last executing test programs:
5.405009014s ago: executing program 3 (id=20):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
setrlimit(0x8, &(0x7f0000000080))
mlockall(0x7)
write$cgroup_pid(r0, &(0x7f0000000140), 0x12)
5.330975814s ago: executing program 3 (id=21):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180200000000200000000000000000008500000036000000950000000000000049db185086ea6334aa453ec969352991eb38f162575a68c0e574b1758d28a5aa8e86720031a818d25477fc738a2157e500171427cceeb8adc298f40b9affaa9ceb28e1ac72f4d412696ddf196f7380423f5d1cff072e84bf03770a9bf0bede62157b45b5a2ef59cea5048ffb"], &(0x7f00000000c0)='GPL\x00', 0x5, 0xc5, &(0x7f00000001c0)=""/197, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r1, r2, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xe, &(0x7f00000029c0)={@link_local={0xb}, @empty, @void, {@generic={0x88f7}}}, 0x0)
5.201095693s ago: executing program 3 (id=23):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80201, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="030002000002017b1674", 0xa}], 0x1)
5.083592093s ago: executing program 3 (id=24):
openat$vcsu(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x44, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLEaGVEHsEqRsSN4pix1HsLJvQQ3rmikQlTvTIH8C5Jw7cuCC4cSkHJH5EoAaJg9GMJ6mb2o3VJHYUfz7SaObNm/r7fXH8Xuc59gtgZF2PiP2ImIiITyNiNjufy7b4qL0l1z05uLdyeHBvJRet1if/zKX1ybno+DeJa9ljFiPihw8jfpJ7Pm5jd29juVqtbGfl+WZta76xu3drvba8VlmrbJbLS4tLCx/cfr98bm19qzaRHX318R/2v/WzJK2Z7ExnO85Tu+mF4ziJ8Yj4/kUEG4KxrD0Tw06El5KPiNcj4u309T8bY+mzCQBcZa3WbLRmO8sAwFWXT+fAcvlSNhcwE/l8qdSew3sjpvPVeqN58259Z3O1PVc2F4X83fVqZSGbK5yLQi4pL6bHT8vlE+XbEfFaRPxiciotl1bq1dVh/scHAEbYtRPj/38m2+M/AHDFFYedAAAwcD3G//1B5wEADI77fwAYPcZ/ABg97fF/athpAAAD5P4fAEaP8R8ARsoPPv442VqH2fdfr362u7NR/+zWaqWxUartrJRW6ttbpbV6fS39zp7aaY9Xrde3Ft+Lnc/nvr3VaM43dvfu1Oo7m8076fd636kU0qt8sgAAhum1tx79OZeMyB9OpVt0rOVQGGpmwEXLDzsBYGjGhp0AMDRW+4LRdYZ7fNMDcEV0WaL3GcVuHxBqtVqti0sJuGA3vmT+H0ZVx/y/vwKGEWP+H0aX+X8YXa1Wrt81/6PfCwGAy80cP9Dj/f/Xs/1vsjcHfrx68ooHF5kVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXG5H6/+WsrXAZyKfL5UiXomIuSjk7q5XKwsR8WpE/GmyMJmUF4ecMwBwVvm/5bL1v27MvjvzTNWb144PJyLip7/65JefLzeb23+MmMj9a/LofPNBdr48+OwBgNMdjdPpvuNG/snBvZWjbZD5/P27EVFsxz88mIjD4/jjMZ7ui1GIiOl/57JyW65j7uIs9u9HxBe7tT8XM+kcSHvl05Pxk9ivDDR+/pn4+bSuvU9+Fl84h1xg1DxK+p+Pur3+8nE93Xd//RfTHurssv4veaiVw7QPfBr/qP8b69H/Xe83xnu/+177aOr5uvsRXx6POIp92NH/HMXP9Yj/bp/x//KVN9/uVdf6dcSN6B6/M9Z8s7Y139jdu7VeW16rrFU2y+WlxaWFD26/X55P56jne48G//jw5qu96pL2T/eIXzyl/V/vs/0P//fpj772gvjffKdb/Hy88YL4yZj4jT7jL0//ttirLom/2qP9pz3/N/uM//ive88tGw4ADE9jd29juVqtbI/kQfR38e+zH9alyHmkD5Jn4RKk0fXgO4OKNRHdq37+TvvXdDKi8xe71XqpWL16jPOYdQMug+MXfUT8d9jJAAAAAAAAAAAAAAAAXQ3iE0vDbiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABX1/8DAAD//9RMyv0=")
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b26209f1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc563b62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x1, 0x266, &(0x7f0000000340)="$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")
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
setxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
rmdir(&(0x7f0000000040)='./file0\x00')
4.793128402s ago: executing program 3 (id=25):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x10a})
io_setup(0x6, &(0x7f00000000c0)=<r0=>0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/fscaps', 0x1a1081, 0x0)
io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f0000001500)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000100)='9', 0x20000108}])
4.557086492s ago: executing program 3 (id=26):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
socket$igmp6(0xa, 0x3, 0x2)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000)=0x42, 0x4)
4.03535007s ago: executing program 32 (id=26):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
socket$igmp6(0xa, 0x3, 0x2)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000)=0x42, 0x4)
3.517661409s ago: executing program 0 (id=35):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0500000000000109022400010000000009040001090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000400)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0x22, {[@main=@item_012={0x1, 0x0, 0xa, "f1"}, @main=@item_4={0x3, 0x0, 0x8, "2fed1e38"}, @local=@item_4={0x3, 0x2, 0x0, "0004aeec"}, @global=@item_012={0x0, 0x1, 0x3}, @main=@item_4={0x3, 0x0, 0xa, "a820bd65"}, @global=@item_4={0x3, 0x1, 0x0, "911f1820"}, @local=@item_012={0x2, 0x2, 0xa, "e355"}, @global=@item_012={0x2, 0x1, 0x3, "1789"}, @global=@item_4={0x3, 0x1, 0x4, "9cbd876e"}]}}, 0x0}, 0x0)
3.064905718s ago: executing program 2 (id=42):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
close(0xffffffffffffffff)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@mcast2, 0x401, 0x0, 0x3, 0x8, 0x0, 0xfffd}, 0x20)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)
syz_emit_ethernet(0x4e, 0x0, 0x0)
1.706728494s ago: executing program 1 (id=54):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000100000000000000000000e80000000000000000ff"])
1.537081053s ago: executing program 1 (id=56):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x0, 0x14fe, &(0x7f0000002180)="$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")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
chdir(&(0x7f0000000540)='./file0\x00')
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x809411, 0x0, 0x1, 0x0, &(0x7f0000000040))
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
1.369210503s ago: executing program 0 (id=59):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x150c, &(0x7f0000002d40)="$eJzs3Am4jlX3MPC19t43x8nwJJnvtdfNkwybJAklyZAkSUjmhCRJkiRxyJSEJGQ8ScYTkimddMzzkDnp5JUkSUhIsr/rNHz+vcPX+75//8/7fWf9ruu+7OW+177XPut6zj1c13m+6T6iZpNa1RoyM/w79O8D/PWfJABIAIDBAJALAAIAKJ+7fO6M/dk0Jv1bJxH/QxrNutIViCtJ+p+5Sf8zN+l/5ib9z9yk/5mb9D9zk/5nbtJ/ITK1lAJXy5Z5N3n///849d9Jlut/poD/aIf0//83+l86WvqfuUn/Mzfpf+Ym/c/MgitdgLjC5POfuUn/hcjULvs75Q3nrvQ7bdn+hU0IIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhPi/4Jy/xADA7+MrXZcQQgghhBBCCCEuH//ula5ACCGEEEIIIYQQ//MQFGgwEEAWyAoJkA0S4SrIDjkgJ+SCGFwNueEayAPXQl7IB/mhABSEQlAYQiCwwBBBESgKcbgOisH1UBxKQEkoBQ5KQxm4AcrCjVAOboLycDNUgFugIlT65ZwZboeqcAdUgzuhOtSAmlAL7oLacDfUgXugLtwL9eA+qA/3QwN4ABpCI2gMD0ITeAiaQjNoDi2gJbSC1n+Sn5zr7+U/D73gBegNfSAJ+kI/eBH6wwAYCINgMLwEQ+BlGAqvwDAYDiPgVRgJr8EoeB1GwxgYC2/AOBgPE2AiTILJkAxvwhR4C6bC2w/lgOkwA2bCLJgNKfAOzIG5MA/ehfnwHiyA5GyLYDEsgfdhKXwAqfAhLIOPIA2WwwpYCatgNayBtbAO1sMG2AibYDNsga2wDT6G7bADdsIu2A17YC98AvvgU9gPn0E6fv4v5p/9Yz70QEBAhQoNGsyCWTABEzAREzE7ZsecmBNjGMPcmBvzYB7Mi3kxP+bHJCyIhbEwEhIyMhbBIhjHOBbDYlgci2NJLIkOHZbBMlgWb8RyWA7LY3msgBWwIlbCSngr3opVsApWxapYDathdayONbEm3oV34d1YB+tgXayL9bAe1sf62AAbYENsiI2xMTbBJtgUm2JzbI4tsSW2xtbYBttgW2yL7bE9dsAO2BE7YifshJ2xM3bBLtgVu2I37IbdsTv2wOfwOXwen8cX8AXsg9VVX+yH/bA/9seBOAgH4Us4BF/Gl/EVHIbDcQS+iq/iazgKz+BoHINjcSxWUeNxAk5EVpMxGZMxK0zBqTgVp+F0nI4zcRbOxhRMwTk4F+fiuzgf38P3cCEuxMW4BJfgUvwAUzEVl+FZTMPluAJX4ipcjatwLa7DtbgBN+IG3IybcStuxY/xY9yBO3AX7sI9uAc/wU/wU/wUh2E6puMBPIAH8SAewkN4GA/jETyCR/EoHsNjeByP4wk8iafwJJ7G03gGz+I5ADiP5/ECXsCLeDHjw68yGGVUFpVFJagElagSVXaVXeVUOVVMxVRulVvlUXlUXpVX5Vf5VUFVUBVWhRUpUqwiVUQVUXEVV8VUMVVcFVclVUnllFNlVBlVVpVV5VQ5VV7drCqoW1RFVUm1c7eqW1UV1d5VVXeoaqqaqq5qqJqqlqqlaqvaqo6qo+qquqqeqqfqq/tVA9UXB2IjldGZJmo4NlUjsLlqoVqqVuo1fFi1UaOwrWqn2qtH1RgcjR1VG9dJPaE6qwnYRT2lJuLTqpuajN3Vs6qHek71VM+rXqqt6636qGlZ+6p+aib2VwPUQDVIzcEaKqNjNdUr6vmsw9UI9apajK+pUep1NVqNUWPVG2qcGq8mqIlqkpqsktWbaop6S01Vb6tparqaoWaqWWq2SlHvqDlqrpqn3lXz1XtqgVqoFqnFaol6Xy1VH6hU9aFapj5SaWq5WqFWqlVqtVqj1qp1ar3aoDaqTWqz2qK2qm3qY7Vd7VA71S61W+1Re9Unap/6VO1Xn6l09bk6oP6iDqov1CH1pTqsvlJH1NfqqPpGHVPfquPqO3VCnVSn1PfqtPpBnVFn1Tn1ozqvflIX1M/qovIKNGqltTY60Fl0Vp2gs+lEfZXOrnPonDqXjumrdW59jc6jr9V5dT6d3xTQBXUhXViHmrTVrCNdRBfVcX2dLqav18V1CV1Sl9JOl9Zl9A26rL5Rl9M36fL6Zl1B36Ir6kq6sgd9m66ib9dV9R26mr5TV9c1dE1dS9+la+u7dR19j66r79X19H26vr5fN9AP6Ia6kW6sH9RN9EO6qW6mm+sWuqVupVvrh3Ub/Yhuq9vp9vpR3UE/pjvqx3Un/YTurJ/UXfRTuqt+WnfTz+ju+lndQz+ne+qf9UXtdW/dRyfpvrqfflH31wP0QD1ID9Yv6SH6ZT1Uv6KH6eF6hH5Vj9Sv6VH6dT1aj9Fj9Rt6nB6vJ+iJepKerJP1m3qKfktP1W/raXq6nqFn6ll6th7420zz/on8t/5O/tBfzr5Vb9Mf6+16h96pd+ndeo/eq/fqfXqf3q/363Sdrg/oA/qgPqgP6UP6sD6sj+gj+qg+qo/pY/q4Pq5P6JP6R/29Pq1/0Gf0WX1W/6jP6/P6wm8/AzBolNHGmMBkMVlNgslmEs1VJrvJYXKaXCZmrja5zTUmj7nW5DX5TH5TwBQ0hUxhExoy1rCJTBFT1MTNdaaYud4UNyVMSVPKOFPalDE3/Lfz/6y+1qa1aWPamLamrWlv2psOpoPpaDqaTqaT6Ww6my6mi+lquppuppvpbrqbHqaH6Wl6ml6ml+ltepskk2T6mRdNfzPADDSDzGDzkhlihpihZqgZZoaZEWaEGWlGmlFmlBltRpuxZqwZZ8aZCWaCmWQmmWSfy0wxU8xUM9VMM9PMjMG5zCwzy6SYFDPHzDHzzDwz38w3C8wCs8gsMkvMErPULDWpJtUsM8tMmllulpuVZqVZbVabtWatWW/Wm41mo9lsNps0s81sM9vNdrPT7DS7zW6z1+w1+8w+s9/sN+km3RwwB8xBc9AcMofMYXPYHDFHzFFz1Bwzx8xxc9ycMCfMKXPKnDanzRlzxpwz58x5c95cMBfMRXMx47YvUIEKTGCCLEGWICFICBKDxCB7kD3IGeQMYkEsyB3kDvIE1wZ5g3xB/qBAUDAoFBQOwoACG3AQBUWCokE8uC4oFlwfFA9KBCWDUoELSgdlghuCssGNQbngpqB8cHNQIbglqBhUCioHtwa3BVWC24OqwR1BteDOoHpQI6gZ1AruCmoHdwd1gnuCusG9Qb3gvqB+cH/QIHggaBg0ChoHDwZNgoeCpkGzoHnQImgZtApaX9b5vT+T7xHXO+wTJoV9w37hi2H/cEA4MBwUDg5fCoeEL4dDw1fCYeHwcET4ajgyfC0cFb4ejg7HhGPDN8Jx4fhwQjgxnBRODpPDN8Mp4Vvh1PDtcFo4PZwRzAxnhbPDlPCdcE44N5wXvhvOD98LF4QLw0Xh4hB/vSWG1PDDcFn4UZgWLg9XhCvDVeHqcE24NlwXrg83hBvDTeHm8kN+PTTcHu4Id4a7wt3hnnBv+Em4L/w03B9+FqaHn4cHwr+EB8MvwkPhl+Hh8KvwSPh1eDT8JjwWfhseD78LT4Qnw1Ph9+Hp8IfwTHg2PBf+GJ4PfwovhD+HF0OfcXOfcXknQ4ayUBZKoARKpETKTtkpJ+WkGMUoN+WmPJSH8lJeyk/5qSAVpMJUmDIwMRWhIhSnOBWjYlScilNJKkmOHJWhMlSWylI5KkflqTxVoApUkSpSZapMt9FtdDvdTnfQHXQn3Uk1qAbVolpUm2pTHapDdaku1aN6VJ/qUwNqQA2pITWmxtSEmlBTakrNqTm1pJbUmlpTG2pDbakttaf21IE6UEfqSJ2oE3WmztSFulBX6krdqBt1p+7Ug3pQT+pJvagX9abelERJ1I/6UX/qTwNpIA2mwTSEhtBQGkrDaBiNoBE0kkbSKBpFo2kMjaU3aByNpwk0kSbRZEqmZJpCU2gqTaVpNI1m0AyaRbMohVJoDs2heTSP5tN8WkALaBEtoiW0hJbSUkqlVFpGyyiN0mgFraBVtIrW0BpaR+toA22gTbSJttAW2kbbaDttp520k3bTbtpLe2kf7aP9tJ/SKZ0O0AFEOkiH6BAdpsN0hI7QUTpKx+gYHafjdIJO0Ck6RafpNJ2hM3SOztF5+oku0M90kTwl2Gw20V5ls9scNqfNZf86zm8L2IK2kC1sQ5vX5vtDTNba4raELWlLWWdL2zL2hr+JK9pKtrK91d5mq9jbbVVb0WaD/xrXtnfbOvYeW9fea2vZu/4Q17P32fr2IdvANrMNbQvb2LayTexDtqltZpvbFralbWU72MdsR/u47WSfsJ3tk38TL7Uf2HV2vd1gN9p99lN7zv5oj9pv7Hn7k+1t+9jB9iU7xL5sh9pX7DA7/I8xgB1r37Dj7Hg7wU60k+zkv4ln2Jl2lp1tU+w7do6d+zfxEvu+nW9T7QK70C6yi3+JM2pKtR/aZfYjm2aX2xV2pV1lV9s1du3/rnWl3Wy32K12r/3Ebrc77E67y+62e36JM9ax335m0+3n9oj92h60X9hD9pg9bL/6Jc5Y3zH7rT1uv7Mn7El7yn5vT9sf7Bl79pf1Z6z9e/uzvWi9BUZWrNlwwFk4KydwNk7kqzg75+CcnItjfDXn5ms4D1/LeTkf5+cCXJALcWEOmdgyc8RFuCjH+TouxtdzcS7BJbkUOy7NZfgGLss3cjm+icvzzVyBb+GKXIkr8618G1fh27kq38HV+E6uzjW4Jtfiu7g23811+B6uy/dyPb6P6/P93IAf4IbciBvzg9yEH+Km3Iybcwtuya24NT/MbfgRbsvtuD0/yh34Me7Ij3MnfoI785PchZ/irvw0d+NnuDs/yz34Oe7Jz3MvfoF7cx9O4r7cj1/k/jyAB/IgHswv8RB+mYfyKzyMh/MIfpVH8ms8il/n0TyGx/IbPI7H8wSeyJN4Mifzm+2m8Fs8ld/maTydZ/BMnsWzOYXf4Tk8l+fxuzyf3+MFvJAX8WJewu/z0oueU/lDXsYfcRov5xW8klfxal7Da3kdr+cNvJE38Wbewlt5G3/M23kH7+RdvJv38F7+hPfxp7yfP+N0/pwP8F/4IH/Bh/hLPsxf8RH+mo/yN3yMv+Xj/B2f4JN8ir/n0/wDn+GzfI5/5PP8E1/gn/kie4YIIxXpyERBlCXKGiVE2aLE6Kooe5QjyhnlimLR1VHu6JooT3RtlDfKF+WPCkQFo0JR4SiMKLIRR1FUJCoaxaPromLR9VHxqERUMioVuah0VCa6ISob3RiVi26Kykc3RxWiW6KKUaWocnRrdFtUJbo9qhrdEVWL7oyqRzWimlGt6K6odnR3VCe6J6ob3RuVi+6L6kf3Rw2iB6KGUaOocfRg1CR6KGoaNYuaRy2illGrqHX0cNQmeiRqG7WL2kePRh2ix6KO0eNRp+iJqHP05KX9JYJfr6Z/tT8p6hvp396Q3aMXxRfHl8Tfjy+NfxBPjX8YXxb/KJ4WXx5fEV8ZXxVfHV8TXxtfF18f3xDfGN8U3xzfEt8a975WVnCY8SAMxgUui8vqElw2l+iuctldDpfT5XIxd7XL7a5xedy1Lq/L5/K7Aq6gK+QKu9CRs45d5Iq4oi7urnPF3PWuuCvhSrpSzrnSroxr5Vq71q6Ne8S1de1ce/eoe9Q95h5zjyf8Vrjr4p5yXd3Trpt7xj3jnnU93HOup3ve9XIvuN6uj0tySa6f6+f6u/5uoBvoBrvBbogb4oa6oW6YG+ZGuBFupBvpRrlRbrQb7ca6sW6cG+cmuAlukpvkkl2ym+KmuKluqpvmprkZboab5Wa5FJfi5rg5bp6b5+a7+W6BW+AWuUVuiVvilrqlLtWlumVumUtzaW6FW+FWuVVujVvj1rl1boPb4Da5TW6L2+K2uW1uu9vudrqdbrfb7fa6vW6f2+f2u/0u3aW7A+6AO+gOukPuS3fYfeWOuK/dUfeNO+a+dcfdd+6EO+lOOa9Pux/cGXfWnXM/uvPuJ3fB/ewuOu+SY2/GpsTeik2NvR2bFpsemxGbGZsVmx1Lib0TmxObG5sXezc2PxfEFsQWxhYFEFsSez+2NPZBLDX2YWxZ7KNYWmx5bEVsZWxVbHXM+0LbI1/EF/Vxf50v5q/3xX0JX9KX8s6X9mX8Db6sv9GX8zf58v5mX8Hf4iv6Sr6yb+ab+xa+pW/lW/uHfRv/iG/r2/n2/lHfwT/mO/rHfSf/hO/sn/Rd/FO+q3/ad/PP+O7+2fd+67Lv5V/wvX0fn+T7+n7+Rd/fD/AD/SA/2L/kh/iX/VD/ih/mh/sR/lU/0r/mR/nX/Wg/xo/1b/hxfryf4Cf6SX6yT/Zv+in+LT/Vv+2n+el+hp/pZ/nZPsW/4+f4uX6ef9fP9+/5BX6hX+QX+yX+fb/Uf+BT/Yd+mf/Ip/nlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/12v8Pv9Lv8br/H7/Wf+H3+U7/ff+bT/ef+gP+LP+i/8If8l/6w/8of8V/7o/4bf8x/64/77/wJf9Kf8t/70/4Hf8af9ef8j/68/8lf8D/7i/I3a0IIIYQQ/xT9J/v7/p3/U79tGfoBQI4dBQ7/9Zyb8v46HqD2dY4BwBN9ujf6fWvUKCkp6bdj09pAUHQhAMQu5f/y/QO/xcuhPTwGnaAdlP279Q1QlX+57/uH82sI4jcDJAJk+z0n4/EoEf56/hv/wfzN3uc/m38hQPGil3IyTvR7fGn+cv9g/j0d/mT+bF8kA7T9LznZ4VJ8af4y8Ag8CZ3+cKQQQgghhBBCCPGrAep8jz97vs14Pi9oLuVkhUvxnz2f/4mql2MNQgghhBBCCCGE+D97+rmejz/cqVO7rpdl0BYALuuEl2eQ9T+jjP+AAQLAf0AZMvjPH1zp30xCCCGEEEKIy+3STf+VrkQIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhMi8/v1vCFP/9MFXeo1CCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCHElfa/AgAA///mhlPZ")
capset(0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000100)='./file0\x00', 0xecf86c37d53049cc)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
1.368948833s ago: executing program 5 (id=60):
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$P9_RGETLOCK(r0, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r0, 0x407, 0x7000000)
1.368745233s ago: executing program 4 (id=61):
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r1, &(0x7f00000001c0)=""/184, 0xb8)
1.366309753s ago: executing program 4 (id=62):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text16={0x10, &(0x7f0000000000)="66b9800000c00f326635000100000f300b5bff0fae07670fc799f4fffffff42e670fc739baf80c66b89492898366efbafc0c66b8e100000066eff3a70f2370b861008ec0", 0x44}], 0x1, 0xc, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
1.356236873s ago: executing program 2 (id=63):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$eJzs3c9rHFUcAPDvbJKmSauJIGg9BQQNlG5Mja2Ch4oHESwU9Gy7bLahZpMt2U1pQg4tIngRVDwIeunZH/Xm1R9X/S88SEvVtFjxIJHZH+222U03bXY3kM8HXva9mdm89903P97sDDsB7FkT6Z9MxKGI+DiJGKtPTyJiqJobjDhRW+72+lo+TUlsbLz9Z1Jd5tb6Wj6a3pM6UC88HRE/fRBxOLO53vLK6nyuWCws1ctTlYXzU+WV1SPnFnJzhbnC4rHpmZmjx186fmznYv3719WD1z954/lvT/z7/lNXP/o5iRNxsD6vOY6dMhET9c9kKP0I7/H6TlfWZ0m/G8BDSTfNgdpWHodiLAaquTZGetkyAKBbNgCAPSgxBgCAPabxPcCt9bV8I/X3G4neuvFaROyvxd+4vlmbM1i/Zre/eh109FZyz5WRJCLGd6D+iYj48vt3v05T1PvBtTSgFy5djogz4xOb9//JpnsWtuuFrWZuDFdfJu6bvNeOP9BPP6Tjn5dbjf8yd8Y/0WL8M9xi230YD97+M9d2oJq20vHfq033tt1uir9ufKBeeqw65htKzp4rFtJ92+MRMRlDw2l5urpo65Hb5M3/brarv3n899en732V1p++3l0ic21w+N73zOYquUeNu+HG5YhnBlvFn9zp/6TN+PdUh3W8+cqHX7Sbl8afxttIm+Pvro0rEc+17P+7fZlseX/iVHV1mGqsFC1899vno+3qb+7/NKX1N84FeiHt/9Gt4x9Pmu/XLG+/jl+ujP3Ybt6D42+9/u9L3qnm99WnXcxVKkvTEfuStzZPP3r3vY1yY/k0/slnW2//tWpbr//pOeGZDuMfvP7HNw8ff3el8c9uq/+3n7l6e36gXf2d9f9MNTdZn9LJ/q/TBj7KZwcAAAAAAAAAAAAAAAAAAAAAAAAAncpExMFIMtk7+Uwmm609w/vJGM0US+XK4bOl5cXZqD4rezyGMo2fuhxr+j3U6frv4TfKR+8rvxgRT0TEZ8Mj1XI2XyrO9jt4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKg70Ob5/6nfh/vdOgCga/b3uwEAQM85/gPA3rO94/9I19oBAPSO838A2Hs6Pv6f6W47AIDecf4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAl506eTJNG/+sr+XT8uyFleX50oUjs4XyfHZhOZ/Nl5bOZ+dKpbliIZsvLbT9R5dqL8VS6fxMLC5fnKoUypWp8srq6YXS8mLl9LmF3FzhdGGoZ5EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQOfKK6vzuWKxsCSzZWZkdzRj12QGY1c0Q6Zrmea9xEj/dlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9z/AQAA//+MoS4e")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
