
write$FUSE_BMAP(r3, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000700)=ANY=[@ANYBLOB="3801"], 0x138)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000300)={0x120, 0x0, 0x0, [{{0x0, 0x0, 0x0, 0x0, 0x0, 0x672321cc}, {0x0, 0x0, 0x74, 0x0, '\xcdSu\xbe`h\xbehM\x16>\x87\xba\x01#\xcb\xc2\x00I\xb3\xdf\xdfSt;rO\xa6\xac\xddo\xfd\xd5\xb58kz\xdb\xaf\x95\xfca\xde\xa9N\x0f\x921\xa50}I\xc0\xec\xdf\xac%\"\xeb,\xe5\xd1w0\xa8\xa0z\xfb\xf0\xad\xa66\x84d\xd3\xe6\xe7\xee\x14\x9dK\xa6\xd6T\xac\xe7\xc7\v\xeb\x84\xc9:\\\x89A\x9a\xe8\xb5pe\x16\xaf\x0fS\xe4\v\x8ea\xe0\xb1\xde\xed\x8a\a\x9f\xb9'}}]}, 0x120)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000008c0)=ANY=[@ANYBLOB="10000000000000e0"], 0x10)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
lgetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000480)=ANY=[@ANYBLOB='user.t'], 0x0, 0x300)

47.659136253s ago: executing program 7 (id=309):
syz_mount_image$exfat(&(0x7f0000000380), &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0x14fe, &(0x7f0000002ac0)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
mount$incfs(&(0x7f0000000240)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
statx(r0, &(0x7f0000000280)='.\x00', 0x0, 0x5ff, &(0x7f0000000440))
truncate(&(0x7f0000000080)='./file1\x00', 0xf000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x145802, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000200)='y', 0xf4240}], 0x1, 0x0, 0x0, 0x0)

47.440813162s ago: executing program 7 (id=311):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000840)={{r1}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x9200000000000000)
umount2(&(0x7f0000000000)='./file0\x00', 0x1)

47.428737532s ago: executing program 7 (id=313):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='console\x00', r1}, 0xf)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000000000000040000000080"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

47.406017782s ago: executing program 38 (id=313):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='console\x00', r1}, 0xf)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000000000000040000000080"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

15.392388411s ago: executing program 9 (id=780):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r1, 0x0)

15.347028311s ago: executing program 9 (id=782):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = dup3(r1, r0, 0x0)
recvmmsg(r4, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

15.22733514s ago: executing program 9 (id=784):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0xa, [@union={0x9, 0x4, 0x0, 0x5, 0x1, 0x4, [{0xb, 0x2, 0x7ff}, {0xc, 0x1, 0x3}, {0x6, 0x0, 0x4}, {0x6, 0x1, 0x80000001}]}, @decl_tag={0xb, 0x0, 0x0, 0x11, 0x1, 0xa}]}, {0x0, [0x61, 0x5f, 0x0, 0x5f, 0x61, 0x2e, 0x30, 0x2e]}}, &(0x7f0000000280)=""/170, 0x6e, 0xaa, 0x1, 0x7ff, 0x10000, @value}, 0x28)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}, 0x73}], 0x1, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10000000, 0xfffffffffffffffe, 0x100, 0x0, 0x0, 0x5]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15.17244752s ago: executing program 9 (id=785):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a00)=@newtaction={0x18, 0x30, 0x12f, 0x4000, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
open_tree(r3, &(0x7f0000000100)='\x00', 0x89901)

15.17182625s ago: executing program 9 (id=786):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000001340)='./file0/../file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/../file0\x00')
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000240)='./file0\x00')
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x61)
lseek(r0, 0x100, 0x0)

15.040785639s ago: executing program 9 (id=787):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe2b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.439986177s ago: executing program 2 (id=992):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x8000, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x1000007f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x7, 0x4, 0x3c5b, 0x1, 0x24, 0xffffffff, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x80010000, 0x242, 0x3, 0xe, 0x0, 0x71, 0x7, 0x7, 0x3, 0x0, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x10001, 0x12f, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x5, 0x5f31, 0x4, 0x0, 0x2, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x7, 0x8000, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x3, 0x3, 0x4, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x8], [0x7, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x3, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x20000, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0x0, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7f, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xc, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1.423399147s ago: executing program 2 (id=993):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

1.340688257s ago: executing program 2 (id=995):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1430, 0x7bb, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0xf, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0xf1}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/stat\x00')
fstat(r1, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='kmem_cache_free\x00', r3}, 0x10)
poll(0x0, 0x0, 0x5)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f00000000c0), 0x21, 0x4b4, &(0x7f0000000a00)="$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")
quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f0000000540)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000580)={0x1, 0xec, 0x0, 0x5})

1.289656786s ago: executing program 0 (id=996):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x3, 0x7, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000004e8100000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000200)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
shutdown(r2, 0x0)
connect$unix(r2, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
r4 = accept(r3, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000002240)="00a2a0", 0x3, 0x20044800, 0x0, 0x0)

1.280375416s ago: executing program 0 (id=997):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$key(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x90)
open_tree(0xffffffffffffff9c, 0x0, 0x80001)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001f7ff04b7050000040000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c061c6238975d43a4505f80e39c9f3c530cf08e467b592f868ee3b0a435df0a0e8c1bf176db2a6b2feb4b77d3d5707bfd2d84aaa3b1d4e984c46ea7e2b347a36f5662403e1b2be4284322a4908a0d411a9872971c7c56f0979bd10b97163c066d0e196bf0fb04e500b0c0502df9de9ca3c00cb9a323d9b401bf4e418d07fa22f0610a70f2bdf4000200000000b0c2c125080963f63223b7b80197aa3161f45346b100000000000000000089e399f6609876b588743794298b79dc192dff048fc207c81f28bdd3e26a1a8a0481e9f0da43bb6ca66e2f55a9ff19ffcafe3e64be06000000000000005064caec04a367c23d9fb6a6991ddb737d527d6acb15426406991c3b404984dfa2c6e94bd0339454c13ad3c328a182c15dc760a313e3b3ca5d3393404029e98fa883c71949a34d84030323e3d54fc5b29d27643453ad9226e3550ee5520211d9370175fba303f003073afd1ec9f7c6133f260c6882a146880b9387f1beb5418618bc83a3becf9bb5d80eff7da7ba8b913c685fc6700848dc6665d73248c1f74e08ad04ce905faf32706e0000249a028044ede964362cfb2f30a246c3b2f60000fc4deb91da1368b0960b8d69bd99c64893d44f962524429dc0584b8e7e541c903869d96989b9a986620cb2c95c83f2a082c52764f49e51188f9418b01bcd8ae164acdac95318ec8b2c6feacdcf4b528e5e58219bc54f6ad5679e7f430e6960ed048c46e1dccca05bfa1d67c83795eae2d31968c055d325a9c794ef88b30c2de4a274878b73c05ffa88b7073be648b12bb1fee58958d6a6f31bfe568215dfbde59dad00008a73b40f09cf018cd496b36050d7fd45e3620c28f76749262e33e16429a6da35ceb1a989de81c3f8b8bc348ef2ac3781b847611fcb0a26acafdd6d9a1b17dcb9f7c493d8f8cd344a1d470ca0d6f16ab0293774b5509fb0e7113936d59d5a60dbd84a938476adeebab9ff44f531bb0200000000000000cc1fbc455a64fd449284f71761092a0302000000000000008a05d36fd9b814b4292745418c92d944763a4bf5e138d810e29a31f08f7dea7762d2d8f7e1d24cabe17ad4135d8872935ceac6eb4f046f2acc1b0efb4438abddcabb4e4e72a450aab72b589bec83bbb688e659fb426cd43d0ee993516fd4e867232cde69b6ffad447dcd92e0ef8234ff850ec3948dd1fa7afb77d951fe4abf618121b7894c106beb49a71c62df5544ef221973432ccc7e62b151eb898a01010a7ec5acd0a5dcb2de443880c8a682515d1da9a3048744acb44384d1591df789883c0560495cb0cb32283529926d25e5c7f481112ab8a82247e927fb6f256830dab3671f00500d36a17790bab7d0e89e6c15314f2b963bfc867953476b0505c7d728326d666f39e82cfcf7e7a85df288d75df24c5e4d529c349923f9a4fb882310391dd58b4cbd8def239a227724d39c3e6c40e20e07e68a2288ff000000000000002bcb37f302487bcbd93ccf3a104021ff34ddf7ffcca1a04eae963e25516a114573779b24a341dfb2e80f1f345c6d96493ffc2a18478b5bf3aab2ea59c51cf0678e1a57d0ea042d911548ff612002ddb2d54d42fbdde42b56887003d27468225b2594a05044baf314113e889468cf13dd92aa0d7744db6b56557a5adad95cb9a69d4de50642b4b9d6d3ba7eb534b00d0fea62f0a61535dfc4da06e7f8695be614c557caed7eb0160516e1351fed7d8ffa31c8f4be364185469cfc5f25c90d71bce745dd2d58a30e0844f12c4cbbdd7a08465e665c2620d78673dfb6d9263ed7def8924cfcd48a8a3534f1a3eac9ee9f18a18106ba3d7c7a62330f5c0e98cb7982dd7bad02c8dba9c13894185bfc4bd2520b6e2043fcb3fc5eb55ecf9e6e363ea2ac40a14a6f00f0ffffa0fdb6487c51ef12c2e88beeb5aa6f6a4151cfb90644e50630ed474df7d1635afcb1ea3f6c47b5acbba2ce5099a9387c7acb9bbd1da497613174f76a656ba5bacccbb58dddaf9a3510d65383829a51e0f41e661fa80ca1eaaa6cf0824305ba4ec80400c50ffe83ccb0e6fef321190c58aca8c7c8c6d26ff5cbc2cadebda8e1219e04f8dacffd33db1a0a2e74c9eb978d80a12d0b5327bfd053000000000000000000be0d02a14708504412fa93d335992b2983c5addc191b4a21c7b340d0536b01958e15315eb5f3f9f4992c18f666359f40295fa73284c4b607669bae75bd68c3e2b770c324a0ab26b6065d7e95a7bd80052db57506ec7cc861bf3998d07484c66630ca8173fea3f06ed1dfc70a8b90418e2dc76137e0f68cb1c8a908aef9f0f85647dba54e05028c33d94d463fb20d2e7547184b8d3611e45dff02144387f342ef9b9bf650e9d049bf65258a7bc094a6965e24611c077e1ca0891362a9d68f3ec7610c0449acf18459500f024f9b75885cd79ba32776e4a511c8a4ad922b000000000002ef507ec6fc7f5dc431b9d8cbd9003972bf1dc6a71bedad8e19efc3edd2a7a7e555d5f3176af69920471e6e5bcb8966c813c132d65e2b99d3015e06b372e1aefaae14ee3fbc6349af362c19b59c214de66912d1a9a98d92dc197a51c29443de62caca334c46d110e50896fe50d0477771d387f40c8ef05750ca651e6e69a237dcf78666d6ab2bda1f853525494e4efdd93be38bb5fc671f8794002d7a951fd336aaf4ed1166cb459df70218c571ba1c40b028234505e5477e268326af8812c2fbb8785a223fce0a0601c2a3b58bea8c6216eadabcabe86ab46e4cd3d58ef7ce8d3c4b0bc5952e81dfc0a490d8568db6f9c51fe703c6864fae0053d2f91f49e977cdc1962dbc28c29471a72199862bc8fc6e211d13d8579cab4fba94b2b613c9b8148d05e0690a4c4ab35aabc45801d2b82081e62b23a01b58b1ffb624f63ad2246796796160cd3682374364edac52f1becb7c6eff50823b75fb2ef516ec4ec1cb20a2535b504502d744f2099674e58f2c117c980cf0d041c8ea5c4f166bab4aa5ed200ef4dcff96f7c9c1ab8c22db0f439b23b04bcd41ffc3a0e01976ca1cf43e12d7d72f3faa4979faabd62e2dc54a980eae4d5e8c6498de331c3aba1144ef1190ea6cda641d9416c4560cab2d819eac7b04c70f141754c3ffd79da363fe8859afee531710caf1b2bf5a51142f4755cbb700c28083525a9093790096cb93417f1216000000000000000000000000000040ceb244e4cae2b65a76d41793aabccd3d0c50486eae6793e1f54814a8ee2779c14ca94759266200229b58c12279817869e831cade7b09ddffffff9d93e2ad25eed43c0b9ee4fd209b5b919a42f676b9d7236fc8dd5040899d0676291407ce9ac8101dd3512f5b3ac8cf8179d1749de324000030d0f942ec4604c28d5c287d1435956784003a53eb5fe535ead88d7acf0166dbd9f30a9b9c8a9b9faf1356faf269cded935b07863e4fdad8aab52686c81babd1c08f6700a2fadd413443022ea5c774ffefdd426abed08d437a4db48611fc82a18ab9f54758a1aad86d95cd186ceb55fafa3930090467b8b7bb8ae7e1c8b4b4106a381cb67fdb86def4de2076dc538bb97502b4b4350e633dc0a53c2fc9a01bc5cfae0245f1fab843c633446f5f3a43226109b7dafe7815773bd6969f04cbe15236b90000000000000000000000000000000000000000000000000000ff0779b9c005da21073c6d9680d4e547cb727addb2efe11b8b3a706569f1522b57d71bb0beccab7c8fe9e1330b2f501b2ac3cf4eba7ceda6ff8a0c8b18c5e9e2f505e833217557abb257d61a73a758543651b250f8d8ef9c8481bb28a137d15040b0181c28dfad7c17b30c452a64c43a117cb948247c33abc765a6ba695c3cea5e32a4d1ae2dcbec2ff4268e03aad15efc6004e6b3d7f0edf8b5d4ae7846a6d43c16c90b7c5dc13ac2ff0439ab693498964cad2bb533bcd240778b7e49145c48efde42b44c01517f1a7c7707b4c4fc0900e7086ec40354504590696282286db9030f0320e2fcba8723939005347b3c99e3f1310d41ab328c1f351b3f744ff1973431000000000000000000000000000000000000003495d69aaf9a1d83e83511a3bf44fe753b8ad83bc34ea4d46b397e000fd267c50122aa5aaf8474ec2e57d960d963900bef84a4b3c7dd01ae4d6b5522aa8a35ae7996e298bcfe3f31a34e3e12c58cf172a4d3677a67b52041ec21ae8003aa1c9969178b1b00e4d12ac9741fd788fb6260ec043c013907523c77f8acc20b9e2fd224ca8f21fab2b10991881e0a12f4e1c4f54b9ca7c9a0c8298d60b8b6eaa023418992d6d62b0e9faca4a3b3a845e859137cd933ef5eb8db16f159f32505725da51414562d064b551246dacd586f42d04d3fed3c087bb52ae4bc09f3846c785d1b278e661ed01fbc2415288bc9c808c4aef648d431b3029da0dec8886c3ee9cad996843d00a3b5eb54e270dd2e96c8f2fdb4c27c2d1bd467f2a14867dec67730d8a68329839d9feff688dfbe25c73f936338e7b057980dc58a6303d95f17712d667d5a1066ae457ae32925ce658b559c1182a74e267da57fe25b19153f1cdebaddf3f7a3479c09f2303dff449c0513b552a75ed48215cc31264a6ff648a95daa0d599dbce303b3b5307572df30429a3b4b115cab0a018f2501272048dd9e69877535e20078e7c28a98f26ace7a266bdc15ce904f25ec7fb2434ee7b5b69bed702ba1e7ed72942f452f1a98a2d949450091075efa823b11f5f5eccd921c04c7c15a5a05750cd85b1300fc00ce275de7559e117f87cb6c3c9a4b9f96149e3fcffa44d7000000000000000000d43d07d546acb7009c0c4f6e57b8577d2113bfca1939b9bf757265e175c1863a7c8d7640675830dc11d5d59546daf2385a7074f770c8333b21e2fb660141bc4f1ed45f703da6ac2557ab6952fd0c300000000000000000005b44bff4e3966fdfc9b720412bec09936b08e440c774e2224f2d338fab2acc5014f74e420988486de2ace27ce59379378ca34eeedbd9a323a889f295e5d3bae64fc48ba194fc70973b39525123668e6a0be1e732aa5e2a0d4373a0b76d84f018d45bdf6f12d6d5d23a0331c3ae5e99a2bcdb52386135ea15890007e1cba5e52a04971139272012ae5542ba109a9d2f49963a195e2fdffe6bdce6fa78ab2ded1ff74f9e54f1b82da2d444f9727be708710b90a872282f4dce55468a681e"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r1, 0x18000000000002a0, 0x204, 0x2e, &(0x7f0000000040)="5aee41dea43e63a3f7fb7f11c72b", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.221768216s ago: executing program 0 (id=998):
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x87, 0x6}}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0xc0, 0xb9, 0xff}}], {{0x9, 0x5, 0x82, 0x2, 0x8, 0x0, 0xfd}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x0, 0xa}}}}}]}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0x550c, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r3}], 0x2c, 0xffffffffffbffff8)
dup2(r2, r3)
fcntl$setown(r2, 0x8, r1)
tkill(r1, 0x13)