write$binfmt_aout(r0, &(0x7f00000017c0)={{0x107, 0x10, 0x5, 0x38f, 0x369, 0x2, 0x21, 0x64aa9473}, "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x820)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42041, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="9a", 0x1}], 0x1, 0x7ff, 0x0, 0x0)
1.263629843s ago: executing program 4 (id=64):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x6c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x39, 0xe, {{{}, {0x7ffe}, @device_b, @broadcast, @from_mac=@broadcast}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x71, 0x7, {0x0, 0x1, 0x0, 0x1, 0x0, 0x8b, 0xd}}, @void}}, @NL80211_ATTR_IE_ASSOC_RESP={0x4}], @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x7ff}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x6c}}, 0x0)
1.208401393s ago: executing program 4 (id=65):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
1.149155933s ago: executing program 0 (id=66):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x147842, 0x88)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
preadv2(r0, &(0x7f0000000000)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x0, 0x80, 0x1)
1.148791603s ago: executing program 4 (id=67):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000002, 0x4010, 0xffffffffffffffff, 0x0)
getsockopt(0xffffffffffffffff, 0x28, 0x6, 0x0, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'geneve1\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r2 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(0xffffffffffffffff, 0x4002f516, &(0x7f0000000000)={0x2, 0xd})
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x16002, 0x0)
open_tree(r3, &(0x7f00000000c0)='./bus\x00', 0x81000)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x4e20, @loopback}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r5, &(0x7f0000000280)={0x2, 0x4e20, @loopback}, 0x10)
syz_emit_ethernet(0x115, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x1)
r7 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
1.027350882s ago: executing program 2 (id=68):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x10, 0x0, 0x0)
981.025092ms ago: executing program 5 (id=69):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4}, 0x10)
write(r0, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000f00c00000000", 0x14)
recvmmsg(r0, &(0x7f0000001b40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0)
880.133312ms ago: executing program 5 (id=70):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000180)=0x30a, 0x4)
sendmmsg$inet(r0, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)="15a70fd082062ccdb3780f492867a8afedbafe35d540154ac7eed48a085568c0ebc6774de7cf49ce3bb41ac6046c3882d42ed0351d83c91f4b88e3728f5fba6542b311b64382009a2369e099ce3a", 0x4e}, {&(0x7f00000002c0)="ae7527210a944890ca4b495cdf323652893dcf611f24a5b7a6013e20a472c793d44acbfba0f84a13f59a415d9633254075aaf3cd7c104dd93272772f8882e7db3520e6dc8345b85d8078103ce02d8adb213ccf0bd574d320f213545d374fc69001c086945ecc250a51f262bc2f165e45e1f78065ad83e73c83fc61132def3395520d9acfac", 0x85}, {&(0x7f0000000380)="269906843b113ce05cc458e94fcc8dbee9dabd81cbbbd03fa9f01a6d214cf560fa3beed290075763e020190c3255b64d955fad3722ec8bb9a29e854273dc7249268494e479f02b6245aa6d83ad222860790f1e25", 0x54}], 0x3}}], 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x0, 0x0, 0x21)
811.505312ms ago: executing program 2 (id=71):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000080)="0f20c035080000000f22c0d1d39a3817481500300f22d79a90f900000c0026360fc7981f93a48bc4c3616f88bc000000fcc4e1f8518600900000b9f20a00000f320f20e035000100000f22e0", 0x4c}], 0x1, 0x42, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
750.467162ms ago: executing program 0 (id=72):
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0))
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f0000000000)={r2, r1, 0x100})
443.014251ms ago: executing program 1 (id=73):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x9, 0x0, 0x0, 0x0, 0x40, 0x0, 0xc, 0x0, 0x400000000000000, 0x0, 0x0, 0x6, 0x1, 0x5, 0x7], 0xeeef0000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
389.186551ms ago: executing program 5 (id=74):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x4c, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x44)
388.702751ms ago: executing program 2 (id=75):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000100000011, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="300000001000010429bd70000000000000000000", @ANYRES32=r2, @ANYBLOB="e110050009000100050021000208000008000d000600e6"], 0x30}}, 0x0)
385.846321ms ago: executing program 5 (id=76):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, &(0x7f0000000680), 0xfe, 0x244, &(0x7f0000000400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0xfed2)
fallocate(r0, 0x10, 0x6, 0x10001)
255.7173ms ago: executing program 0 (id=77):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@RTM_NEWMDB={0x18, 0x1e, 0x25}, 0x18}, 0x1, 0xf00}, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x400, &(0x7f0000000180)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54da0e13047e9f62fbb85ccc774b3ec4c81a1a985232d16d0d934460e920a59172e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9ae"], 0xfd, 0x274, &(0x7f0000000500)="$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")
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x1c, &(0x7f0000000040), &(0x7f0000cab000)=0x7)
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})
205.79972ms ago: executing program 1 (id=78):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff70)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)
r1 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000c40), 0x12)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000080), 0x12)
162.8187ms ago: executing program 4 (id=79):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000700)={'veth0\x00', <r5=>0x0})
sendmsg$can_raw(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x1d, r5}, 0x10, &(0x7f00000003c0)={0x0, 0x10}}, 0x0)
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
writev(r6, &(0x7f0000000040)=[{&(0x7f0000002500)='\f7', 0x2}, {&(0x7f0000000440)='0', 0x1}], 0x2)
150.17024ms ago: executing program 1 (id=80):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
149.812ms ago: executing program 2 (id=81):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r6, r5, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xb3}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 5)
134.61266ms ago: executing program 5 (id=82):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x19, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
flistxattr(r5, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
126.36343ms ago: executing program 1 (id=83):
time(0x0)
0s ago: executing program 0 (id=84):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[], 0x0, 0x14fe, &(0x7f0000002180)="$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")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
chdir(&(0x7f0000000540)='./file0\x00')
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x809411, 0x0, 0x1, 0x0, &(0x7f0000000040))
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.0.66' (ED25519) to the list of known hosts.
[ 22.834415][ T30] audit: type=1400 audit(1740690733.428:66): avc: denied { integrity } for pid=281 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[ 22.858158][ T30] audit: type=1400 audit(1740690733.448:67): avc: denied { mounton } for pid=281 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 22.859561][ T281] cgroup: Unknown subsys name 'net'
[ 22.880647][ T30] audit: type=1400 audit(1740690733.448:68): avc: denied { mount } for pid=281 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 22.907742][ T281] cgroup: Unknown subsys name 'devices'
[ 22.907788][ T30] audit: type=1400 audit(1740690733.478:69): avc: denied { unmount } for pid=281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 23.142943][ T281] cgroup: Unknown subsys name 'hugetlb'
[ 23.148380][ T281] cgroup: Unknown subsys name 'rlimit'
[ 23.378727][ T30] audit: type=1400 audit(1740690733.968:70): avc: denied { setattr } for pid=281 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 23.401776][ T30] audit: type=1400 audit(1740690733.968:71): avc: denied { mounton } for pid=281 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 23.426333][ T30] audit: type=1400 audit(1740690733.968:72): avc: denied { mount } for pid=281 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 23.437860][ T284] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 23.458059][ T30] audit: type=1400 audit(1740690734.048:73): avc: denied { relabelto } for pid=284 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 23.483328][ T30] audit: type=1400 audit(1740690734.048:74): avc: denied { write } for pid=284 comm="mkswap" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 23.521480][ T30] audit: type=1400 audit(1740690734.118:75): avc: denied { read } for pid=281 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 23.546898][ T281] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 24.878249][ T292] bridge0: port 1(bridge_slave_0) entered blocking state
[ 24.885664][ T292] bridge0: port 1(bridge_slave_0) entered disabled state
[ 24.893076][ T292] device bridge_slave_0 entered promiscuous mode
[ 24.917877][ T292] bridge0: port 2(bridge_slave_1) entered blocking state
[ 24.924760][ T292] bridge0: port 2(bridge_slave_1) entered disabled state
[ 24.932129][ T292] device bridge_slave_1 entered promiscuous mode
[ 24.946579][ T295] bridge0: port 1(bridge_slave_0) entered blocking state
[ 24.953755][ T295] bridge0: port 1(bridge_slave_0) entered disabled state
[ 24.961034][ T295] device bridge_slave_0 entered promiscuous mode
[ 24.975407][ T295] bridge0: port 2(bridge_slave_1) entered blocking state
[ 24.982279][ T295] bridge0: port 2(bridge_slave_1) entered disabled state
[ 24.989549][ T295] device bridge_slave_1 entered promiscuous mode
[ 25.004864][ T294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.011805][ T294] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.018991][ T294] device bridge_slave_0 entered promiscuous mode
[ 25.036656][ T294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.043563][ T294] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.051006][ T294] device bridge_slave_1 entered promiscuous mode
[ 25.085769][ T296] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.092673][ T296] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.099897][ T296] device bridge_slave_0 entered promiscuous mode
[ 25.115982][ T293] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.122914][ T293] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.130015][ T293] device bridge_slave_0 entered promiscuous mode
[ 25.136582][ T296] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.143442][ T296] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.150781][ T296] device bridge_slave_1 entered promiscuous mode
[ 25.168039][ T293] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.174920][ T293] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.182171][ T293] device bridge_slave_1 entered promiscuous mode
[ 25.357102][ T296] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.363976][ T296] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.371085][ T296] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.377845][ T296] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.394033][ T294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.400892][ T294] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.408091][ T294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.414923][ T294] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.429197][ T292] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.436069][ T292] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.443190][ T292] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.449938][ T292] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.464737][ T295] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.471612][ T295] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.478701][ T295] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.485502][ T295] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.503465][ T293] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.510309][ T293] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.517442][ T293] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.524215][ T293] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.552829][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.560391][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.567613][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.575208][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.582548][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 25.590015][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 25.598290][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 25.606880][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.614114][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.621119][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 25.628068][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 25.657062][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 25.681748][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 25.690678][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 25.698485][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 25.706051][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 25.713524][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 25.721716][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.728566][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.736056][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 25.744113][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.750964][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.758148][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 25.765992][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 25.784889][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 25.792947][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.799771][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.807022][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 25.815186][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.822054][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.845368][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 25.854056][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 25.861412][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 25.868623][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 25.877170][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 25.884042][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 25.891404][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 25.899347][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 25.906199][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 25.913428][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 25.928470][ T296] device veth0_vlan entered promiscuous mode
[ 25.937610][ T294] device veth0_vlan entered promiscuous mode
[ 25.944701][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 25.953162][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 25.961557][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 25.969427][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 25.977358][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 25.985273][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 25.993394][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 26.001486][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 26.009275][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 26.017207][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 26.025158][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 26.032620][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 26.039836][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 26.047249][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 26.062676][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 26.070009][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 26.077401][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 26.085880][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 26.098908][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 26.107321][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 26.124063][ T294] device veth1_macvtap entered promiscuous mode
[ 26.131309][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 26.139532][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 26.147926][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 26.156025][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 26.164213][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 26.172438][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 26.180353][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 26.188018][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 26.196229][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 26.204333][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 26.211198][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 26.218461][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 26.226949][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 26.235085][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 26.241934][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 26.253070][ T292] device veth0_vlan entered promiscuous mode
[ 26.259568][ T296] device veth1_macvtap entered promiscuous mode
[ 26.271484][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 26.279004][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 26.286910][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 26.295009][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 26.302918][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 26.310909][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 26.318185][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 26.325741][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 26.333112][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 26.347947][ T295] device veth0_vlan entered promiscuous mode
[ 26.356798][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 26.365110][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 26.373179][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 26.381440][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 26.389220][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 26.397543][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 26.405726][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 26.413712][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 26.432106][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 26.440392][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 26.448605][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 26.457094][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 26.465505][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 26.474095][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 26.486487][ T292] device veth1_macvtap entered promiscuous mode
[ 26.508358][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 26.508932][ T294] request_module fs-gadgetfs succeeded, but still no fs?
[ 26.516894][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 26.532521][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 26.558350][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 26.571134][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 26.579282][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 26.587775][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 26.596204][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 26.604410][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 26.614760][ T293] device veth0_vlan entered promiscuous mode
[ 26.622254][ T295] device veth1_macvtap entered promiscuous mode
[ 26.636733][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 26.636982][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 26.637257][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 26.641263][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 26.641556][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 26.653520][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 26.687155][ T322] loop2: detected capacity change from 0 to 128
[ 26.692125][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 26.713523][ T293] device veth1_macvtap entered promiscuous mode
[ 26.722202][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 26.730714][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 26.739074][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 26.747243][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 26.755333][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 26.779290][ T322] attempt to access beyond end of device
[ 26.779290][ T322] loop2: rw=2049, want=1041, limit=128
[ 26.797339][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 26.807609][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 26.809214][ T322] attempt to access beyond end of device
[ 26.809214][ T322] loop2: rw=524288, want=369, limit=128
[ 26.831600][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 26.839042][ T322] attempt to access beyond end of device
[ 26.839042][ T322] loop2: rw=0, want=153, limit=128
[ 26.850235][ T322] attempt to access beyond end of device
[ 26.850235][ T322] loop2: rw=0, want=153, limit=128
[ 26.852444][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 26.862890][ T6] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[ 26.870192][ T322] attempt to access beyond end of device
[ 26.870192][ T322] loop2: rw=0, want=153, limit=128
[ 26.887727][ T322] attempt to access beyond end of device
[ 26.887727][ T322] loop2: rw=0, want=153, limit=128
[ 26.898379][ T322] attempt to access beyond end of device
[ 26.898379][ T322] loop2: rw=0, want=153, limit=128
[ 26.911338][ T322] attempt to access beyond end of device
[ 26.911338][ T322] loop2: rw=0, want=153, limit=128
[ 26.922319][ T322] attempt to access beyond end of device
[ 26.922319][ T322] loop2: rw=0, want=153, limit=128
[ 26.938052][ T315] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 26.944003][ T331] loop3: detected capacity change from 0 to 256
[ 26.946782][ T322] attempt to access beyond end of device
[ 26.946782][ T322] loop2: rw=0, want=153, limit=128
[ 26.980680][ T331] =======================================================
[ 26.980680][ T331] WARNING: The mand mount option has been deprecated and
[ 26.980680][ T331] and is ignored by this kernel. Remove the mand
[ 26.980680][ T331] option from the mount to silence this warning.
[ 26.980680][ T331] =======================================================
[ 27.047682][ T331] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 27.170446][ T60] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 27.190492][ T315] usb 1-1: Using ep0 maxpacket: 16
[ 27.262631][ T6] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 27.277032][ T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 27.294579][ T6] usb 2-1: config 0 descriptor??
[ 27.310538][ T315] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 27.321340][ T315] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 27.340539][ T315] usb 1-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[ 27.349696][ T315] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 27.368711][ T315] usb 1-1: config 0 descriptor??
[ 27.513344][ T336] loop3: detected capacity change from 0 to 256
[ 27.530608][ T60] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[ 27.540201][ T60] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[ 27.566704][ T338] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[ 27.583439][ T336] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[ 27.669524][ T350] loop2: detected capacity change from 0 to 512
[ 27.693513][ T350] EXT4-fs (loop2): Ignoring removed orlov option
[ 27.702510][ T350] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[ 27.715290][ T350] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[ 27.725625][ T350] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.12: Corrupt directory, running e2fsck is recommended
[ 27.749954][ T350] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[ 27.758050][ T350] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2219: inode #15: comm syz.2.12: corrupted in-inode xattr
[ 27.854883][ T350] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.12: couldn't read orphan inode 15 (err -117)
[ 27.867964][ T315] hid-multitouch 0003:1FD2:6007.0001: unknown main item tag 0x0
[ 27.877981][ T315] hid-multitouch 0003:1FD2:6007.0001: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.0-1/input0
[ 27.889214][ T348] loop3: detected capacity change from 0 to 1024
[ 27.890362][ T350] EXT4-fs (loop2): mounted filesystem without journal. Opts: data_err=abort,noblock_validity,nogrpid,orlov,data_err=abort,grpjquota=.sb=0x0000000000000001,init_itable,jqfmt=vfsold,stripe=0x0000000000010000,,,errors=continue. Quota mode: writeback.
[ 27.919841][ T30] kauditd_printk_skb: 48 callbacks suppressed
[ 27.919855][ T30] audit: type=1400 audit(1740690738.508:124): avc: denied { mount } for pid=349 comm="syz.2.12" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 27.930547][ T60] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[ 27.952813][ T30] audit: type=1400 audit(1740690738.518:125): avc: denied { mounton } for pid=349 comm="syz.2.12" path="/3/file1" dev="tmpfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 27.978668][ T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 27.990698][ T60] usb 5-1: Product: syz
[ 27.995736][ T60] usb 5-1: Manufacturer: syz
[ 28.000639][ T60] usb 5-1: SerialNumber: syz
[ 28.005250][ T348] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,,errors=continue. Quota mode: writeback.
[ 28.027557][ T60] usb 5-1: config 0 descriptor??
[ 28.048821][ T30] audit: type=1400 audit(1740690738.638:126): avc: denied { watch watch_reads } for pid=358 comm="syz.2.14" path="/4/file0" dev="tmpfs" ino=41 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 28.068346][ T42] usb 1-1: USB disconnect, device number 2
[ 28.074218][ T327] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 28.096705][ T363] loop2: detected capacity change from 0 to 1024
[ 28.104498][ T30] audit: type=1400 audit(1740690738.678:127): avc: denied { unmount } for pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 28.110079][ T327] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 28.124648][ T363] EXT4-fs (loop2): Ignoring removed nobh option
[ 28.131984][ T30] audit: type=1400 audit(1740690738.678:128): avc: denied { name_bind } for pid=360 comm="syz.3.15" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[ 28.141270][ T363] EXT4-fs (loop2): Ignoring removed bh option
[ 28.169124][ T363] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 28.170837][ T365] loop3: detected capacity change from 0 to 128
[ 28.191807][ T363] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,errors=remount-ro,max_dir_size_kb=0x00000000004007b1,data_err=ignore,abort,nobh,user_xattr,bh,dioread_nolock,block_validity,. Quota mode: none.