811.967364ms ago: executing program 2 (id=1010):
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000100)={{0x1}})
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x204410, &(0x7f0000000740), 0xfe, 0x4a1, &(0x7f00000001c0)="$eJzs3M1vVFUbAPDn3mnLN+3Li6h8SBWNjR8tLags3Gh0p4mJLnBjUttCKgM1tCRCiFZjcGlI3BvdGKJ/gSvdGHVl4lb3hoQoMQFdmDF35t4yU2ZKW6YdcH6/5JZz5p7pOc+ce+499x6mAXStwexHErE1In6JiP5atrHAYO2f61fPT/x19fxEEpXKq78n1XLXrp6fKIoW79uSZ4bSiPTDJK+k0ezZcyfGy+Wp03l+ZO7k2yOzZ889OX1y/PjU8alTY0eOHD40+szTY0+1Jc4srmu7353Zm/S8fvHliaMX3/zhqzQidu2r7a+P47akWxaSg1ngf1SqFhd7pC2V3Tm21aWTng42hBUpRUTWXb3V8d8fpbjRef3x4gcdbRywprJr04bWu+crwH9YEp1uAdAZxYU+u/8ttnWaetwRrjxXuwHK4r6eb7U9PZHmZXrXsP77IuLo/N+fZlvk/fDP1jWsEADoet9k858nms3/0thVV257voYyEBH/i4gdEfH/iNgZEfdEVMvem89nVqK2NFRayN88/0wvrzq4Zcjmf8/ma1uN879i9hcDpTy3rRp/b3Jsujx1MP9MhqJ3Q5YfXaKOb1/4+eNW+wbr5n/ZltVfzAXzdlzuWfSAbnJ8brxdk9Ir70fs7mkWf7KwEpBExP0RsXtlv3p7kZh+7NLeVoVuHf8S2rDOVPks4tFa/8/HovgLydLrkyMbozx1cKQ4Km72408XXmle+8bbi78Nsv7f3Hj8LyrR/2dSv147u/I6Lvz6Uct7ytUe/33Ja9Ux2Ze/9s743Nzp0Yi+5KVqvuH1sRvvLfJF+Sz+oQPNx/+O/D1Z/HsiIjuI90XEAxGxP2/7gxHxUEQcWCL+759/+K0VxT+9vv0/2fT8t3D8DzT2/8oTpRPffd2q/jz+4mTbov8PV1ND+SvV898ttG5OlKciKpVVH80AAABw98luvLdGkg4vpNN0eLj2f/h3xua0PDM79/ixmTOnJmvfERiI3rR40tWfPw/N7rZHk/n8N9aej47lz4qL56WH8ufGn5Q2VfPDEzPlyQ7HDt1uS4vxn/mt1OnWAWvO97Wgey0e/2mH2gGsP9d/6F7GP3Qv4x+6V934//LMhT3VxHvVn/sXdjRdC1jiL4cAd4dF1/9Ln3eqIcC6M/+H7mX8Q/cy/qEr3c73+juT2JS3/FaF+zrf1NUlvuidLWXx1e1KeiI637DGRKRLlXkjmu8ajIg1aljcER9LuxPJMg715SaOHc+HznIKd/KsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0D7/BgAA//9ajd4t")
ptrace$setregs(0xd, r1, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r1, 0x200, 0x0)
syz_usb_connect(0x3, 0x4f, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000a6ff0540cdabeecdb9050000000109023d0c020000000009049c00030103510009ff0900000040000009050313000000000003270103"], 0x0)

644.574273ms ago: executing program 4 (id=1005):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

559.032732ms ago: executing program 4 (id=1006):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="08f272f808af"})
timer_create(0x7, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8923, &(0x7f0000000000)={'vlan1\x00', @broadcast})

521.935682ms ago: executing program 4 (id=1007):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3477, 0x0, 0x0, 0x0, 0x8}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7535}}]}, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
close(r1)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8947, &(0x7f0000000000)={'bridge_slave_0\x00', @random="0800e4ff00"})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000900))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000000)="b9ff060000000000000014f088a8", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x66)

507.232912ms ago: executing program 0 (id=1009):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x6e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x2, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1}, {0x0, 0xb7f, 0x0, 0x0, 0x0, 0x3, 0x1f, 0x0, 0x0, 0x0, 0x40}, {0x0, 0x0, 0x40, 0x0, 0x0, 0x1}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffc], 0x0, 0x200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

488.223182ms ago: executing program 0 (id=1011):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000040)={[{@test_dummy_encryption}, {@i_version}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff85, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000005000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x580000a, 0x13, r4, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)='$', 0x100000}], 0x2, 0x1400, 0x0, 0x3)

487.880442ms ago: executing program 3 (id=1012):
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x61000880)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x81a, &(0x7f0000000180)=ANY=[@ANYRESOCT=r1, @ANYRES64=r0], 0x1, 0x2aa, &(0x7f0000000580)="$eJzs3cFqK2UUAOAzSZpGXSSIG0VwQBeuyq1bN41yBbErJYK60OC9FyQJhRYCVjB21Sdw6Xv4CG7c+AaCW8Fdu6iMTGamSWhSQ40p9H7f6jD/f86czF/SVc589fpo8OQoibOL36PVSqJ2EAdxmUQnalH5IRoBADwcl1kWf2V3yWzUNt8NALANxf//wn33AgBsxyefff5R9/Dw8cdp2opX2+fjXhIRo/Nxr1jvPotvYhhP41G04yoiu1bEH3x4+Dgaaa4Tb40m416eOfry17J+98+Iaf5+tKOzPH8/LczlT8a9nXgx0ug+26labccry/PfWZIfvWa8/eZc/3vRjt++jqMYxpPIc2f53++n6fvZjxfffZHfJs9PatHbne6byerbPBcAAAAAAAAAAAAAAAAAAAAAAB62vTRNivE90/k9+aVy/k79arq+l1Y6i/N5ivykKlTMB8qiHNEzyeKnar7OozRNs3LjLL8RrzW8WAAAAAAAAAAAAAAAAAAAAAByJ9+eDvrD4dPjjQTVNIDqZ/13rXMwd+WNOB3066sL7q5/r/lpA3mvt26ORiM29Fj+LXgh72fjlXdnh/tpFEF1MBu918vvFUVPB/20XKoe8qCfRLN64MvTW9XB/Ty/1IzFzcl1wXUby6Z/ElfZ4pm2rltdzGpu6Gk0X1q69HeWZevVefeP4ozKK8l0xMZ6d98pg6UfMA9aN8/9l9UFV35l1P/TFw4AAAAAAAAAAAAAAAAAALDS7Ee/SxbPbk2t/W9NAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCWzd7/XwWtiFi8ciOYlMm37SmDZhyf3PNHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4DnwTwAAAP//0hxJIw==")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
writev(r2, &(0x7f0000000300)=[{&(0x7f0000000c00)="89feee6c58000000000000", 0xb}, {&(0x7f0000000440)="c2c10b", 0x3}], 0x2)

448.054191ms ago: executing program 0 (id=1013):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0xffffffff)
accept4(r1, 0x0, 0x0, 0x80000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)

422.127391ms ago: executing program 3 (id=1014):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000002180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000900)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000700)=ANY=[@ANYBLOB="3801"], 0x138)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000300)={0x120, 0x0, 0x0, [{{0x0, 0x0, 0x0, 0x0, 0x0, 0x672321cc}, {0x0, 0x0, 0x74, 0x0, '\xcdSu\xbe`h\xbehM\x16>\x87\xba\x01#\xcb\xc2\x00I\xb3\xdf\xdfSt;rO\xa6\xac\xddo\xfd\xd5\xb58kz\xdb\xaf\x95\xfca\xde\xa9N\x0f\x921\xa50}I\xc0\xec\xdf\xac%\"\xeb,\xe5\xd1w0\xa8\xa0z\xfb\xf0\xad\xa66\x84d\xd3\xe6\xe7\xee\x14\x9dK\xa6\xd6T\xac\xe7\xc7\v\xeb\x84\xc9:\\\x89A\x9a\xe8\xb5pe\x16\xaf\x0fS\xe4\v\x8ea\xe0\xb1\xde\xed\x8a\a\x9f\xb9'}}]}, 0x120)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
lgetxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000480)=ANY=[@ANYBLOB='user.t'], 0x0, 0x300)

409.825831ms ago: executing program 3 (id=1015):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = getpid()
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_pidfd_open(r1, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000004c0)="e0"})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000380)={0xc, 0x0, &(0x7f0000000b80)=[@free_buffer], 0x0, 0x0, 0x0})

393.810071ms ago: executing program 3 (id=1016):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x40, &(0x7f0000000780)=ANY=[@ANYBLOB='nfs=stale_rw,dots,nodots,dots,nodots,dots,dots,nodots,nodots,dots,dots,nodots,nodots,check=relaxed,flush,usefree,dots,dots,nodots,errors=continue,\x00'], 0x1, 0x1f0, &(0x7f0000000240)="$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")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
syz_emit_ethernet(0x80, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth1_vlan\x00', <r1=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x640b}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x101}]}, &(0x7f0000000040)='syzkaller\x00', 0x1, 0xd6, &(0x7f0000000280)=""/214, 0x41100, 0x22, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000200)={0x4, 0xf, 0x1f7}, 0x10, 0x0, 0x0, 0x1, 0xfffffffffffffffc, &(0x7f0000000380)=[{0x1, 0x1, 0xc}], 0x10, 0x2, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000001200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100f3fffffffe7f00000300000018000180040002800e0001006574683a766c616e30"], 0x2c}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r4, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00', {}, 0x40})

393.006011ms ago: executing program 4 (id=1026):
pivot_root(0x0, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x11000)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0xfffffa84, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
vmsplice(r1, &(0x7f0000000700)=[{&(0x7f0000000100)="04", 0x1}], 0x1, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

351.820051ms ago: executing program 3 (id=1017):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r2, r4, 0x1, 0x0, @void}, 0x10)
r5 = socket(0x8000000010, 0x2, 0x0)
write(r5, &(0x7f00000002c0)="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", 0xfc)

267.842181ms ago: executing program 2 (id=1018):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

267.140041ms ago: executing program 4 (id=1029):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_read_part_table(0x5c0, &(0x7f0000000000)="$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")
r3 = dup(r2)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x4000)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000bc0)=[@textreal={0x8, 0x0}], 0x1, 0x25, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000b00)=ANY=[@ANYRES16=r0])
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000ac0)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@bsdgroups}]}, 0x26, 0x756, &(0x7f00000002c0)="$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")
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

217.131881ms ago: executing program 4 (id=1019):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
pause()

57.67235ms ago: executing program 2 (id=1020):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

56.018509ms ago: executing program 3 (id=1032):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_usb_connect(0x3, 0x48, 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f00000003c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f00000001c0)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000040)="4a00ffff0000", 0x6}])

0s ago: executing program 39 (id=787):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe2b, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