[ 28.228792][ T365] EXT4-fs (loop3): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 28.233728][ T30] audit: type=1400 audit(1740690738.828:129): avc: denied { write } for pid=362 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 28.243920][ T365] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 28.272108][ T363] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3876: comm syz.2.16: Allocating blocks 497-513 which overlap fs metadata
[ 28.289083][ T30] audit: type=1400 audit(1740690738.858:130): avc: denied { add_name } for pid=362 comm="syz.2.16" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 28.295580][ T363] EXT4-fs (loop2): Remounting filesystem read-only
[ 28.310912][ T30] audit: type=1400 audit(1740690738.858:131): avc: denied { create } for pid=362 comm="syz.2.16" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 28.335630][ T30] audit: type=1400 audit(1740690738.858:132): avc: denied { read write } for pid=362 comm="syz.2.16" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 28.352786][ T362] EXT4-fs (loop2): pa ffff888112634d20: logic 16, phys. 145, len 23
[ 28.357666][ T30] audit: type=1400 audit(1740690738.858:133): avc: denied { open } for pid=362 comm="syz.2.16" path="/5/file1/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 28.365693][ T362] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4893: group 0, free 0, pa_free 1
[ 28.395674][ T327] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 28.405164][ T327] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 28.408690][ T362] EXT4-fs (loop2): Remounting filesystem read-only
[ 28.477907][ T372] loop2: detected capacity change from 0 to 512
[ 28.508135][ T372] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[ 28.521801][ T372] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 28.595328][ T377] Illegal XDP return value 4294966772, expect packet loss!
[ 28.658249][ T380] loop0: detected capacity change from 0 to 256
[ 28.782071][ T380] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 28.796433][ T380] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[ 28.815316][ T380] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 28.819073][ T384] loop3: detected capacity change from 0 to 512
[ 28.848223][ T380] incfs: ino conflict with backing FS 1
[ 28.858743][ T380] exFAT-fs (loop0): error, found bogus dentry(18) beyond unused empty group(0) (start_clu : 5, cur_clu : 5)
[ 28.870838][ T60] Error reading MAC address
[ 28.878424][ T384] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[ 28.882668][ T380] exFAT-fs (loop0): Filesystem has been set read-only
[ 28.898233][ T60] usb 5-1: USB disconnect, device number 2
[ 28.900059][ T384] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 29.016264][ T384] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #2: block 3: comm syz.3.24: lblock 0 mapped to illegal pblock 3 (length 1)
[ 29.054250][ T293] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[ 29.088839][ T45] EXT4-fs error (device loop3): __ext4_get_inode_loc:4351: comm kworker/u4:2: Invalid inode table block 0 in block_group 0
[ 29.110501][ T293] EXT4-fs error (device loop3): __ext4_get_inode_loc:4351: comm syz-executor: Invalid inode table block 0 in block_group 0
[ 29.124398][ T293] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[ 29.134879][ T293] EXT4-fs error (device loop3): ext4_quota_off:6477: inode #3: comm syz-executor: mark_inode_dirty error
[ 29.147945][ T293] EXT4-fs error (device loop3): __ext4_get_inode_loc:4351: comm syz-executor: Invalid inode table block 0 in block_group 0
[ 29.167629][ T293] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[ 29.178462][ T293] EXT4-fs error (device loop3): ext4_quota_off:6477: inode #4: comm syz-executor: mark_inode_dirty error
[ 29.332502][ T293] syz-executor (293) used greatest stack depth: 20688 bytes left
[ 29.811986][ T6] usb 2-1: USB disconnect, device number 2
[ 29.851752][ T395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.28'.
[ 29.861628][ T393] loop0: detected capacity change from 0 to 512
[ 29.887273][ T395] netlink: 20 bytes leftover after parsing attributes in process `syz.2.28'.
[ 29.925920][ T403] loop1: detected capacity change from 0 to 256
[ 29.941546][ T393] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[ 29.951793][ T393] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[ 29.960143][ T393] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 29.966816][ T393] EXT4-fs warning (device loop0): ext4_enable_quotas:6423: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 29.976874][ T403] exFAT-fs (loop1): error, invalid access to FAT (entry 0x00000005) bogus content (0x00000001)
[ 29.981972][ T393] EXT4-fs (loop0): Cannot turn on quotas: error -22
[ 30.001851][ T393] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #13: comm syz.0.27: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 30.021279][ T393] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.27: couldn't read orphan inode 13 (err -117)
[ 30.033136][ T403] exFAT-fs (loop1): Filesystem has been set read-only
[ 30.039724][ T403] exFAT-fs (loop1): failed to load upcase table
[ 30.046201][ T393] EXT4-fs (loop0): mounted filesystem without journal. Opts: noquota,noblock_validity,jqfmt=vfsv0,grpquota,debug,debug,grpid,,errors=continue. Quota mode: writeback.
[ 30.046259][ T403] exFAT-fs (loop1): failed to recognize exfat type
[ 30.109172][ T393] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[ 30.140759][ T393] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[ 30.172400][ T405] kvm [404]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x2d1f
[ 30.181275][ T405] kvm [404]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x6d1f
[ 30.190245][ T405] kvm [404]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x5d4f
[ 30.200004][ T406] bridge0: port 1(bridge_slave_0) entered blocking state
[ 30.203168][ T415] EXT4-fs error (device loop0): ext4_lookup:1858: comm syz.0.27: inode #15: comm syz.0.27: iget: illegal inode #
[ 30.206904][ T406] bridge0: port 1(bridge_slave_0) entered disabled state
[ 30.226042][ T406] device bridge_slave_0 entered promiscuous mode
[ 30.232433][ T403] loop1: detected capacity change from 0 to 512
[ 30.233279][ T406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 30.245880][ T406] bridge0: port 2(bridge_slave_1) entered disabled state
[ 30.250755][ T405] kvm [404]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x1d4f
[ 30.253365][ T406] device bridge_slave_1 entered promiscuous mode
[ 30.272962][ T405] kvm [404]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x1c1c
[ 30.282005][ T405] kvm [404]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x5c1c
[ 30.286213][ T393] EXT4-fs warning (device loop0): ext4_enable_quotas:6423: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 30.302548][ T405] kvm [404]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x1c1c
[ 30.315231][ T403] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 30.331660][ T403] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 30.340717][ T405] kvm [404]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x5c1c
[ 30.343688][ T403] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2816: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 30.367367][ T403] EXT4-fs (loop1): 1 truncate cleaned up
[ 30.373209][ T403] EXT4-fs (loop1): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 30.401564][ T405] kvm [404]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x1c1c
[ 30.410482][ T405] kvm [404]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x5c1c
[ 30.501880][ T423] loop4: detected capacity change from 0 to 256
[ 30.535304][ T389] device bridge_slave_1 left promiscuous mode
[ 30.542485][ T389] bridge0: port 2(bridge_slave_1) entered disabled state
[ 30.553761][ T389] device bridge_slave_0 left promiscuous mode
[ 30.566380][ T389] bridge0: port 1(bridge_slave_0) entered disabled state
[ 30.574837][ T427] loop1: detected capacity change from 0 to 256
[ 30.585993][ T389] device veth1_macvtap left promiscuous mode
[ 30.592735][ T427] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 30.607866][ T389] device veth0_vlan left promiscuous mode
[ 30.613800][ T427] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 30.640984][ T427] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 30.665478][ T427] incfs: ino conflict with backing FS 1
[ 30.691019][ T427] exFAT-fs (loop1): error, found bogus dentry(18) beyond unused empty group(0) (start_clu : 5, cur_clu : 5)
[ 30.712982][ T431] loop4: detected capacity change from 0 to 256
[ 30.718444][ T427] exFAT-fs (loop1): Filesystem has been set read-only
[ 30.745320][ T431] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[ 30.805374][ T60] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 30.901367][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 30.909098][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 30.926327][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 30.935354][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 30.944087][ T314] bridge0: port 1(bridge_slave_0) entered blocking state
[ 30.951193][ T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 30.960344][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 30.973696][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 30.982782][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 30.991693][ T314] bridge0: port 2(bridge_slave_1) entered blocking state
[ 30.998649][ T314] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 31.050723][ T60] usb 1-1: Using ep0 maxpacket: 16
[ 31.057455][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 31.074184][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 31.110704][ T6] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 31.127600][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 31.150449][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 31.159222][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 31.167653][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 31.180272][ T406] device veth0_vlan entered promiscuous mode
[ 31.180872][ T60] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 31.198021][ T60] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 31.206233][ T406] device veth1_macvtap entered promiscuous mode
[ 31.214463][ T60] usb 1-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 31.227424][ T60] usb 1-1: config 0 interface 0 has no altsetting 0
[ 31.229317][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 31.242376][ T60] usb 1-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[ 31.243100][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 31.259403][ T60] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 31.260743][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 31.280132][ T60] usb 1-1: config 0 descriptor??
[ 31.384081][ T442] loop5: detected capacity change from 0 to 1024
[ 31.432163][ T442] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 31.443030][ T442] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.594521][ T451] loop1: detected capacity change from 0 to 512
[ 31.600606][ T6] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 31.600632][ T6] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 31.623009][ T455] loop5: detected capacity change from 0 to 512
[ 31.629318][ T451] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[ 31.636736][ T451] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 31.647555][ T451] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.45: bad orphan inode 131083
[ 31.657815][ T451] EXT4-fs (loop1): mounted filesystem without journal. Opts: stripe=0x000000000000003d,init_itable,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 31.668159][ T455] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[ 31.690531][ T6] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 31.699376][ T459] loop4: detected capacity change from 0 to 256
[ 31.699502][ T455] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.714453][ T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 31.723591][ T6] usb 3-1: SerialNumber: syz
[ 31.755592][ T60] hid-generic 0003:045E:05DA.0002: unbalanced collection at end of report description
[ 31.757387][ T459] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[ 31.765620][ T60] hid-generic: probe of 0003:045E:05DA.0002 failed with error -22
[ 31.882878][ T464] loop1: detected capacity change from 0 to 2048
[ 31.958031][ T26] usb 1-1: USB disconnect, device number 3
[ 31.973896][ T464] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,bsddf,,errors=continue. Quota mode: none.
[ 31.988921][ T464] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 32.005699][ T464] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.50: bg 0: block 345: padding at end of block bitmap is not set
[ 32.011542][ T6] usb 3-1: 0:2 : does not exist
[ 32.024685][ T464] EXT4-fs error (device loop1): ext4_xattr_block_set:2197: inode #15: comm syz.1.50: bad block 128
[ 32.110163][ T474] netlink: 'syz.1.52': attribute type 16 has an invalid length.
[ 32.117855][ T474] netlink: 'syz.1.52': attribute type 17 has an invalid length.