4-fs (loop0): 1 truncate cleaned up
[   33.776511][  T810] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   33.818889][  T812] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,nodelalloc,,errors=continue
[   33.838152][  T812] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   33.906050][  T797] F2FS-fs (loop3): fault_injection options not supported
[   33.943543][  T797] F2FS-fs (loop3): invalid crc value
[   33.960663][  T797] F2FS-fs (loop3): Found nat_bits in checkpoint
[   34.015336][   T24] kauditd_printk_skb: 178 callbacks suppressed
[   34.015347][   T24] audit: type=1400 audit(1734866786.070:448): avc:  denied  { setattr } for  pid=834 comm="syz.1.180" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   34.077959][  T797] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   34.114091][  T831] F2FS-fs (loop0): invalid crc value
[   34.132534][   T24] audit: type=1326 audit(1734866786.190:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.155563][    T5] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   34.164077][   T24] audit: type=1326 audit(1734866786.220:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.189744][   T24] audit: type=1326 audit(1734866786.220:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.214099][   T24] audit: type=1326 audit(1734866786.220:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.237811][  T831] F2FS-fs (loop0): Found nat_bits in checkpoint
[   34.246369][  T797] attempt to access beyond end of device
[   34.246369][  T797] loop3: rw=10241, want=45112, limit=40427
[   34.269596][   T24] audit: type=1326 audit(1734866786.220:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.293388][   T24] audit: type=1326 audit(1734866786.220:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.316426][   T24] audit: type=1326 audit(1734866786.220:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.340682][   T24] audit: type=1326 audit(1734866786.220:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=838 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f359be86d29 code=0x7ffc0000
[   34.369282][  T831] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[   34.372090][  T850] netlink: 20 bytes leftover after parsing attributes in process `syz.5.185'.
[   34.409858][  T831] attempt to access beyond end of device
[   34.409858][  T831] loop0: rw=2049, want=45104, limit=40427
[   34.429940][  T851] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   34.447944][    T5] usb 7-1: Using ep0 maxpacket: 16
[   34.488358][   T24] audit: type=1400 audit(1734866786.550:457): avc:  denied  { mounton } for  pid=853 comm="syz.5.186" path="/30/file0/file0" dev="loop5" ino=1048604 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[   34.520556][  T399] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000074f)
[   34.528614][  T399] FAT-fs (loop5): Filesystem has been set read-only
[   34.544169][  T399] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000074f)
[   34.607964][    T5] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   34.628006][    T5] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   34.645874][    T5] usb 7-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[   34.658355][    T5] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   34.669408][    T5] usb 7-1: config 0 descriptor??
[   34.743485][  T870] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.751356][  T870] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.759332][  T870] device bridge_slave_0 entered promiscuous mode
[   34.770212][  T870] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.777226][  T870] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.784692][  T870] device bridge_slave_1 entered promiscuous mode
[   34.836247][  T870] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.843151][  T870] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.850229][  T870] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.856998][  T870] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.888602][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.897188][  T501] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.904712][  T501] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.918597][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.926809][  T501] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.933685][  T501] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.941114][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.949431][  T501] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.956321][  T501] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.975618][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.983455][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.996373][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.009798][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   35.017604][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   35.025386][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   35.034867][  T870] device veth0_vlan entered promiscuous mode
[   35.044796][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   35.054886][  T870] device veth1_macvtap entered promiscuous mode
[   35.067193][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.076890][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   35.108692][  T346] device bridge_slave_1 left promiscuous mode
[   35.114792][  T346] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.122687][  T346] device bridge_slave_0 left promiscuous mode
[   35.128821][    T5] cypress 0003:04B4:BCA1.0004: unknown main item tag 0x0
[   35.129082][  T346] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.136280][    T5] cypress 0003:04B4:BCA1.0004: unknown main item tag 0x0
[   35.147399][  T900] EXT4-fs (loop7): Ignoring removed mblk_io_submit option
[   35.157156][  T346] device veth1_macvtap left promiscuous mode
[   35.163821][  T900] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[   35.171944][    T5] cypress 0003:04B4:BCA1.0004: item fetching failed at offset 2/5
[   35.172101][  T346] device veth0_vlan left promiscuous mode
[   35.187475][    T5] cypress 0003:04B4:BCA1.0004: parse failed
[   35.196231][  T900] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[   35.207920][    T5] cypress: probe of 0003:04B4:BCA1.0004 failed with error -22
[   35.208086][  T900] System zones: 1-12
[   35.227373][  T900] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2210: inode #15: comm syz.7.192: corrupted in-inode xattr
[   35.239708][  T900] EXT4-fs error (device loop7): ext4_orphan_get:1400: comm syz.7.192: couldn't read orphan inode 15 (err -117)
[   35.252999][  T900] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsold,barrier,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,inode_readahead_blks=0x0000000000000400,,errors=continue
[   35.302734][  T910] binder: 909:910 ioctl c0306201 20000bc0 returned -14
[   35.330405][  T376] usb 7-1: USB disconnect, device number 3
[   35.438187][  T912] FAT-fs (loop1): Directory bread(block 64) failed
[   35.444575][  T912] FAT-fs (loop1): Directory bread(block 65) failed
[   35.448724][  T915] EXT4-fs (loop7): Ignoring removed orlov option
[   35.457916][  T912] FAT-fs (loop1): Directory bread(block 66) failed
[   35.464311][  T912] FAT-fs (loop1): Directory bread(block 67) failed
[   35.471038][  T912] FAT-fs (loop1): Directory bread(block 68) failed
[   35.477415][  T912] FAT-fs (loop1): Directory bread(block 69) failed
[   35.477635][  T915] EXT4-fs (loop7): mounted filesystem without journal. Opts: orlov,min_batch_time=0x0000000000000004,,errors=continue
[   35.484476][  T912] FAT-fs (loop1): Directory bread(block 70) failed
[   35.507783][  T912] FAT-fs (loop1): Directory bread(block 71) failed
[   35.514595][  T912] FAT-fs (loop1): Directory bread(block 72) failed
[   35.521447][  T912] FAT-fs (loop1): Directory bread(block 73) failed
[   35.555072][  T285] FAT-fs (loop1): error, corrupted directory (invalid entries)
[   35.563046][  T285] FAT-fs (loop1): Filesystem has been set read-only
[   35.570179][  T285] attempt to access beyond end of device
[   35.570179][  T285] loop1: rw=2051, want=1160, limit=256
[   35.767043][  T926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.214'.
[   35.775781][  T926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.214'.
[   35.785904][  T926] A link change request failed with some changes committed already. Interface wg0 may have been left with an inconsistent configuration, please check.
[   35.840499][  T925] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.870737][  T925] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.893271][  T925] device bridge_slave_0 entered promiscuous mode
[   35.927294][  T925] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.939032][  T925] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.961867][  T925] device bridge_slave_1 entered promiscuous mode
[   36.046360][  T931] overlayfs: failed to clone upperpath
[   36.137864][  T925] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.144715][  T925] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.151849][  T925] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.158616][  T925] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.199814][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   36.207460][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.215243][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.226002][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   36.234528][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.241400][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.264677][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   36.286637][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.293539][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.311985][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   36.324330][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   36.344430][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   36.364347][  T925] device veth0_vlan entered promiscuous mode
[   36.380101][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   36.388485][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   36.405863][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   36.436598][  T925] device veth1_macvtap entered promiscuous mode
[   36.449639][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   36.470992][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   36.494745][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   36.942471][  T346] device bridge_slave_1 left promiscuous mode
[   36.957012][  T346] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.015713][  T346] device bridge_slave_0 left promiscuous mode
[   37.032450][  T346] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.097916][  T346] device veth1_macvtap left promiscuous mode
[   37.141597][  T966] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue
[   37.150544][  T346] device veth0_vlan left promiscuous mode
[   37.165750][  T966] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   37.212005][  T978] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[   37.235592][  T978] EXT4-fs (loop7): 1 truncate cleaned up
[   37.258894][  T978] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue
[   37.280844][  T966] SELinux: security_context_str_to_sid(uìŸnÓ„’¶—Bé(¥´��
[   37.280844][  T966] …^ÚK�RB)…*DD<IÄoYO^<èY%'/A¼={	^¯QsˆzXÙ�]Ùl6³ÙÉ|>°™÷òÞÌ{ó}™f6€Ü�ˆß¢cQŽˆ¤½Ã7ég´Y]Z�Ž¨Õþy–4ú¥õTk¿áˆ¨FÄ/¥VÛÂÊ‘�k~a¾üݵ•ÿ‡u~í67ÖÿÚºú÷ù›“?-¢#Ͷöó8HI—ß•’ˆOû1Ø{)e=öbêì�õÜß6ò_ŽB3²ç>¸SŽ¯ì¶ï¥§÷¿ä\�ƒW«•ë«5 w
[   37.280844][  T966] �{à¤0i¹POïá“85;wfìäìü̉¬W*à) failed for (dev incremental-fs, type incremental-fs) errno=-22
[   37.341667][  T925] EXT4-fs error (device loop8): htree_dirblock_to_tree:1092: inode #2: block 4: comm syz-executor: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[   37.361473][  T925] EXT4-fs error (device loop8): ext4_lookup:1830: inode #11: comm syz-executor: iget: bogus i_mode (0)
[   37.380019][  T925] EXT4-fs error (device loop8): ext4_lookup:1830: inode #11: comm syz-executor: iget: bogus i_mode (0)
[   37.449451][  T951] F2FS-fs (loop6): invalid crc value
[   37.484397][  T951] F2FS-fs (loop6): Found nat_bits in checkpoint
[   37.541703][  T951] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[   37.641404][ T1004] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.649080][ T1004] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.656478][ T1004] device bridge_slave_0 entered promiscuous mode
[   37.663559][ T1004] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.670469][ T1004] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.677850][ T1004] device bridge_slave_1 entered promiscuous mode
[   37.726972][ T1004] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.733867][ T1004] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.740940][ T1004] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.747712][ T1004] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.773912][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   37.781395][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.788851][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.809695][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   37.817996][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.824846][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.832923][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   37.841663][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.848527][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.856115][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   37.864003][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   37.881026][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   37.892662][ T1004] device veth0_vlan entered promiscuous mode
[   37.899275][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   37.907198][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   37.915331][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   37.930907][ T1004] device veth1_macvtap entered promiscuous mode
[   37.939717][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   37.961392][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   37.969896][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   37.984634][ T1012] incfs: Can't find or create .index dir in ./file0
[   37.994415][ T1012] incfs: mount failed -14
[   38.055158][ T1017] tipc: Started in network mode
[   38.063381][ T1017] tipc: Own node identity 00000000000000000000000000000001, cluster identity 4711
[   38.083302][ T1019] overlayfs: failed to get inode (-116)
[   38.088826][ T1019] overlayfs: failed to get inode (-116)
[   38.093989][ T1017] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[   38.102310][ T1017] tipc: Enabled bearer <udp:s>, priority 10
[   38.188773][  T346] device bridge_slave_1 left promiscuous mode
[   38.195963][  T346] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.208333][  T346] device bridge_slave_0 left promiscuous mode
[   38.214363][  T346] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.226681][  T346] device veth1_macvtap left promiscuous mode
[   38.242278][  T346] device veth0_vlan left promiscuous mode
[   38.384346][ T1038] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   38.496381][ T1045] IPv4: Oversized IP packet from 127.202.26.0
[   38.637498][ T1050] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.654654][ T1050] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.672489][ T1050] device bridge_slave_0 entered promiscuous mode
[   38.685359][ T1050] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.699301][ T1050] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.713742][ T1050] device bridge_slave_1 entered promiscuous mode
[   38.788951][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   38.801768][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   38.840523][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   38.867172][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   38.888156][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.895028][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.911320][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   38.924914][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   38.958071][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.964918][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.996483][ T1072] netlink: 24 bytes leftover after parsing attributes in process `syz.0.269'.
[   39.038163][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   39.047271][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   39.055097][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   39.063271][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   39.074568][ T1076] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[   39.085528][ T1050] device veth0_vlan entered promiscuous mode
[   39.093363][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   39.116711][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   39.134725][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   39.151013][ T1050] device veth1_macvtap entered promiscuous mode
[   39.171137][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   39.185402][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   39.210132][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   39.218443][   T20] tipc: 32-bit node address hash set to 1000000
[   39.293719][ T1085] EXT4-fs error (device loop2): ext4_orphan_get:1395: inode #15: comm syz.2.260: casefold flag without casefold feature
[   39.334245][ T1085] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.260: missing EA_INODE flag
[   39.348649][  T346] device bridge_slave_1 left promiscuous mode
[   39.354583][  T346] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.413629][ T1085] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.260: error while reading EA inode 12 err=-117
[   39.444682][  T346] device bridge_slave_0 left promiscuous mode
[   39.461485][  T346] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.472526][ T1085] EXT4-fs (loop2): 1 orphan inode deleted
[   39.479173][  T346] device veth1_macvtap left promiscuous mode
[   39.480185][ T1085] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   39.484991][  T346] device veth0_vlan left promiscuous mode
[   39.803475][ T1112] binder_alloc: 1111: binder_alloc_buf, no vma
[   39.913641][   T24] kauditd_printk_skb: 47 callbacks suppressed
[   39.913650][   T24] audit: type=1400 audit(1734866791.970:505): avc:  denied  { getopt } for  pid=1123 comm="syz.2.287" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   39.995881][ T1124] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[   40.050818][ T1129] FAT-fs (loop3): Directory bread(block 64) failed
[   40.057234][ T1129] FAT-fs (loop3): Directory bread(block 65) failed
[   40.063736][ T1129] FAT-fs (loop3): Directory bread(block 66) failed
[   40.070154][ T1129] FAT-fs (loop3): Directory bread(block 67) failed
[   40.076471][ T1129] FAT-fs (loop3): Directory bread(block 68) failed
[   40.082967][ T1129] FAT-fs (loop3): Directory bread(block 69) failed
[   40.094683][   T24] audit: type=1400 audit(1734866792.150:506): avc:  denied  { create } for  pid=1131 comm="syz.2.289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   40.095034][ T1129] FAT-fs (loop3): Directory bread(block 70) failed
[   40.120320][ T1129] FAT-fs (loop3): Directory bread(block 71) failed
[   40.126675][ T1129] FAT-fs (loop3): Directory bread(block 72) failed
[   40.133017][ T1129] FAT-fs (loop3): Directory bread(block 73) failed
[   40.133345][   T24] audit: type=1400 audit(1734866792.170:507): avc:  denied  { ioctl } for  pid=1131 comm="syz.2.289" path="socket:[19986]" dev="sockfs" ino=19986 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   40.181202][ T1134] device syzkaller0 entered promiscuous mode
[   40.235500][ T1136] netlink: 'syz.3.291': attribute type 6 has an invalid length.
[   40.254294][ T1138] device pim6reg1 entered promiscuous mode