[ 32.133747][ T473] loop4: detected capacity change from 0 to 8192
[ 32.164673][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 32.175535][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 32.185507][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 32.195685][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 32.205172][ T473] FAT-fs (loop4): error, corrupted directory (invalid entries)
[ 32.205299][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 32.217802][ T474] syz.1.52 (474) used greatest stack depth: 19568 bytes left
[ 32.221242][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 32.228817][ T6] usb 3-1: 5:0: cannot get min/max values for control 4 (id 5)
[ 32.236406][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 32.243589][ T473] FAT-fs (loop4): Filesystem has been set read-only
[ 32.250970][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 32.265698][ T6] usb 3-1: USB disconnect, device number 2
[ 32.323795][ T479] loop1: detected capacity change from 0 to 256
[ 32.372190][ T479] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 32.376363][ T481] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[ 32.387010][ T479] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 32.408698][ T479] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 32.445492][ T479] incfs: ino conflict with backing FS 1
[ 32.456869][ T479] exFAT-fs (loop1): error, found bogus dentry(18) beyond unused empty group(0) (start_clu : 5, cur_clu : 5)
[ 32.477381][ T479] exFAT-fs (loop1): Filesystem has been set read-only
[ 32.500949][ T487] loop0: detected capacity change from 0 to 256
[ 32.554880][ T493] loop2: detected capacity change from 0 to 2048
[ 32.561132][ T339] udevd[339]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 32.570335][ T487] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[ 32.632791][ T493] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 32.701007][ T493] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 32.717257][ T493] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[ 32.730083][ T493] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 32.730083][ T493]
[ 32.740439][ T493] EXT4-fs (loop2): Total free blocks count 0
[ 32.746985][ T493] EXT4-fs (loop2): Free/Dirty block details
[ 32.754332][ T493] EXT4-fs (loop2): free_blocks=2415919504
[ 32.759955][ T493] EXT4-fs (loop2): dirty_blocks=16
[ 32.765024][ T493] EXT4-fs (loop2): Block reservation details
[ 32.771292][ T493] EXT4-fs (loop2): i_reserved_data_blocks=1
[ 32.836716][ T509] loop0: detected capacity change from 0 to 1024
[ 32.841425][ T511] loop4: detected capacity change from 0 to 512
[ 32.864339][ T468] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 32.876891][ T468] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 32.876891][ T468]
[ 32.941315][ T511] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[ 32.984591][ T511] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 32.999854][ T509] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 33.022629][ T509] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 33.050920][ T509] EXT4-fs (loop0): shut down requested (1)
[ 33.529438][ T534] loop5: detected capacity change from 0 to 128
[ 33.546647][ T30] kauditd_printk_skb: 49 callbacks suppressed
[ 33.546662][ T30] audit: type=1400 audit(1740690744.138:183): avc: denied { ioctl } for pid=530 comm="syz.2.75" path="socket:[16849]" dev="sockfs" ino=16849 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 33.580814][ T535] syz_tun: refused to change device tx_queue_len
[ 33.607896][ T535] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 33.608546][ T534] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 33.688035][ T534] ext4 filesystem being mounted at /8/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 33.700042][ T542] loop0: detected capacity change from 0 to 128
[ 33.760976][ T294] ------------[ cut here ]------------
[ 33.766283][ T294] WARNING: CPU: 1 PID: 294 at fs/inode.c:307 drop_nlink+0xc1/0x110
[ 33.774325][ T294] Modules linked in:
[ 33.778050][ T294] CPU: 0 PID: 294 Comm: syz-executor Not tainted 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
[ 33.790056][ T30] audit: type=1400 audit(1740690744.378:184): avc: denied { create } for pid=551 comm="syz.4.79" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 33.811790][ T554] FAULT_INJECTION: forcing a failure.
[ 33.811790][ T554] name failslab, interval 1, probability 0, space 0, times 1
[ 33.837648][ T294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 33.842977][ T292] FAT-fs (loop0): error, invalid access to FAT (entry 0xffff0000)
[ 33.855403][ T554] CPU: 1 PID: 554 Comm: syz.2.81 Not tainted 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
[ 33.865109][ T554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 33.875002][ T554] Call Trace:
[ 33.876434][ T294] RIP: 0010:drop_nlink+0xc1/0x110
[ 33.878122][ T554] <TASK>
[ 33.878133][ T554] dump_stack_lvl+0x151/0x1c0
[ 33.883375][ T30] audit: type=1400 audit(1740690744.428:185): avc: denied { ioctl } for pid=551 comm="syz.4.79" path="socket:[17547]" dev="sockfs" ino=17547 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 33.885783][ T554] ? io_uring_drop_tctx_refs+0x190/0x190
[ 33.885814][ T554] dump_stack+0x15/0x20
[ 33.894032][ T294] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 a7 f2 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 6f 85 ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[ 33.914449][ T554] should_fail+0x3c6/0x510
[ 33.914486][ T554] __should_failslab+0xa4/0xe0
[ 33.914510][ T554] should_failslab+0x9/0x20
[ 33.914530][ T554] slab_pre_alloc_hook+0x37/0xd0
[ 33.914553][ T554] kmem_cache_alloc_trace+0x48/0x270
[ 33.914573][ T554] ? sk_psock_skb_ingress_self+0x60/0x330
[ 33.914593][ T554] ? migrate_disable+0x190/0x190
[ 33.914621][ T554] sk_psock_skb_ingress_self+0x60/0x330
[ 33.920509][ T30] audit: type=1400 audit(1740690744.428:186): avc: denied { write } for pid=551 comm="syz.4.79" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 33.924175][ T554] sk_psock_verdict_recv+0x66d/0x840
[ 33.924205][ T554] unix_read_sock+0x132/0x370
[ 33.944096][ T294] RSP: 0018:ffffc90000a27b08 EFLAGS: 00010293
[ 33.947868][ T554] ? sk_psock_skb_redirect+0x440/0x440
[ 33.952546][ T30] audit: type=1404 audit(1740690744.428:187): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 33.956805][ T554] ? unix_stream_splice_actor+0x120/0x120
[ 33.956830][ T554] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 33.961669][ T294]
[ 33.966699][ T554] ? unix_stream_splice_actor+0x120/0x120
[ 33.972369][ T30] audit: type=1400 audit(1740690744.428:188): avc: denied { unmount } for pid=292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=0
[ 33.977376][ T554] sk_psock_verdict_data_ready+0x147/0x1a0
[ 33.983574][ T294] RAX: ffffffff81c1e741 RBX: 0000000000000000 RCX: ffff88811a4e2780
[ 34.001523][ T554] ? sk_psock_start_verdict+0xc0/0xc0
[ 34.001552][ T554] ? _raw_spin_lock+0xa4/0x1b0
[ 34.001572][ T554] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 34.001592][ T554] ? skb_queue_tail+0xfb/0x120
[ 34.006732][ T30] audit: type=1400 audit(1740690744.428:189): avc: denied { unmount } for pid=292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=0
[ 34.011136][ T554] unix_dgram_sendmsg+0x15fa/0x2090
[ 34.011165][ T554] ? unix_dgram_poll+0x690/0x690
[ 34.017126][ T294] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 34.022429][ T554] ? kasan_set_track+0x5d/0x70
[ 34.022457][ T554] ? kasan_set_track+0x4b/0x70
[ 34.022475][ T554] ? security_socket_sendmsg+0x82/0xb0
[ 34.037263][ T294] RBP: ffffc90000a27b30 R08: ffffffff81c1e6c4 R09: 0000000000000003
[ 34.042754][ T554] ? unix_dgram_poll+0x690/0x690
[ 34.042785][ T554] ____sys_sendmsg+0x59e/0x8f0
[ 34.042812][ T554] ? __sys_sendmsg_sock+0x40/0x40
[ 34.042835][ T554] ? import_iovec+0xe5/0x120
[ 34.042859][ T554] ___sys_sendmsg+0x252/0x2e0
[ 34.048334][ T292] FAT-fs (loop0): Filesystem has been set read-only
[ 34.050218][ T554] ? __sys_sendmsg+0x260/0x260
[ 34.060300][ T292] FAT-fs (loop0): error, corrupted directory (invalid entries)
[ 34.075741][ T554] ? putname+0xfa/0x150
[ 34.075778][ T554] ? __fdget+0x1bc/0x240
[ 34.075798][ T554] __se_sys_sendmsg+0x19a/0x260
[ 34.075823][ T554] ? __x64_sys_sendmsg+0x90/0x90
[ 34.081959][ T294] R10: fffff52000144f50 R11: dffffc0000000001 R12: dffffc0000000000
[ 34.089183][ T554] ? ksys_write+0x260/0x2c0
[ 34.089212][ T554] ? debug_smp_processor_id+0x17/0x20
[ 34.094810][ T294] R13: 1ffff1102371aed0 R14: ffff88811b8d7638 R15: ffff88811b8d7680
[ 34.098991][ T554] ? fpregs_assert_state_consistent+0xb6/0xe0
[ 34.105133][ T292] FAT-fs (loop0): error, corrupted directory (invalid entries)
[ 34.109234][ T554] __x64_sys_sendmsg+0x7b/0x90
[ 34.129157][ T294] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 34.133800][ T554] x64_sys_call+0x16a/0x9a0
[ 34.133826][ T554] do_syscall_64+0x3b/0xb0
[ 34.133845][ T554] ? clear_bhb_loop+0x35/0x90
[ 34.138899][ T294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 34.146465][ T554] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 34.146491][ T554] RIP: 0033:0x7fb484eea169
[ 34.146507][ T554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 34.151451][ T294] CR2: 00007ffd8a659cb8 CR3: 000000010d056000 CR4: 00000000003526b0
[ 34.155669][ T554] RSP: 002b:00007fb483533038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 34.168553][ T294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 34.168785][ T554] RAX: ffffffffffffffda RBX: 00007fb485103080 RCX: 00007fb484eea169
[ 34.178728][ T294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 34.183007][ T554] RDX: 0000000000000000 RSI: 0000400000000500 RDI: 0000000000000004
[ 34.183021][ T554] RBP: 00007fb483533090 R08: 0000000000000000 R09: 0000000000000000
[ 34.183039][ T554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 34.183051][ T554] R13: 0000000000000001 R14: 00007fb485103080 R15: 00007fffdfb15338
[ 34.188156][ T294] Call Trace:
[ 34.191952][ T554] </TASK>
[ 34.218650][ T553] kvm: emulating exchange as write
[ 34.224619][ T30] audit: type=1400 audit(1740690744.798:190): avc: denied { read write } for pid=550 comm="syz.5.82" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[ 34.293105][ T294] <TASK>
[ 34.352889][ T546] ==================================================================
[ 34.443876][ T546] BUG: KASAN: use-after-free in consume_skb+0x3c/0x250
[ 34.450544][ T546] Read of size 4 at addr ffff88811ce5086c by task syz.2.81/546
[ 34.457920][ T546]
[ 34.460093][ T546] CPU: 0 PID: 546 Comm: syz.2.81 Not tainted 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
[ 34.469552][ T546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 34.479449][ T546] Call Trace:
[ 34.482574][ T546] <TASK>
[ 34.485351][ T546] dump_stack_lvl+0x151/0x1c0
[ 34.489864][ T546] ? io_uring_drop_tctx_refs+0x190/0x190
[ 34.495330][ T546] ? panic+0x760/0x760
[ 34.499246][ T546] print_address_description+0x87/0x3b0
[ 34.504616][ T546] ? bpf_ksym_del+0x145/0x150
[ 34.509132][ T546] kasan_report+0x179/0x1c0
[ 34.513470][ T546] ? consume_skb+0x3c/0x250
[ 34.517812][ T546] ? consume_skb+0x3c/0x250
[ 34.522164][ T546] kasan_check_range+0x293/0x2a0
[ 34.526933][ T546] __kasan_check_read+0x11/0x20
[ 34.531612][ T546] consume_skb+0x3c/0x250
[ 34.535777][ T546] __sk_msg_free+0x2dd/0x370
[ 34.540204][ T546] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 34.545848][ T546] sk_psock_stop+0x4e3/0x580
[ 34.550270][ T546] sk_psock_drop+0x219/0x310
[ 34.554698][ T546] sock_map_unref+0x3c6/0x430
[ 34.559324][ T546] ? _raw_spin_unlock_bh+0x51/0x60
[ 34.564279][ T546] sock_map_remove_links+0x41c/0x650
[ 34.569480][ T546] ? sock_map_unhash+0x120/0x120
[ 34.574382][ T546] ? locks_remove_posix+0x610/0x610
[ 34.579405][ T546] sock_map_close+0x114/0x530
[ 34.583918][ T546] ? unix_peer_get+0xe0/0xe0
[ 34.588344][ T546] ? sock_map_remove_links+0x650/0x650
[ 34.593638][ T546] ? rwsem_mark_wake+0x770/0x770
[ 34.598412][ T546] unix_release+0x82/0xc0
[ 34.602579][ T546] sock_close+0xdf/0x270
[ 34.606664][ T546] ? sock_mmap+0xa0/0xa0
[ 34.610736][ T546] __fput+0x228/0x8c0
[ 34.614562][ T546] ____fput+0x15/0x20
[ 34.618374][ T546] task_work_run+0x129/0x190
[ 34.622801][ T546] exit_to_user_mode_loop+0xc4/0xe0
[ 34.627841][ T546] exit_to_user_mode_prepare+0x5a/0xa0
[ 34.633128][ T546] syscall_exit_to_user_mode+0x26/0x160
[ 34.638511][ T546] do_syscall_64+0x47/0xb0
[ 34.642765][ T546] ? clear_bhb_loop+0x35/0x90
[ 34.647533][ T546] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 34.653262][ T546] RIP: 0033:0x7fb484eea169
[ 34.657520][ T546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 34.676959][ T546] RSP: 002b:00007fffdfb15498 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 34.685287][ T546] RAX: 0000000000000000 RBX: 00007fb485104ba0 RCX: 00007fb484eea169
[ 34.693103][ T546] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 34.700933][ T546] RBP: 00007fb485104ba0 R08: 0000000000000000 R09: 0000000ddfb1578f
[ 34.708811][ T546] R10: 000000000003fd68 R11: 0000000000000246 R12: 00000000000086fe
[ 34.716624][ T546] R13: 00007fffdfb15590 R14: ffffffffffffffff R15: 00007fffdfb155b0
[ 34.724434][ T546] </TASK>
[ 34.727294][ T546]
[ 34.729468][ T546] Allocated by task 554:
[ 34.733546][ T546] __kasan_slab_alloc+0xb1/0xe0
[ 34.738230][ T546] slab_post_alloc_hook+0x53/0x2c0
[ 34.743178][ T546] kmem_cache_alloc+0xf5/0x250
[ 34.747778][ T546] skb_clone+0x1d1/0x360
[ 34.751916][ T546] sk_psock_verdict_recv+0x53/0x840
[ 34.757104][ T546] unix_read_sock+0x132/0x370
[ 34.761696][ T546] sk_psock_verdict_data_ready+0x147/0x1a0
[ 34.767342][ T546] unix_dgram_sendmsg+0x15fa/0x2090
[ 34.772372][ T546] ____sys_sendmsg+0x59e/0x8f0
[ 34.776970][ T546] ___sys_sendmsg+0x252/0x2e0
[ 34.781483][ T546] __se_sys_sendmsg+0x19a/0x260
[ 34.786169][ T546] __x64_sys_sendmsg+0x7b/0x90
[ 34.790771][ T546] x64_sys_call+0x16a/0x9a0
[ 34.795108][ T546] do_syscall_64+0x3b/0xb0
[ 34.799368][ T546] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 34.805097][ T546]
[ 34.807270][ T546] Freed by task 303:
[ 34.810994][ T546] kasan_set_track+0x4b/0x70
[ 34.815418][ T546] kasan_set_free_info+0x23/0x40
[ 34.820194][ T546] ____kasan_slab_free+0x126/0x160
[ 34.825141][ T546] __kasan_slab_free+0x11/0x20
[ 34.829739][ T546] slab_free_freelist_hook+0xbd/0x190
[ 34.834949][ T546] kmem_cache_free+0x115/0x330
[ 34.839546][ T546] kfree_skbmem+0x104/0x170
[ 34.843888][ T546] kfree_skb+0xc2/0x360
[ 34.847880][ T546] sk_psock_backlog+0xad1/0xdc0
[ 34.852569][ T546] process_one_work+0x6bb/0xc10
[ 34.857252][ T546] worker_thread+0xad5/0x12a0
[ 34.861771][ T546] kthread+0x421/0x510
[ 34.865670][ T546] ret_from_fork+0x1f/0x30
[ 34.869926][ T546]
[ 34.872092][ T546] The buggy address belongs to the object at ffff88811ce50780
[ 34.872092][ T546] which belongs to the cache skbuff_head_cache of size 248
[ 34.886504][ T546] The buggy address is located 236 bytes inside of
[ 34.886504][ T546] 248-byte region [ffff88811ce50780, ffff88811ce50878)
[ 34.899608][ T546] The buggy address belongs to the page:
[ 34.905191][ T546] page:ffffea0004739400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11ce50
[ 34.915446][ T546] flags: 0x4000000000000200(slab|zone=1)
[ 34.920925][ T546] raw: 4000000000000200 ffffea0004736e40 0000000b0000000b ffff8881081ab680
[ 34.929331][ T546] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[ 34.937752][ T546] page dumped because: kasan: bad access detected
[ 34.944001][ T546] page_owner tracks the page as allocated
[ 34.949548][ T546] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 139, ts 18170614869, free_ts 17661190706
[ 34.965344][ T546] post_alloc_hook+0x1a3/0x1b0
[ 34.970043][ T546] prep_new_page+0x1b/0x110
[ 34.974375][ T546] get_page_from_freelist+0x3550/0x35d0
[ 34.979758][ T546] __alloc_pages+0x27e/0x8f0
[ 34.984193][ T546] new_slab+0x9a/0x4e0
[ 34.988088][ T546] ___slab_alloc+0x39e/0x830
[ 34.992518][ T546] __slab_alloc+0x4a/0x90
[ 34.996683][ T546] kmem_cache_alloc+0x139/0x250
[ 35.001549][ T546] __alloc_skb+0xbe/0x550
[ 35.005716][ T546] alloc_skb_with_frags+0xa6/0x680
[ 35.010657][ T546] sock_alloc_send_pskb+0x915/0xa50
[ 35.015689][ T546] unix_dgram_sendmsg+0x6fd/0x2090
[ 35.020639][ T546] sock_write_iter+0x39b/0x530
[ 35.025239][ T546] do_iter_readv_writev+0x58e/0x790
[ 35.030271][ T546] do_iter_write+0x1f1/0x760
[ 35.034699][ T546] vfs_writev+0x2ac/0x560
[ 35.038867][ T546] page last free stack trace:
[ 35.043376][ T546] free_unref_page_prepare+0x7c8/0x7d0
[ 35.048680][ T546] free_unref_page+0xe8/0x750
[ 35.053187][ T546] __free_pages+0x61/0xf0
[ 35.057350][ T546] free_pages+0x7c/0x90
[ 35.061346][ T546] pgd_free+0x17d/0x190
[ 35.065456][ T546] __mmdrop+0xb0/0x410
[ 35.069381][ T546] finish_task_switch+0x2cd/0x7b0
[ 35.074223][ T546] __schedule+0xcd4/0x1590
[ 35.078475][ T546] schedule+0x11f/0x1e0
[ 35.082466][ T546] schedule_hrtimeout_range_clock+0x250/0x3a0
[ 35.088370][ T546] schedule_hrtimeout_range+0x2a/0x40
[ 35.093592][ T546] do_sys_poll+0xe15/0x12d0
[ 35.097916][ T546] __se_sys_ppoll+0x29c/0x330
[ 35.102431][ T546] __x64_sys_ppoll+0xbf/0xd0
[ 35.106857][ T546] x64_sys_call+0x721/0x9a0
[ 35.111194][ T546] do_syscall_64+0x3b/0xb0
[ 35.115461][ T546]
[ 35.117623][ T546] Memory state around the buggy address:
[ 35.123088][ T546] ffff88811ce50700: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 35.130986][ T546] ffff88811ce50780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 35.138885][ T546] >ffff88811ce50800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[ 35.146788][ T546] ^
[ 35.154246][ T546] ffff88811ce50880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 35.162146][ T546] ffff88811ce50900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 35.170042][ T546] ==================================================================
[ 35.177987][ T546] Disabling lock debugging due to kernel taint
[ 35.183999][ T546] ==================================================================
[ 35.191829][ T546] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x115/0x330
[ 35.200074][ T546]
[ 35.202247][ T546] CPU: 0 PID: 546 Comm: syz.2.81 Tainted: G B 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
[ 35.213092][ T546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 35.222987][ T546] Call Trace:
[ 35.226113][ T546] <TASK>
[ 35.228888][ T546] dump_stack_lvl+0x151/0x1c0
[ 35.233837][ T546] ? io_uring_drop_tctx_refs+0x190/0x190
[ 35.239304][ T546] ? __wake_up_klogd+0xd5/0x110
[ 35.243990][ T546] ? panic+0x760/0x760
[ 35.247894][ T546] ? kmem_cache_free+0x115/0x330
[ 35.252756][ T546] print_address_description+0x87/0x3b0
[ 35.258138][ T546] ? asm_common_interrupt+0x27/0x40
[ 35.263170][ T546] ? kmem_cache_free+0x115/0x330
[ 35.267945][ T546] ? kmem_cache_free+0x115/0x330
[ 35.272717][ T546] kasan_report_invalid_free+0x6b/0xa0
[ 35.278013][ T546] ____kasan_slab_free+0x13e/0x160
[ 35.282959][ T546] __kasan_slab_free+0x11/0x20
[ 35.287557][ T546] slab_free_freelist_hook+0xbd/0x190
[ 35.292769][ T546] kmem_cache_free+0x115/0x330
[ 35.297365][ T546] ? kfree_skbmem+0x104/0x170
[ 35.301883][ T546] kfree_skbmem+0x104/0x170
[ 35.306219][ T546] consume_skb+0xb4/0x250
[ 35.310386][ T546] __sk_msg_free+0x2dd/0x370
[ 35.314809][ T546] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 35.320455][ T546] sk_psock_stop+0x4e3/0x580
[ 35.324882][ T546] sk_psock_drop+0x219/0x310
[ 35.329307][ T546] sock_map_unref+0x3c6/0x430