[   40.370617][ T1144] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[   40.534024][ T1154] syz.9.298[1154] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   40.534079][ T1154] syz.9.298[1154] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   40.537945][   T24] audit: type=1326 audit(1734866792.590:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.589465][   T24] audit: type=1326 audit(1734866792.590:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.620023][   T24] audit: type=1326 audit(1734866792.640:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.643533][   T24] audit: type=1326 audit(1734866792.640:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.667138][   T24] audit: type=1326 audit(1734866792.640:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.693667][   T24] audit: type=1326 audit(1734866792.640:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.717035][   T24] audit: type=1326 audit(1734866792.640:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1153 comm="syz.9.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f7c6934ed29 code=0x7ffc0000
[   40.912702][ T1182] exFAT-fs (loop7): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   40.926209][ T1179] FAT-fs (loop2): Directory bread(block 64) failed
[   40.932617][ T1179] FAT-fs (loop2): Directory bread(block 65) failed
[   40.939025][ T1179] FAT-fs (loop2): Directory bread(block 66) failed
[   40.945362][ T1179] FAT-fs (loop2): Directory bread(block 67) failed
[   40.951903][ T1179] FAT-fs (loop2): Directory bread(block 68) failed
[   40.958298][ T1179] FAT-fs (loop2): Directory bread(block 69) failed
[   40.964684][ T1179] FAT-fs (loop2): Directory bread(block 70) failed
[   40.965879][ T1182] exFAT-fs (loop7): hint_cluster is invalid (17)
[   40.971095][ T1179] FAT-fs (loop2): Directory bread(block 71) failed
[   40.983548][ T1179] FAT-fs (loop2): Directory bread(block 72) failed
[   40.990093][ T1179] FAT-fs (loop2): Directory bread(block 73) failed
[   41.152945][ T1186] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   41.172968][ T1050] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF
[   41.176463][ T1189] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.184826][ T1050] FAT-fs (loop2): Filesystem has been set read-only
[   41.195568][ T1189] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.203209][ T1189] device bridge_slave_0 entered promiscuous mode
[   41.212122][ T1189] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.220690][ T1189] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.230953][ T1189] device bridge_slave_1 entered promiscuous mode
[   41.270333][ T1189] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.277395][ T1189] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.284489][ T1189] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.291335][ T1189] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.314066][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.321733][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.329161][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.348770][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.372043][  T346] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.378936][  T346] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.417334][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.425595][  T346] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.432477][  T346] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.439942][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   41.454980][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   41.501854][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   41.525613][ T1189] device veth0_vlan entered promiscuous mode
[   41.532053][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   41.549463][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   41.557347][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   41.623010][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   41.650971][ T1189] device veth1_macvtap entered promiscuous mode
[   41.675199][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   41.687617][  T501] device bridge_slave_1 left promiscuous mode
[   41.696042][  T501] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.704767][  T501] device bridge_slave_0 left promiscuous mode
[   41.711460][  T501] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.722306][  T501] device veth1_macvtap left promiscuous mode
[   41.728546][  T501] device veth0_vlan left promiscuous mode
[   41.860907][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   41.870640][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   41.897931][    T5] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   42.059743][ T1244]  loop4: p3 < > p4 < >
[   42.063831][ T1244] loop4: partition table partially beyond EOD, truncated
[   42.071441][ T1244] loop4: p3 start 4284289 is beyond EOD, truncated
[   42.148000][    T5] usb 4-1: Using ep0 maxpacket: 8
[   42.383530][  T337] udevd[337]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   42.393256][    T5] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   42.394728][ T1258] Zero length message leads to an empty skb
[   42.404990][    T5] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   42.422854][    T5] usb 4-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[   42.431946][ T1258] device bridge_slave_1 left promiscuous mode
[   42.433893][    T5] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   42.441029][ T1258] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.447535][    T5] usb 4-1: config 0 descriptor??
[   42.479382][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.491695][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.504437][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.517003][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.529667][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.542219][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.554602][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.566889][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.579426][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.591875][ T1264] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=1264 comm=syz.4.336
[   42.938816][    T5] saitek 0003:06A3:0CCD.0005: unknown main item tag 0x0
[   42.945730][    T5] saitek 0003:06A3:0CCD.0005: unknown main item tag 0x0
[   42.952716][    T5] saitek 0003:06A3:0CCD.0005: unknown main item tag 0x0
[   42.959634][    T5] saitek 0003:06A3:0CCD.0005: unbalanced collection at end of report description
[   42.968784][    T5] saitek 0003:06A3:0CCD.0005: parse failed
[   42.974475][    T5] saitek: probe of 0003:06A3:0CCD.0005 failed with error -22
[   43.142224][    T5] usb 4-1: USB disconnect, device number 4
[   43.486633][   T50] Bluetooth: hci0: Frame reassembly failed (-84)
[   43.657906][   T25] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   43.841540][ T1318] incfs_lookup_dentry err:-14
[   43.846054][ T1318] incfs: Can't find or create .incomplete dir in ./file0
[   43.853370][ T1318] incfs: mount failed -14
[   43.897910][   T25] usb 5-1: Using ep0 maxpacket: 16
[   44.017920][   T25] usb 5-1: config 0 has an invalid interface number: 41 but max is 0
[   44.025885][   T25] usb 5-1: config 0 has no interface number 0
[   44.031871][   T25] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   44.042174][   T25] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   44.051921][   T25] usb 5-1: config 0 interface 41 has no altsetting 0
[   44.338241][   T25] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   44.347644][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   44.357029][   T25] usb 5-1: Product: syz
[   44.387953][   T25] usb 5-1: Manufacturer: syz
[   44.392397][   T25] usb 5-1: SerialNumber: syz
[   44.397317][   T25] usb 5-1: config 0 descriptor??
[   44.417915][ T1297] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   44.424760][ T1297] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   44.638730][ T1297] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   44.645580][ T1297] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   44.817895][   T15] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[   44.877910][   T25] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[   44.887332][   T25] CoreChips: probe of 5-1:0.41 failed with error -71
[   44.894670][   T25] usb 5-1: USB disconnect, device number 4
[   45.199250][   T24] kauditd_printk_skb: 67 callbacks suppressed
[   45.199285][   T24] audit: type=1326 audit(1734866797.260:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.206344][ T1356] 9pnet: p9_fd_create_unix (1356): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   45.258537][   T24] audit: type=1326 audit(1734866797.260:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.369292][   T24] audit: type=1326 audit(1734866797.260:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.392498][   T24] audit: type=1326 audit(1734866797.260:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.392822][   T15] usb 10-1: unable to get BOS descriptor or descriptor too short
[   45.424096][   T24] audit: type=1326 audit(1734866797.260:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.448174][   T24] audit: type=1326 audit(1734866797.260:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.471693][   T15] usb 10-1: not running at top speed; connect to a high speed hub
[   45.471752][   T24] audit: type=1326 audit(1734866797.260:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.502901][   T24] audit: type=1326 audit(1734866797.260:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.516830][ T1358] device syz_tun entered promiscuous mode
[   45.531811][  T292] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   45.532719][   T24] audit: type=1326 audit(1734866797.260:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.563034][   T25] Bluetooth: hci0: command 0x1003 tx timeout
[   45.563164][   T24] audit: type=1326 audit(1734866797.260:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1352 comm="syz.3.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7fc00000
[   45.592317][ T1301] Bluetooth: hci0: sending frame failed (-49)
[   45.592881][ T1358] device syz_tun left promiscuous mode
[   45.638025][   T15] usb 10-1: config 1 interface 0 has no altsetting 0
[   45.797944][   T15] usb 10-1: New USB device found, idVendor=1c4f, idProduct=0059, bcdDevice= 0.40
[   45.813721][   T15] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   45.839822][   T15] usb 10-1: Product: syz
[   45.849487][   T15] usb 10-1: Manufacturer: syz
[   45.997912][  T292] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[   46.013101][   T15] usb 10-1: SerialNumber: syz
[   46.021595][  T292] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   46.030684][  T292] usb 4-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[   46.040358][  T292] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   46.059727][  T292] usb 4-1: rejected 1 configuration due to insufficient available bus power
[   46.069230][  T292] usb 4-1: no configuration chosen from 1 choice
[   46.370258][ T1336] EXT4-fs (loop9): Ignoring removed mblk_io_submit option
[   46.406106][ T1336] EXT4-fs (loop9): mounted filesystem without journal. Opts: lazytime,usrjquota=,errors=remount-ro,norecovery,auto_da_alloc,mblk_io_submit,nouid32,barrier=0x0000000000000000,grpjquota=,bsddf,
[   46.657894][   T15] usbhid 10-1:1.0: can't add hid device: -71
[   46.663771][   T15] usbhid: probe of 10-1:1.0 failed with error -71
[   46.680774][   T15] usb 10-1: USB disconnect, device number 2
[   47.176471][ T1384] binder: 1383:1384 ioctl c0306201 20000180 returned -14
[   47.291270][ T1387]  loop4: p3 < > p4 < >
[   47.295322][ T1387] loop4: partition table partially beyond EOD, truncated
[   47.302305][ T1387] loop4: p3 start 4284289 is beyond EOD, truncated
[   47.407409][ T1396] EXT4-fs (loop9): Test dummy encryption mode enabled
[   47.414458][ T1396] EXT4-fs (loop9): dax option not supported
[   47.424783][  T337] udevd[337]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   47.637882][  T640] Bluetooth: hci0: command 0x1001 tx timeout
[   47.643784][ T1301] Bluetooth: hci0: sending frame failed (-49)
[   48.098448][  T292] usb 4-1: USB disconnect, device number 5
[   48.320205][ T1410] usb usb7: check_ctrlrecip: process 1410 (syz.3.389) requesting ep 01 but needs 81
[   49.448802][ T1483] EXT4-fs (loop9): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,lazytime,noblock_validity,,errors=continue
[   49.676236][ T1483] EXT4-fs error (device loop9): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   49.690876][ T1483] EXT4-fs (loop9): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   49.703196][ T1483] EXT4-fs (loop9): This should not happen!! Data will be lost
[   49.703196][ T1483] 
[   49.712909][ T1483] EXT4-fs (loop9): Total free blocks count 0
[   49.718809][  T306] Bluetooth: hci0: command 0x1009 tx timeout
[   49.722670][ T1483] EXT4-fs (loop9): Free/Dirty block details
[   49.730296][ T1483] EXT4-fs (loop9): free_blocks=68451041280
[   49.735915][ T1483] EXT4-fs (loop9): dirty_blocks=16
[   49.740910][ T1483] EXT4-fs (loop9): Block reservation details
[   49.746661][ T1483] EXT4-fs (loop9): i_reserved_data_blocks=1
[   49.797900][  T376] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   49.873062][ T1503] EXT4-fs (loop4): Ignoring removed nobh option
[   49.885314][ T1503] EXT4-fs (loop4): Unrecognized mount option "errors=contin
" or missing value
[   50.045123][ T1529] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[   50.055583][ T1529] EXT4-fs (loop9): 1 truncate cleaned up
[   50.061123][ T1529] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue
[   50.167951][  T376] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   50.178834][  T376] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   50.187809][  T376] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   50.199584][  T376] usb 4-1: config 0 descriptor??
[   50.215067][ T1538] syz.9.441[1538] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   50.215104][ T1538] syz.9.441[1538] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   50.257941][   T20] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   50.507905][   T20] usb 5-1: Using ep0 maxpacket: 8
[   50.598051][  T306] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[   50.627953][   T20] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   50.638709][   T20] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[   50.648189][   T20] usb 5-1: config 0 interface 0 has no altsetting 0
[   50.654615][   T20] usb 5-1: New USB device found, idVendor=1430, idProduct=07bb, bcdDevice= 0.00
[   50.663512][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   50.671983][   T20] usb 5-1: config 0 descriptor??
[   50.678323][  T376] keytouch 0003:0926:3333.0006: fixing up Keytouch IEC report descriptor
[   50.687480][  T376] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.0006/input/input4
[   50.770274][   T24] kauditd_printk_skb: 25458 callbacks suppressed
[   50.770285][   T24] audit: type=1400 audit(1734866802.830:26050): avc:  denied  { read } for  pid=81 comm="acpid" name="event3" dev="devtmpfs" ino=616 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.799195][   T24] audit: type=1400 audit(1734866802.830:26051): avc:  denied  { open } for  pid=81 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=616 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.799396][  T376] keytouch 0003:0926:3333.0006: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0
[   50.822822][   T24] audit: type=1400 audit(1734866802.830:26052): avc:  denied  { ioctl } for  pid=81 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=616 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.887904][  T306] usb 10-1: Using ep0 maxpacket: 8
[   51.067902][  T306] usb 10-1: unable to get BOS descriptor or descriptor too short
[   51.158661][  T306] usb 10-1: config 4 has an invalid interface number: 147 but max is 0
[   51.166876][  T306] usb 10-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[   51.175495][  T306] usb 10-1: config 4 has no interface number 0
[   51.199346][ T1533] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   51.208206][ T1533] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.297960][   T20] usbhid 5-1:0.0: can't add hid device: -71
[   51.303889][   T20] usbhid: probe of 5-1:0.0 failed with error -71
[   51.315055][   T20] usb 5-1: USB disconnect, device number 5
[   51.419447][  T292] usb 4-1: USB disconnect, device number 6
[   51.467946][  T306] usb 10-1: string descriptor 0 read error: -22
[   51.474459][  T306] usb 10-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[   51.484760][  T306] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.529768][  T306] uvcvideo: Found UVC 0.02 device <unnamed> (04f2:b746)
[   51.536697][  T306] uvcvideo: No valid video chain found.
[   51.681296][   T24] audit: type=1326 audit(1734866803.720:26053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.706190][   T24] audit: type=1326 audit(1734866803.720:26054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.756131][   T24] audit: type=1326 audit(1734866803.720:26055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.784509][   T20] usb 10-1: USB disconnect, device number 3
[   51.784717][   T24] audit: type=1326 audit(1734866803.720:26056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.815917][   T24] audit: type=1326 audit(1734866803.720:26057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.839206][   T24] audit: type=1326 audit(1734866803.720:26058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   51.862717][   T24] audit: type=1326 audit(1734866803.720:26059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1561 comm="syz.0.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   52.209211][ T1581] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,min_batch_time=0x000000000000002f,dioread_lock,,errors=continue
[   52.222840][ T1581] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.307901][   T20] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   52.678234][   T20] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   52.689940][   T20] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[   52.857921][   T20] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   52.866877][   T20] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   52.874741][   T20] usb 5-1: Product: syz
[   52.878829][   T20] usb 5-1: Manufacturer: syz
[   52.883243][   T20] usb 5-1: SerialNumber: syz
[   52.887874][   T15] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[   53.128958][ T1577] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   53.137903][   T15] usb 4-1: Using ep0 maxpacket: 16
[   53.221343][ T1597] IPv4: Oversized IP packet from 127.202.26.0
[   53.255573][ T1599] device wireguard0 entered promiscuous mode
[   53.277973][   T15] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[   53.289044][   T15] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[   53.298819][   T15] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[   53.401101][   T15] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   53.413027][   T15] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   53.421292][   T15] usb 4-1: SerialNumber: syz
[   53.447926][ T1586] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   53.788197][ T1577] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   53.808013][   T15] cdc_ether: probe of 4-1:1.0 failed with error -71
[   54.007888][   T15] usb 4-1: USB disconnect, device number 7
[   54.027955][   T20] cdc_mbim 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[   54.034393][   T20] cdc_mbim 5-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[   54.041681][   T20] cdc_mbim 5-1:1.0: setting rx_max = 2048
[   54.116860][ T1623] EXT4-fs error (device loop9): ext4_orphan_get:1395: inode #15: comm syz.9.471: casefold flag without casefold feature
[   54.129745][ T1623] EXT4-fs error (device loop9): ext4_xattr_inode_iget:404: inode #2: comm syz.9.471: missing EA_INODE flag
[   54.141722][ T1623] EXT4-fs error (device loop9): ext4_xattr_inode_iget:409: comm syz.9.471: error while reading EA inode 2 err=-117
[   54.154241][ T1623] EXT4-fs (loop9): 1 orphan inode deleted
[   54.160024][ T1623] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue
[   54.192515][ T1636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.476'.
[   54.205911][ T1636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.476'.
[   54.247924][   T20] cdc_mbim 5-1:1.0: setting tx_max = 184
[   54.260111][   T20] cdc_mbim 5-1:1.0: cdc-wdm0: USB WDM device
[   54.272094][   T20] cdc_mbim 5-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.4-1, CDC MBIM, 42:42:42:42:42:42
[   54.361709][ T1664] selinux_netlink_send: 72 callbacks suppressed
[   54.361722][ T1664] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=1664 comm=syz.0.485
[   54.387121][  T134] 8021q: adding VLAN 0 to HW filter on device wwan0
[   54.447961][   T20] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[   54.457695][  T306] usb 5-1: USB disconnect, device number 6
[   54.463707][  T306] cdc_mbim 5-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.4-1, CDC MBIM
[   54.619051][ T1697] EXT4-fs (loop2): Test dummy encryption mode enabled
[   54.627347][ T1697] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,i_version,stripe=0x0000000000000007,commit=0x0000000000000005,inlinecrypt,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue
[   54.728322][ T1705] FAT-fs (loop2): Unrecognized mount option "00000000000000000000004" or missing value
[   54.817927][   T20] usb 10-1: config index 0 descriptor too short (expected 3133, got 61)
[   54.826077][   T20] usb 10-1: config 0 has an invalid interface number: 156 but max is 1
[   54.834332][   T20] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   54.844377][   T20] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 2
[   54.853069][   T20] usb 10-1: config 0 has no interface number 0
[   54.859083][   T20] usb 10-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[   54.869930][   T20] usb 10-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   54.879979][   T20] usb 10-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   54.892876][   T20] usb 10-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[   54.902578][   T20] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.913854][   T20] usb 10-1: config 0 descriptor??
[   54.959387][   T20] usb 10-1: MIDIStreaming interface descriptor not found
[   55.161395][   T20] usb 10-1: USB disconnect, device number 4
[   55.217939][  T306] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   55.225824][ T1724] ÿÿÿÿÿÿ: renamed from vlan1
[   55.797975][  T306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   55.809488][  T306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   55.820769][  T306] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   55.836995][  T306] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   55.849509][  T306] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.858383][  T306] usb 3-1: config 0 descriptor??
[   55.877916][ T1711] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   55.918284][ T1743] xt_CT: You must specify a L4 protocol and not use inversions on it
[   56.027953][  T640] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[   56.080183][   T24] kauditd_printk_skb: 155 callbacks suppressed
[   56.080194][   T24] audit: type=1326 audit(1734866808.140:26215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.114807][   T24] audit: type=1326 audit(1734866808.140:26216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.138285][   T24] audit: type=1326 audit(1734866808.140:26217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.162857][   T24] audit: type=1326 audit(1734866808.140:26218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.186295][   T24] audit: type=1326 audit(1734866808.140:26219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.214591][   T24] audit: type=1326 audit(1734866808.140:26220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.238190][   T24] audit: type=1326 audit(1734866808.140:26221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.266958][   T24] audit: type=1326 audit(1734866808.170:26222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.291039][   T24] audit: type=1326 audit(1734866808.170:26223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.314612][   T24] audit: type=1326 audit(1734866808.240:26224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1744 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   56.368739][  T306] plantronics 0003:047F:FFFF.0007: unknown main item tag 0xd
[   56.376993][  T306] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[   56.386612][  T306] plantronics 0003:047F:FFFF.0007: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   56.516085][  T640] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[   56.526016][  T640] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[   56.535682][  T640] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[   56.545662][  T640] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[   56.567673][ T1776] netlink: 4 bytes leftover after parsing attributes in process `syz.3.510'.
[   56.659772][ T1711] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.684609][ T1792] netlink: 'syz.4.521': attribute type 12 has an invalid length.
[   56.692816][ T1711] EXT4-fs (loop2): 1 truncate cleaned up
[   56.698687][ T1711] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsv1,resuid=0x000000000000ee01,barrier=0x0000000000000003,debug_want_extra_isize=0x0000000000000080,block_validity,quota,,errors=continue
[   56.726066][ T1711] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.490: bg 0: block 328: padding at end of block bitmap is not set
[   56.741644][ T1794] tipc: Started in network mode
[   56.748027][ T1794] tipc: Own node identity aaaaaaaaaa32, cluster identity 4711
[   56.753447][  T306] usb 3-1: USB disconnect, device number 2
[   56.756589][ T1794] tipc: Enabled bearer <eth:vlan0>, priority 10
[   56.761430][  T640] usb 10-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[   56.769884][ T1794] tipc: Resetting bearer <eth:vlan0>
[   56.790177][ T1794] tipc: Disabling bearer <eth:vlan0>
[   56.793594][  T640] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   56.803363][  T640] usb 10-1: Product: syz
[   56.807457][  T640] usb 10-1: Manufacturer: syz
[   56.812876][  T640] usb 10-1: SerialNumber: syz
[   56.821660][  T640] usb 10-1: config 0 descriptor??
[   56.868431][  T640] ums-isd200 10-1:0.0: USB Mass Storage device detected
[   57.150825][  T640] scsi host1: usb-storage 10-1:0.0
[   57.419861][  T640] usb 10-1: USB disconnect, device number 5
[   57.532237][ T1823]  loop3: p1 < > p2 p3 < p5 >
[   57.539373][ T1823] loop3: partition table partially beyond EOD, truncated
[   57.546725][ T1823] loop3: p1 start 4278190080 is beyond EOD, truncated
[   57.553404][ T1823] loop3: p2 start 16908288 is beyond EOD, truncated
[   57.560227][ T1823] loop3: p5 start 16908288 is beyond EOD, truncated
[   57.560590][ T1830] process 'syz.0.535' launched './file1' with NULL argv: empty string added
[   57.616251][ T1835] overlayfs: failed to clone upperpath
[   57.750964][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   57.762087][  T289] __loop_clr_fd: partition scan of loop3 failed (rc=-16)
[   57.782862][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.794148][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.802174][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.813019][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.821337][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.832156][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.841801][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.862694][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.877485][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.888680][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.915332][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   57.935005][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.946296][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.960445][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.971801][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.979808][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   57.990862][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   57.998747][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   58.006517][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   58.151436][ T1854]  loop9: p3 < > p4 < >
[   58.155421][ T1854] loop9: partition table partially beyond EOD, truncated
[   58.162685][ T1854] loop9: p3 start 4284289 is beyond EOD, truncated
[   58.180940][  T374] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   58.227870][   T15] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[   58.351167][ T1865] device bridge_slave_0 left promiscuous mode
[   58.357183][ T1865] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.477940][   T15] usb 4-1: Using ep0 maxpacket: 16
[   58.819652][  T374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   58.825714][ T1884] overlayfs: failed to clone upperpath
[   58.857137][   T15] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   58.868933][  T374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   58.879582][   T15] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   58.896457][  T374] usb 5-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[   58.910643][   T15] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   58.921201][  T374] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.943554][   T15] usb 4-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[   59.112727][  T374] usb 5-1: config 0 descriptor??
[   59.117581][   T15] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.128847][   T15] usb 4-1: config 0 descriptor??
[   59.154796][ T1897] syz.0.561[1897] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.154850][ T1897] syz.0.561[1897] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.337237][ T1902] netlink: 24 bytes leftover after parsing attributes in process `syz.9.562'.
[   59.588808][  T374] hid-steam 0003:28DE:1142.0008: unknown main item tag 0x7
[   59.595844][  T374] hid-steam 0003:28DE:1142.0008: item fetching failed at offset 1/5
[   59.605180][  T374] hid-steam 0003:28DE:1142.0008: steam_probe:parse of hid interface failed
[   59.619217][  T374] hid-steam: probe of 0003:28DE:1142.0008 failed with error -22
[   59.619548][ T1918] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[   59.648017][ T1918] ext4 filesystem being mounted at /43/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   59.689654][ T1918] EXT4-fs error (device loop2): htree_dirblock_to_tree:1092: inode #2: block 4: comm syz.2.569: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[   59.710351][   T15] uclogic 0003:5543:0004.0009: No inputs registered, leaving
[   59.722518][   T15] uclogic 0003:5543:0004.0009: hidraw0: USB HID v0.00 Device [HID 5543:0004] on usb-dummy_hcd.3-1/input0
[   59.812229][   T15] usb 5-1: USB disconnect, device number 7
[   59.911217][  T374] usb 4-1: USB disconnect, device number 8
[   60.588962][ T1952] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   60.603355][ T1952] EXT4-fs (loop4): 1 truncate cleaned up
[   60.609261][ T1952] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,grpjquota=,usrjquota=,noblock_validity,lazytime,quota,noauto_da_alloc,i_version,,errors=continue
[   60.609467][ T1955] EXT4-fs (loop2): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue
[   60.640339][ T1955] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.726814][  T527] rtc_cmos 00:00: Alarms can be up to one day in the future
[   60.737141][  T527] rtc_cmos 00:00: Alarms can be up to one day in the future
[   60.744807][  T527] rtc_cmos 00:00: Alarms can be up to one day in the future
[   60.747976][  T374] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[   60.752400][  T527] rtc_cmos 00:00: Alarms can be up to one day in the future
[   60.766337][  T527] rtc rtc0: __rtc_set_alarm: err=-22
[   60.821989][ T1968] syz.0.585[1968] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.822023][ T1968] syz.0.585[1968] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.997584][ T1986] netlink: 76 bytes leftover after parsing attributes in process `syz.4.591'.
[   61.047900][  T374] usb 4-1: Using ep0 maxpacket: 32
[   61.100474][ T1985] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   61.108268][ T1985] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   61.117215][ T1985] F2FS-fs (loop2): invalid crc value
[   61.123741][ T1985] F2FS-fs (loop2): Found nat_bits in checkpoint
[   61.146333][ T1985] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   61.153403][ T1985] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   61.187932][  T374] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   61.198925][  T374] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   61.209004][  T374] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   61.218655][  T374] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.234519][  T374] usb 4-1: config 0 descriptor??
[   61.710084][ T1950] udc-core: couldn't find an available UDC or it's busy
[   61.716951][ T1950] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   62.215746][ T2028] EXT4-fs (loop4): Ignoring removed orlov option
[   62.234658][ T2026] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue
[   62.236692][ T2028] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,orlov,auto_da_alloc,,errors=continue
[   62.260260][ T2028] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.270870][ T2026] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.597955][  T374] usbhid 4-1:0.0: can't add hid device: -71
[   62.603751][  T374] usbhid: probe of 4-1:0.0 failed with error -71
[   62.618784][  T374] usb 4-1: USB disconnect, device number 9
[   62.757196][ T2044] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   62.827235][ T1242] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm kworker/u4:6: bg 0: block 345: padding at end of block bitmap is not set
[   62.842057][ T1242] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   62.856248][ T1242] EXT4-fs (loop2): This should not happen!! Data will be lost
[   62.856248][ T1242] 
[   62.920506][ T1242] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2039 with error 28
[   62.936356][ T2057] netlink: 96 bytes leftover after parsing attributes in process `syz.9.616'.
[   62.949898][ T1242] EXT4-fs (loop2): This should not happen!! Data will be lost
[   62.949898][ T1242] 
[   62.959811][ T1242] EXT4-fs (loop2): Total free blocks count 0
[   62.965663][ T1242] EXT4-fs (loop2): Free/Dirty block details
[   62.971973][ T1242] EXT4-fs (loop2): free_blocks=0
[   62.973428][ T2057] netlink: 'syz.9.616': attribute type 12 has an invalid length.
[   62.976895][ T1242] EXT4-fs (loop2): dirty_blocks=2048
[   62.989543][ T1242] EXT4-fs (loop2): Block reservation details
[   62.995540][ T1242] EXT4-fs (loop2): i_reserved_data_blocks=128
[   63.002507][   T24] kauditd_printk_skb: 211 callbacks suppressed
[   63.002519][   T24] audit: type=1326 audit(1734866815.060:26436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.032147][   T24] audit: type=1326 audit(1734866815.090:26437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.055453][   T24] audit: type=1326 audit(1734866815.100:26438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.078820][   T24] audit: type=1326 audit(1734866815.110:26439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.102087][   T24] audit: type=1326 audit(1734866815.110:26440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.133223][   T24] audit: type=1326 audit(1734866815.110:26441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.158607][   T24] audit: type=1326 audit(1734866815.110:26442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.185223][   T24] audit: type=1326 audit(1734866815.110:26443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.208725][   T24] audit: type=1326 audit(1734866815.110:26444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8300fc6d29 code=0x7ffc0000
[   63.234213][   T24] audit: type=1326 audit(1734866815.110:26445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2058 comm="syz.4.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8300fc6d63 code=0x7ffc0000
[   63.283127][ T2061] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[   63.292612][ T2061] EXT4-fs (loop4): Test dummy encryption mode enabled
[   63.300845][ T2061] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000002,nombcache,resgid=0x0000000000000000,nogrpid,nomblk_io_submit,test_dummy_encryption=v1,delalloc,acl,,errors=continue
[   63.321982][ T2061] ext4 filesystem being mounted at /50/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   63.337948][ T2073] EXT4-fs (loop2): Ignoring removed nobh option
[   63.350703][ T2073] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[   63.390198][  T337] print_req_error: 28 callbacks suppressed
[   63.390213][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   63.409976][ T2073] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,bsddf,nobh,mblk_io_submit,dioread_nolock,,errors=continue
[   63.423786][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.435229][  T337] buffer_io_error: 21 callbacks suppressed
[   63.435238][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.449208][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.469779][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.485445][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.502125][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.512568][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.545657][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.566428][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.577482][   T25] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[   63.586014][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.597968][ T2092] netlink: 'syz.2.629': attribute type 7 has an invalid length.
[   63.605414][ T2092] netlink: 8 bytes leftover after parsing attributes in process `syz.2.629'.
[   63.627903][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   63.647210][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.658001][ T2088] attempt to access beyond end of device
[   63.658001][ T2088] loop4: rw=34817, want=129, limit=128
[   63.665368][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.676917][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.688076][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.697475][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   63.708345][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.716213][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.724537][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   63.770161][ T2090] F2FS-fs (loop3): fault_injection options not supported
[   63.787390][ T2090] F2FS-fs (loop3): invalid crc value
[   63.793425][ T2105] overlayfs: failed to clone upperpath
[   63.799341][ T2090] F2FS-fs (loop3): Found nat_bits in checkpoint
[   63.837944][   T25] usb 10-1: Using ep0 maxpacket: 16
[   63.851599][ T2090] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   63.958403][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   63.978391][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   63.999013][   T25] usb 10-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[   64.017881][   T25] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.049861][   T25] usb 10-1: config 0 descriptor??
[   64.116803][  T289] attempt to access beyond end of device
[   64.116803][  T289] loop3: rw=2049, want=45112, limit=40427
[   64.359611][ T2133] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,lazytime,noauto_da_alloc,,errors=continue
[   64.393518][ T2133] netlink: 40 bytes leftover after parsing attributes in process `syz.2.645'.
[   64.402360][ T2133] netlink: 40 bytes leftover after parsing attributes in process `syz.2.645'.
[   64.540802][   T25] hid-multitouch 0003:1FD2:6007.000A: unknown main item tag 0x0
[   64.551893][   T25] hid-multitouch 0003:1FD2:6007.000A: unknown main item tag 0x0
[   64.572309][   T25] hid-multitouch 0003:1FD2:6007.000A: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.9-1/input0
[   64.580414][ T2116] F2FS-fs (loop4): Invalid log sectors per block(570425347) log sectorsize(9)
[   64.607938][ T2116] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[   64.649947][ T2116] F2FS-fs (loop4): invalid crc value
[   64.716561][ T2116] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[   64.878637][   T15] usb 10-1: USB disconnect, device number 6
[   65.346831][ T2116] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=3000000, run fsck to fix.
[   65.364625][ T2116] F2FS-fs (loop4): Bad quota inode 2:50331648
[   65.371673][ T2116] F2FS-fs (loop4): Failed to enable quota tracking (type=2, err=-22). Please run fsck to fix.
[   65.383525][ T2116] F2FS-fs (loop4): Cannot turn on quotas: error -22
[   65.395332][ T2116] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[   65.402853][ T2116] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[   65.992654][ T2192] overlayfs: failed to clone upperpath
[   66.036552][ T2199] netlink: 20 bytes leftover after parsing attributes in process `syz.9.667'.
[   66.048688][ T2197] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   66.067466][ T2197] kvm: pic: level sensitive irq not supported
[   66.067574][ T2197] kvm: pic: non byte read
[   66.267891][    T5] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   66.344553][ T2211] EXT4-fs (loop9): orphan cleanup on readonly fs
[   66.365937][ T2211] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.671: bg 0: block 248: padding at end of block bitmap is not set
[   66.389283][ T2211] EXT4-fs error (device loop9): ext4_acquire_dquot:6219: comm syz.9.671: Failed to acquire dquot type 1
[   66.401000][ T2211] EXT4-fs (loop9): 1 truncate cleaned up
[   66.409936][ T2211] EXT4-fs (loop9): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[   66.677925][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.688609][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   66.698412][    T5] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[   66.707246][    T5] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.720877][    T5] usb 5-1: config 0 descriptor??
[   66.867891][  T374] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[   67.117873][  T374] usb 10-1: Using ep0 maxpacket: 8
[   67.198880][    T5] hid-led 0003:0FC5:B080.000B: item fetching failed at offset 0/3
[   67.206814][    T5] hid-led: probe of 0003:0FC5:B080.000B failed with error -22
[   67.237946][  T374] usb 10-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   67.247423][  T374] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.257375][  T374] usb 10-1: config 0 descriptor??
[   67.304242][ T2255] tipc: Started in network mode
[   67.308954][ T2255] tipc: Own node identity 4640b4a4e552, cluster identity 4711
[   67.316350][ T2255] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   67.323313][ T2255] ªªªªªª: renamed from syzkaller0
[   67.328526][ T2255] tipc: Disabling bearer <eth:syzkaller0>
[   67.399199][    T5] usb 5-1: USB disconnect, device number 8
[   67.757932][  T374] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[   67.767790][  T374] asix 10-1:0.0 (unnamed net_device) (uninitialized): Error reading PHYID register: ffffffe0
[   67.817907][  T374] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[   68.269681][   T24] kauditd_printk_skb: 58 callbacks suppressed
[   68.269694][   T24] audit: type=1326 audit(1734866820.330:26502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.326538][   T24] audit: type=1326 audit(1734866820.360:26503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.387879][   T24] audit: type=1326 audit(1734866820.360:26504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.431398][   T24] audit: type=1326 audit(1734866820.360:26505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.482561][   T24] audit: type=1326 audit(1734866820.450:26506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.530236][   T24] audit: type=1326 audit(1734866820.450:26507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.553805][   T24] audit: type=1326 audit(1734866820.470:26508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.584462][   T24] audit: type=1326 audit(1734866820.480:26509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.627956][   T24] audit: type=1326 audit(1734866820.480:26510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.651848][   T24] audit: type=1326 audit(1734866820.480:26511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2274 comm="syz.2.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   68.708500][ T2282] EXT4-fs (loop2): Unrecognized mount option "fsname=minixdf" or missing value
[   69.288614][ T2301] EXT4-fs (loop4): Can't support bigalloc feature without extents feature
[   69.288614][ T2301] 
[   69.299168][ T2301] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[   69.377958][  T374] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[   69.387991][  T374] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[   69.399199][  T374] asix: probe of 10-1:0.0 failed with error -71
[   69.405984][  T374] usb 10-1: USB disconnect, device number 7
[   69.906679][  T337] print_req_error: 56 callbacks suppressed
[   69.906691][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   69.944655][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   69.971703][  T337] buffer_io_error: 45 callbacks suppressed
[   69.971713][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   69.995407][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.015969][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.024753][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.054163][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.073403][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.115424][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.125668][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.137172][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.165988][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   70.177303][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.188798][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.212114][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.225475][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.233598][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   70.234151][ T2359] overlayfs: failed to clone upperpath
[   70.249920][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.262042][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.270897][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   70.312415][ T2356] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue
[   70.327934][ T2356] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.356700][ T2356] overlayfs: './file0' not a directory
[   70.418139][  T374] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   70.574170][ T2386] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[   70.604300][ T2386] EXT4-fs (loop3): mounted filesystem without journal. Opts: lazytime,usrjquota=,errors=remount-ro,norecovery,auto_da_alloc,mblk_io_submit,nouid32,barrier=0x0000000000000000,grpjquota=,bsddf,
[   70.677874][  T374] usb 3-1: Using ep0 maxpacket: 32
[   70.768794][ T2393] EXT4-fs (loop4): Ignoring removed orlov option
[   70.775013][ T2393] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   70.798004][  T374] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[   70.805996][  T374] usb 3-1: config 0 has no interface number 0
[   70.823392][  T374] usb 3-1: config 0 interface 184 has no altsetting 0
[   70.824674][ T2393] EXT4-fs error (device loop4): ext4_orphan_get:1395: inode #15: comm syz.4.740: casefold flag without casefold feature
[   70.878224][ T2393] EXT4-fs (loop4): Remounting filesystem read-only
[   70.884684][ T2393] EXT4-fs (loop4): 1 truncate cleaned up
[   70.890774][ T2393] EXT4-fs (loop4): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,
[   70.899170][ T2381] overlayfs: failed to clone upperpath
[   70.954856][ T2401] netlink: 'syz.0.742': attribute type 4 has an invalid length.
[   70.962525][ T2401] netlink: 17 bytes leftover after parsing attributes in process `syz.0.742'.
[   70.984732][ T2401] netlink: 'syz.0.742': attribute type 4 has an invalid length.
[   70.994785][ T2401] netlink: 17 bytes leftover after parsing attributes in process `syz.0.742'.
[   71.004416][  T374] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   71.013482][  T374] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.022866][ T2401] netlink: 12 bytes leftover after parsing attributes in process `syz.0.742'.
[   71.031778][  T374] usb 3-1: Product: syz
[   71.035851][  T374] usb 3-1: Manufacturer: syz
[   71.040475][  T374] usb 3-1: SerialNumber: syz
[   71.045748][  T374] usb 3-1: config 0 descriptor??
[   71.098299][  T374] smsc75xx v1.0.0
[   71.162590][ T2413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.747'.
[   71.171360][ T2413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.747'.
[   71.181172][ T2413] A link change request failed with some changes committed already. Interface wg0 may have been left with an inconsistent configuration, please check.
[   71.731312][ T2421] netlink: 'syz.9.750': attribute type 12 has an invalid length.
[   71.757930][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[   71.768920][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   71.866244][ T2427] EXT4-fs (loop3): Unrecognized mount option "measure" or missing value
[   71.981429][ T2446] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   72.004104][ T2446] device syzkaller0 entered promiscuous mode
[   72.012441][ T2445] tipc: Resetting bearer <eth:syzkaller0>
[   72.023735][ T2445] tipc: Disabling bearer <eth:syzkaller0>
[   72.068312][ T2454] input: syz0 as /devices/virtual/input/input7
[   72.088519][ T2456] EXT4-fs (loop4): mounted filesystem without journal. Opts: nogrpid,inode_readahead_blks=0x0000000000040000,,errors=continue
[   72.101518][ T2456] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.487985][   T25] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   72.727856][   T25] usb 5-1: Using ep0 maxpacket: 16
[   72.847933][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   72.858753][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   72.868545][   T25] usb 5-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[   72.877647][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.900565][   T25] usb 5-1: config 0 descriptor??
[   73.321650][   T24] kauditd_printk_skb: 114 callbacks suppressed
[   73.321662][   T24] audit: type=1400 audit(1734866825.380:26626): avc:  denied  { mount } for  pid=2505 comm="syz.9.786" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   73.368979][   T25] cypress 0003:04B4:BCA1.000C: unknown main item tag 0x0
[   73.376088][   T25] cypress 0003:04B4:BCA1.000C: unknown main item tag 0x0
[   73.386089][   T25] cypress 0003:04B4:BCA1.000C: item fetching failed at offset 2/5
[   73.400688][   T25] cypress 0003:04B4:BCA1.000C: parse failed
[   73.416577][   T25] cypress: probe of 0003:04B4:BCA1.000C failed with error -22
[   73.444997][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.454138][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.463392][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.479940][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.491367][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.500581][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.509887][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   73.567948][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000011c: -71
[   73.580624][   T25] usb 5-1: USB disconnect, device number 9
[   73.586864][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to write RX_ADDRL: -71
[   73.598018][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to set mac address
[   73.608477][  T374] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[   73.617734][  T374] smsc75xx: probe of 3-1:0.184 failed with error -71
[   73.633345][  T374] usb 3-1: USB disconnect, device number 3
[   74.023010][ T2513] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   74.043301][ T2513] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   74.052980][ T2513] F2FS-fs (loop3): invalid crc value
[   74.075120][ T2513] F2FS-fs (loop3): Found nat_bits in checkpoint
[   74.158147][ T2513] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   74.164997][ T2513] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   74.584890][  T306] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   74.687249][ T2535] netlink: 24 bytes leftover after parsing attributes in process `syz.2.792'.
[   74.720405][ T2535] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[   74.833764][   T24] audit: type=1326 audit(1734866826.890:26627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   74.857942][  T306] usb 5-1: Using ep0 maxpacket: 32
[   74.908992][   T24] audit: type=1326 audit(1734866826.920:26628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   74.952873][   T24] audit: type=1326 audit(1734866826.920:26629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   74.979671][  T337] print_req_error: 74 callbacks suppressed
[   74.979687][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   75.016805][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   75.028006][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   75.037873][   T24] audit: type=1326 audit(1734866826.920:26630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.045781][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   75.062366][  T337] buffer_io_error: 60 callbacks suppressed
[   75.062375][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   75.071630][  T306] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   75.088065][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   75.093817][  T306] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.112078][   T24] audit: type=1326 audit(1734866826.920:26631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.135865][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   75.147357][  T306] usb 5-1: config 0 descriptor??
[   75.150635][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   75.172383][   T24] audit: type=1326 audit(1734866826.920:26632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.195788][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   75.207795][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   75.219394][  T306] hub 5-1:0.0: USB hub found
[   75.224667][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   75.232824][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   75.236723][   T24] audit: type=1326 audit(1734866826.920:26633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.244355][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   75.279397][   T24] audit: type=1326 audit(1734866826.920:26634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.302955][   T24] audit: type=1326 audit(1734866826.920:26635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2541 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f708dac0d29 code=0x7ffc0000
[   75.344090][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.353344][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.362622][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.371682][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.380991][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.397229][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.406572][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   75.465375][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.474709][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.484418][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.493651][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.503208][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.512308][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.521858][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   75.531344][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.540578][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.549915][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.558888][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.568236][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.577216][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.586489][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   75.698042][  T306] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[   75.981803][ T2569] sch_fq: defrate 2 ignored.
[   75.990203][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   76.021748][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.037959][  T306] usbhid 5-1:0.0: can't add hid device: -71
[   76.043996][  T306] usbhid: probe of 5-1:0.0 failed with error -71
[   76.063344][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   76.083031][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.099819][  T306] usb 5-1: USB disconnect, device number 10
[   76.107910][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   76.122840][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   76.160355][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   76.181745][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   76.203131][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   76.557971][  T374] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[   76.928086][  T374] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   76.989312][ T2589] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[   77.010619][ T2589] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   77.030111][ T2589] F2FS-fs (loop4): invalid crc value
[   77.058548][ T2589] F2FS-fs (loop4): Found nat_bits in checkpoint
[   77.108096][  T374] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   77.147955][  T374] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.168096][  T374] usb 4-1: Product: syz
[   77.177270][  T374] usb 4-1: Manufacturer: syz
[   77.182492][ T2589] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   77.192355][ T2589] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   77.199972][  T374] usb 4-1: SerialNumber: syz
[   77.560831][ T2611] device syzkaller0 entered promiscuous mode
[   77.578933][ T2613] xt_CT: You must specify a L4 protocol and not use inversions on it
[   77.735225][ T2620] device pim6reg1 entered promiscuous mode
[   77.837494][ T2626] syz.4.829[2626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.837550][ T2626] syz.4.829[2626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.889791][ T2577] udc-core: couldn't find an available UDC or it's busy
[   77.917162][ T2577] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   77.947983][  T374] cdc_ncm 4-1:1.0: failed GET_NTB_PARAMETERS
[   77.955849][  T374] cdc_ncm 4-1:1.0: bind() failure
[   77.983109][  T374] cdc_ncm 4-1:1.1: bind() failure
[   77.989747][  T374] usb 4-1: USB disconnect, device number 10
[   78.049507][ T2632] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   78.650634][ T2657] FAT-fs (loop4): Directory bread(block 64) failed
[   78.656969][ T2657] FAT-fs (loop4): Directory bread(block 65) failed
[   78.744674][ T2657] FAT-fs (loop4): Directory bread(block 66) failed
[   78.770381][ T2657] FAT-fs (loop4): Directory bread(block 67) failed
[   78.798020][ T2657] FAT-fs (loop4): Directory bread(block 68) failed
[   78.804357][ T2657] FAT-fs (loop4): Directory bread(block 69) failed
[   78.887903][ T2657] FAT-fs (loop4): Directory bread(block 70) failed
[   78.894248][ T2657] FAT-fs (loop4): Directory bread(block 71) failed
[   78.916890][  T501] tipc: Left network mode
[   78.977913][ T2657] FAT-fs (loop4): Directory bread(block 72) failed
[   78.984255][ T2657] FAT-fs (loop4): Directory bread(block 73) failed
[   79.409303][  T501] device veth1_macvtap left promiscuous mode
[   79.419742][  T501] device veth0_vlan left promiscuous mode
[   79.468482][   T24] kauditd_printk_skb: 93 callbacks suppressed
[   79.468493][   T24] audit: type=1400 audit(1734866831.530:26729): avc:  denied  { mounton } for  pid=2669 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   80.100480][ T2685] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   80.117925][ T2685] ext4 filesystem being mounted at /93/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   80.153302][ T2669] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.167852][ T2669] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.175117][ T2669] device bridge_slave_0 entered promiscuous mode
[   80.182041][ T2669] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.189487][ T2669] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.196710][ T2669] device bridge_slave_1 entered promiscuous mode
[   80.483527][ T2692] exfat: Deprecated parameter 'utf8'
[   80.503663][ T2692] exfat: Deprecated parameter 'namecase'
[   80.509553][ T2692] exfat: Deprecated parameter 'utf8'
[   80.533289][ T2669] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.540157][ T2669] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.547240][ T2669] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.554053][ T2669] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.565246][ T2692] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[   80.635507][  T338] print_req_error: 32 callbacks suppressed
[   80.635522][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   80.662575][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   80.687167][  T338] buffer_io_error: 25 callbacks suppressed
[   80.687183][  T338] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   80.705818][   T24] audit: type=1400 audit(1734866832.760:26730): avc:  denied  { append } for  pid=2691 comm="syz.4.849" path="/94/file1/cpuacct.usage_percpu_user" dev="loop4" ino=1048677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   80.731229][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   80.747964][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.755680][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.776602][  T501] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.786223][  T338] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   80.804623][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   80.838540][  T338] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   80.857936][   T24] audit: type=1400 audit(1734866832.790:26731): avc:  denied  { map } for  pid=2691 comm="syz.4.849" path="/94/file1/cpuacct.usage_percpu_user" dev="loop4" ino=1048677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   80.866636][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   80.952638][  T338] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   80.963571][   T24] audit: type=1400 audit(1734866832.790:26732): avc:  denied  { execute } for  pid=2691 comm="syz.4.849" path="/94/file1/cpuacct.usage_percpu_user" dev="loop4" ino=1048677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   80.979893][  T338] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   81.005132][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   81.068103][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   81.107960][  T338] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.133357][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   81.159058][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   81.188178][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   81.234619][ T2705] EXT4-fs (loop4): orphan cleanup on readonly fs
[   81.243324][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   81.254429][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   81.262142][ T2705] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.852: bg 0: block 248: padding at end of block bitmap is not set
[   81.288591][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   81.298203][ T2669] device veth0_vlan entered promiscuous mode
[   81.300003][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[   81.308386][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   81.317596][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   81.332825][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.340647][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   81.351428][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.358083][ T2705] Quota error (device loop4): write_blk: dquota write failed
[   81.359444][  T337] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   81.366706][ T2705] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   81.387395][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.395305][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.398174][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   81.423436][  T337] Buffer I/O error on dev loop3p3, logical block 0, async page read
[   81.435566][ T2669] device veth1_macvtap entered promiscuous mode
[   81.448851][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   81.456741][ T2705] EXT4-fs error (device loop4): ext4_acquire_dquot:6219: comm syz.4.852: Failed to acquire dquot type 1
[   81.469276][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.478917][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   81.507487][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   81.523659][ T2705] EXT4-fs (loop4): 1 truncate cleaned up
[   81.530960][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.548055][ T2705] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   81.548263][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   81.588374][   T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.622909][   T24] audit: type=1400 audit(1734866833.680:26733): avc:  denied  { mounton } for  pid=2669 comm="syz-executor" path="/root/syzkaller.E3qIXD/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   81.733787][ T2729] IPv4: Oversized IP packet from 127.202.26.0
[   81.811089][ T2731] device syzkaller0 entered promiscuous mode
[   82.117653][   T24] audit: type=1400 audit(1734866834.170:26734): avc:  denied  { setopt } for  pid=2752 comm="syz.3.870" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   82.141949][ T2753] syz.3.870[2753] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.142062][ T2753] syz.3.870[2753] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.169877][   T24] audit: type=1400 audit(1734866834.220:26735): avc:  denied  { ioctl } for  pid=2752 comm="syz.3.870" path="socket:[27056]" dev="sockfs" ino=27056 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   82.648396][   T24] audit: type=1326 audit(1734866834.710:26736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2766 comm="syz.3.874" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60c0bf9d29 code=0x7ffc0000
[   82.846206][ T2774] netlink: 12 bytes leftover after parsing attributes in process `syz.0.878'.
[   82.871753][ T2774] device vlan2 entered promiscuous mode
[   82.888247][ T2774] device veth1_to_hsr entered promiscuous mode
[   82.901238][ T2774] device veth1_to_hsr left promiscuous mode
[   83.238103][  T640] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   83.424865][ T2804] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   83.438687][ T2804] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   83.459100][ T2804] syz.4.892 (pid 2804) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   83.478113][  T640] usb 4-1: Using ep0 maxpacket: 32
[   83.607970][  T640] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.618974][  T640] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.629917][  T640] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   83.639083][  T640] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.647529][  T640] usb 4-1: config 0 descriptor??
[   83.688574][  T640] hub 4-1:0.0: USB hub found
[   83.907945][  T640] hub 4-1:0.0: 1 port detected
[   84.137938][  T640] hub 4-1:0.0: hub_hub_status failed (err = -71)
[   84.144196][  T640] hub 4-1:0.0: config failed, can't get hub status (err -71)
[   84.247949][  T640] usbhid 4-1:0.0: can't add hid device: -71
[   84.253785][  T640] usbhid: probe of 4-1:0.0 failed with error -71
[   84.308331][  T640] usb 4-1: USB disconnect, device number 11
[   84.477980][   T24] kauditd_printk_skb: 102 callbacks suppressed
[   84.477992][   T24] audit: type=1326 audit(1734866836.530:26839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2823 comm="syz.0.907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ff755d29 code=0x7ffc0000
[   84.622397][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.631942][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.641237][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.655554][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.667489][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.677797][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.687300][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2704
[   84.779052][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.889503][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.901962][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.919026][ T2849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.906'.
[   84.919529][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.936816][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.948968][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.958323][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2707
[   84.968511][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   84.977615][ T2849] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   84.984572][ T2849] IPv6: NLM_F_CREATE should be set when creating new route
[   84.991847][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.001359][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.010651][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.019892][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.029545][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.038686][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2709
[   85.096875][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.107284][   T24] audit: type=1400 audit(1734866837.160:26840): avc:  denied  { setattr } for  pid=2856 comm="syz.3.911" name="file0" dev="overlay" ino=781 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   85.114652][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.159758][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.179509][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.189070][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.199422][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.208919][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2715
[   85.221298][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.230752][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.241011][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.250412][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.260644][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.270149][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.280187][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=2719
[   85.452589][   T24] audit: type=1404 audit(1734866837.510:26841): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[   85.501176][   T24] audit: type=1400 audit(1734866837.530:26842): avc:  denied  { prog_run } for  pid=2872 comm="syz.3.919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   85.550843][   T24] audit: type=1400 audit(1734866837.540:26843): avc:  denied  { read write } for  pid=289 comm="syz-executor" name="loop3" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   85.600943][   T24] audit: type=1400 audit(1734866837.540:26844): avc:  denied  { prog_load } for  pid=2870 comm="syz.4.918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   85.657986][   T24] audit: type=1400 audit(1734866837.540:26845): avc:  denied  { map_create } for  pid=2870 comm="syz.4.918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   85.698649][   T24] audit: type=1400 audit(1734866837.540:26846): avc:  denied  { prog_load } for  pid=2870 comm="syz.4.918" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   85.699749][ T2906] audit: audit_backlog=65 > audit_backlog_limit=64
[   85.717874][ T2908] audit: audit_backlog=65 > audit_backlog_limit=64
[   85.731325][ T2904] bridge0: port 3(syz_tun) entered blocking state
[   85.747874][ T2904] bridge0: port 3(syz_tun) entered disabled state
[   85.782287][ T2904] device syz_tun entered promiscuous mode
[   85.796657][ T2904] bridge0: port 3(syz_tun) entered blocking state
[   85.802959][ T2904] bridge0: port 3(syz_tun) entered forwarding state
[   86.006759][ T2944] device pim6reg1 entered promiscuous mode
[   86.178408][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.187428][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.196714][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.207791][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.216792][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.225847][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.234874][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.243947][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.244002][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.261805][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.270784][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.279949][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.288954][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.288992][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.306838][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.315825][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=17
[   86.974416][ T3021] device pim6reg1 entered promiscuous mode
[   86.989163][ T3019] ÿÿÿÿÿÿ: renamed from vlan1
[   87.246048][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.255238][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.264331][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.273408][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.282355][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291309][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291334][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291355][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291410][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291429][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291453][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291475][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291498][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291526][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291551][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.291625][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=274
[   87.416112][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.425257][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.434397][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.444804][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.454373][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.463863][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.472881][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.481773][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.490876][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499828][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499856][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499880][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499903][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499935][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.499963][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.500035][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=303
[   87.500208][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.571704][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.580685][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.580808][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.598680][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.607552][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.616543][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.616581][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.634470][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.644621][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.644649][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.674053][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.687251][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.701057][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.710137][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.719320][ T1004] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=overlay ino=304
[   87.858335][ T3063] device pim6reg1 entered promiscuous mode
[   87.941502][ T3065] ÿÿÿÿÿÿ: renamed from vlan1
[   88.431338][ T3101] device pim6reg1 entered promiscuous mode
[   88.708899][  T501] tipc: Disabling bearer <udp:s>
[   88.713905][  T501] tipc: Left network mode
[   88.719124][  T640] general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN
[   88.730644][  T640] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
[   88.738889][  T640] CPU: 0 PID: 640 Comm: kworker/0:6 Not tainted 5.10.231-syzkaller-00700-g4055d754db6f #0
[   88.748604][  T640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   88.758524][  T640] Workqueue: events cleanup_bearer
[   88.763455][  T640] RIP: 0010:cleanup_bearer+0x1dc/0x2b0
[   88.768743][  T640] Code: 8b 1e 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 42 16 0a fd 48 8b 1b 48 83 c3 30 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 25 16 0a fd 4c 8b 33 48 c7 c0 80
[   88.788185][  T640] RSP: 0018:ffffc90000c17cf0 EFLAGS: 00010206
[   88.794084][  T640] RAX: 0000000000000006 RBX: 0000000000000030 RCX: 0000000000000000
[   88.801900][  T640] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff867996f0
[   88.810148][  T640] RBP: ffffc90000c17d30 R08: dffffc0000000000 R09: fffffbfff0cf32df
[   88.817957][  T640] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888127b66800
[   88.825765][  T640] R13: dffffc0000000000 R14: ffff88812c814808 R15: ffff88812c814818
[   88.833582][  T640] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   88.842343][  T640] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   88.848772][  T640] CR2: 00007ffdc7e6fe48 CR3: 00000001119ef000 CR4: 00000000003506b0
[   88.856581][  T640] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   88.864390][  T640] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   88.872338][  T640] Call Trace:
[   88.875428][  T640]  ? __die_body+0x62/0xb0
[   88.879589][  T640]  ? die_addr+0x9f/0xd0
[   88.883583][  T640]  ? exc_general_protection+0x3ff/0x490
[   88.888968][  T640]  ? asm_exc_general_protection+0x1e/0x30
[   88.894519][  T640]  ? cleanup_bearer+0x1dc/0x2b0
[   88.899207][  T640]  process_one_work+0x6dc/0xbd0
[   88.903891][  T640]  worker_thread+0xaea/0x1510
[   88.908405][  T640]  ? _raw_spin_lock+0x1b0/0x1b0
[   88.913092][  T640]  kthread+0x34b/0x3d0
[   88.916997][  T640]  ? worker_clr_flags+0x180/0x180
[   88.921862][  T640]  ? kthread_blkcg+0xd0/0xd0
[   88.926282][  T640]  ret_from_fork+0x1f/0x30
[   88.930531][  T640] Modules linked in:
[   88.976183][  T640] ---[ end trace 8cda6a3131313fb9 ]---
[   88.981513][  T640] RIP: 0010:cleanup_bearer+0x1dc/0x2b0
[   88.986762][  T640] Code: 8b 1e 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 42 16 0a fd 48 8b 1b 48 83 c3 30 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 25 16 0a fd 4c 8b 33 48 c7 c0 80
[   89.040430][  T640] RSP: 0018:ffffc90000c17cf0 EFLAGS: 00010206
[   89.067873][  T640] RAX: 0000000000000006 RBX: 0000000000000030 RCX: 0000000000000000
[   89.075673][  T640] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff867996f0
[   89.132954][  T640] RBP: ffffc90000c17d30 R08: dffffc0000000000 R09: fffffbfff0cf32df
[   89.148032][  T640] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888127b66800
[   89.155849][  T640] R13: dffffc0000000000 R14: ffff88812c814808 R15: ffff88812c814818
[   89.177982][  T640] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   89.186734][  T640] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   89.207877][  T640] CR2: 00007f63243ff5b0 CR3: 0000000111580000 CR4: 00000000003506b0
[   89.215678][  T640] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   89.238117][  T640] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   89.245911][  T640] Kernel panic - not syncing: Fatal exception
[   89.251990][  T640] Kernel Offset: disabled
[   89.256117][  T640] Rebooting in 86400 seconds..