[ 35.333821][ T546] ? _raw_spin_unlock_bh+0x51/0x60
[ 35.338769][ T546] sock_map_remove_links+0x41c/0x650
[ 35.343892][ T546] ? sock_map_unhash+0x120/0x120
[ 35.348668][ T546] ? locks_remove_posix+0x610/0x610
[ 35.353697][ T546] sock_map_close+0x114/0x530
[ 35.358209][ T546] ? unix_peer_get+0xe0/0xe0
[ 35.362634][ T546] ? sock_map_remove_links+0x650/0x650
[ 35.367927][ T546] ? rwsem_mark_wake+0x770/0x770
[ 35.372701][ T546] unix_release+0x82/0xc0
[ 35.376866][ T546] sock_close+0xdf/0x270
[ 35.380952][ T546] ? sock_mmap+0xa0/0xa0
[ 35.385028][ T546] __fput+0x228/0x8c0
[ 35.388846][ T546] ____fput+0x15/0x20
[ 35.392665][ T546] task_work_run+0x129/0x190
[ 35.397091][ T546] exit_to_user_mode_loop+0xc4/0xe0
[ 35.402124][ T546] exit_to_user_mode_prepare+0x5a/0xa0
[ 35.407419][ T546] syscall_exit_to_user_mode+0x26/0x160
[ 35.412800][ T546] do_syscall_64+0x47/0xb0
[ 35.417054][ T546] ? clear_bhb_loop+0x35/0x90
[ 35.421568][ T546] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 35.427291][ T546] RIP: 0033:0x7fb484eea169
[ 35.431548][ T546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 35.450989][ T546] RSP: 002b:00007fffdfb15498 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 35.459233][ T546] RAX: 0000000000000000 RBX: 00007fb485104ba0 RCX: 00007fb484eea169
[ 35.467043][ T546] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 35.474856][ T546] RBP: 00007fb485104ba0 R08: 0000000000000000 R09: 0000000ddfb1578f
[ 35.482670][ T546] R10: 000000000003fd68 R11: 0000000000000246 R12: 00000000000086fe
[ 35.490477][ T546] R13: 00007fffdfb15590 R14: ffffffffffffffff R15: 00007fffdfb155b0
[ 35.498293][ T546] </TASK>
[ 35.501154][ T546]
[ 35.503328][ T546] Allocated by task 554:
[ 35.507403][ T546] __kasan_slab_alloc+0xb1/0xe0
[ 35.512088][ T546] slab_post_alloc_hook+0x53/0x2c0
[ 35.517038][ T546] kmem_cache_alloc+0xf5/0x250
[ 35.521641][ T546] skb_clone+0x1d1/0x360
[ 35.525717][ T546] sk_psock_verdict_recv+0x53/0x840
[ 35.530750][ T546] unix_read_sock+0x132/0x370
[ 35.535269][ T546] sk_psock_verdict_data_ready+0x147/0x1a0
[ 35.540907][ T546] unix_dgram_sendmsg+0x15fa/0x2090
[ 35.545936][ T546] ____sys_sendmsg+0x59e/0x8f0
[ 35.550537][ T546] ___sys_sendmsg+0x252/0x2e0
[ 35.555050][ T546] __se_sys_sendmsg+0x19a/0x260
[ 35.559739][ T546] __x64_sys_sendmsg+0x7b/0x90
[ 35.564339][ T546] x64_sys_call+0x16a/0x9a0
[ 35.568776][ T546] do_syscall_64+0x3b/0xb0
[ 35.573028][ T546] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 35.578754][ T546]
[ 35.580945][ T546] Freed by task 303:
[ 35.584805][ T546] kasan_set_track+0x4b/0x70
[ 35.589236][ T546] kasan_set_free_info+0x23/0x40
[ 35.594005][ T546] ____kasan_slab_free+0x126/0x160
[ 35.598954][ T546] __kasan_slab_free+0x11/0x20
[ 35.603562][ T546] slab_free_freelist_hook+0xbd/0x190
[ 35.608762][ T546] kmem_cache_free+0x115/0x330
[ 35.613378][ T546] kfree_skbmem+0x104/0x170
[ 35.617962][ T546] kfree_skb+0xc2/0x360
[ 35.621960][ T546] sk_psock_backlog+0xad1/0xdc0
[ 35.626640][ T546] process_one_work+0x6bb/0xc10
[ 35.631411][ T546] worker_thread+0xad5/0x12a0
[ 35.635925][ T546] kthread+0x421/0x510
[ 35.639832][ T546] ret_from_fork+0x1f/0x30
[ 35.644084][ T546]
[ 35.646255][ T546] The buggy address belongs to the object at ffff88811ce50780
[ 35.646255][ T546] which belongs to the cache skbuff_head_cache of size 248
[ 35.660662][ T546] The buggy address is located 0 bytes inside of
[ 35.660662][ T546] 248-byte region [ffff88811ce50780, ffff88811ce50878)
[ 35.673594][ T546] The buggy address belongs to the page:
[ 35.679063][ T546] page:ffffea0004739400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11ce50
[ 35.689130][ T546] flags: 0x4000000000000200(slab|zone=1)
[ 35.694608][ T546] raw: 4000000000000200 ffffea0004736e40 0000000b0000000b ffff8881081ab680
[ 35.703023][ T546] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[ 35.711436][ T546] page dumped because: kasan: bad access detected
[ 35.717830][ T546] page_owner tracks the page as allocated
[ 35.723464][ T546] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 139, ts 18170614869, free_ts 17661190706
[ 35.739262][ T546] post_alloc_hook+0x1a3/0x1b0
[ 35.743860][ T546] prep_new_page+0x1b/0x110
[ 35.748198][ T546] get_page_from_freelist+0x3550/0x35d0
[ 35.753581][ T546] __alloc_pages+0x27e/0x8f0
[ 35.758006][ T546] new_slab+0x9a/0x4e0
[ 35.761911][ T546] ___slab_alloc+0x39e/0x830
[ 35.766340][ T546] __slab_alloc+0x4a/0x90
[ 35.770508][ T546] kmem_cache_alloc+0x139/0x250
[ 35.775193][ T546] __alloc_skb+0xbe/0x550
[ 35.779360][ T546] alloc_skb_with_frags+0xa6/0x680
[ 35.784305][ T546] sock_alloc_send_pskb+0x915/0xa50
[ 35.789336][ T546] unix_dgram_sendmsg+0x6fd/0x2090
[ 35.794285][ T546] sock_write_iter+0x39b/0x530
[ 35.798898][ T546] do_iter_readv_writev+0x58e/0x790
[ 35.803922][ T546] do_iter_write+0x1f1/0x760
[ 35.808345][ T546] vfs_writev+0x2ac/0x560
[ 35.812511][ T546] page last free stack trace:
[ 35.817025][ T546] free_unref_page_prepare+0x7c8/0x7d0
[ 35.822319][ T546] free_unref_page+0xe8/0x750
[ 35.826832][ T546] __free_pages+0x61/0xf0
[ 35.831003][ T546] free_pages+0x7c/0x90
[ 35.834994][ T546] pgd_free+0x17d/0x190
[ 35.838984][ T546] __mmdrop+0xb0/0x410
[ 35.842890][ T546] finish_task_switch+0x2cd/0x7b0
[ 35.847750][ T546] __schedule+0xcd4/0x1590
[ 35.852004][ T546] schedule+0x11f/0x1e0
[ 35.855997][ T546] schedule_hrtimeout_range_clock+0x250/0x3a0
[ 35.861925][ T546] schedule_hrtimeout_range+0x2a/0x40
[ 35.867107][ T546] do_sys_poll+0xe15/0x12d0
[ 35.871445][ T546] __se_sys_ppoll+0x29c/0x330
[ 35.875957][ T546] __x64_sys_ppoll+0xbf/0xd0
[ 35.880385][ T546] x64_sys_call+0x721/0x9a0
[ 35.884726][ T546] do_syscall_64+0x3b/0xb0
[ 35.888979][ T546]
[ 35.891148][ T546] Memory state around the buggy address:
[ 35.896622][ T546] ffff88811ce50680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 35.904516][ T546] ffff88811ce50700: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 35.912416][ T546] >ffff88811ce50780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 35.920312][ T546] ^
[ 35.924218][ T546] ffff88811ce50800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[ 35.932206][ T546] ffff88811ce50880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 35.940099][ T546] ==================================================================
[ 35.948537][ T294] ? show_regs+0x58/0x60
[ 35.956546][ T294] ? __warn+0x160/0x2f0
[ 35.962609][ T294] ? drop_nlink+0xc1/0x110
[ 35.963834][ T30] audit: type=1400 audit(1740690744.808:191): avc: denied { prog_load } for pid=550 comm="syz.5.82" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 35.966869][ T294] ? report_bug+0x3d9/0x5b0
[ 36.000499][ T30] audit: type=1404 audit(1740690744.828:192): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[ 36.004217][ T294] ? drop_nlink+0xc1/0x110
[ 36.037023][ T294] ? handle_bug+0x41/0x70
[ 36.052603][ T294] ? exc_invalid_op+0x1b/0x50
[ 36.057687][ T294] ? asm_exc_invalid_op+0x1b/0x20
[ 36.063583][ T294] ? drop_nlink+0x44/0x110
[ 36.068623][ T294] ? drop_nlink+0xc1/0x110
[ 36.075050][ T294] ? drop_nlink+0xc1/0x110
[ 36.079416][ T294] ? drop_nlink+0xc1/0x110
[ 36.083974][ T294] shmem_rmdir+0x59/0x90
[ 36.088066][ T294] vfs_rmdir+0x324/0x470
[ 36.092506][ T294] incfs_kill_sb+0x113/0x230
[ 36.096954][ T294] deactivate_locked_super+0xad/0x110
[ 36.102217][ T294] deactivate_super+0xbe/0xf0
[ 36.106730][ T294] cleanup_mnt+0x45c/0x510
[ 36.111253][ T294] __cleanup_mnt+0x19/0x20
[ 36.115573][ T294] task_work_run+0x129/0x190
[ 36.119984][ T294] do_exit+0xc48/0x2ca0
[ 36.124460][ T294] ? __kasan_check_read+0x11/0x20
[ 36.129377][ T294] ? put_task_struct+0x80/0x80
[ 36.134288][ T294] ? ksys_write+0x24f/0x2c0
[ 36.138659][ T294] ? exc_page_fault+0x47a/0x7f0
[ 36.143709][ T294] ? __ia32_sys_read+0x90/0x90
[ 36.148306][ T294] do_group_exit+0x141/0x310
[ 36.152945][ T294] ? fpregs_assert_state_consistent+0xb6/0xe0
[ 36.158844][ T294] __x64_sys_exit_group+0x3f/0x40
[ 36.163968][ T294] x64_sys_call+0x610/0x9a0
[ 36.168346][ T294] do_syscall_64+0x3b/0xb0
[ 36.172871][ T294] ? clear_bhb_loop+0x35/0x90
[ 36.177381][ T294] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 36.183352][ T294] RIP: 0033:0x7f3db60e6169
[ 36.187586][ T294] Code: Unable to access opcode bytes at RIP 0x7f3db60e613f.
[ 36.195047][ T294] RSP: 002b:00007ffe33b4c758 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 36.203520][ T294] RAX: ffffffffffffffda RBX: 00007f3db61670fe RCX: 00007f3db60e6169
[ 36.211539][ T294] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 36.219377][ T294] RBP: 0000000000000016 R08: 00007ffe33b4a4f6 R09: 00007ffe33b4da10
[ 36.227412][ T294] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe33b4da10
[ 36.235389][ T294] R13: 00007f3db616708c R14: 000055557af754a8 R15: 00007ffe33b4fbd0
[ 36.243339][ T294] </TASK>
[ 36.246173][ T294] ---[ end trace 419529d51e4944ad ]---
[ 36.251811][ T294] BUG: kernel NULL pointer dereference, address: 0000000000000170
[ 36.259422][ T294] #PF: supervisor write access in kernel mode
[ 36.265325][ T294] #PF: error_code(0x0002) - not-present page
[ 36.271144][ T294] PGD 0 P4D 0
[ 36.274353][ T294] Oops: 0002 [#1] PREEMPT SMP KASAN
[ 36.279390][ T294] CPU: 1 PID: 294 Comm: syz-executor Tainted: G B W 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
[ 36.290670][ T294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 36.300564][ T294] RIP: 0010:ihold+0x25/0x60
[ 36.304904][ T294] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 81 7d ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 ea f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 04 81 ae
[ 36.324346][ T294] RSP: 0018:ffffc90000a27b48 EFLAGS: 00010202
[ 36.330245][ T294] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81c1ef40
[ 36.338060][ T294] RDX: 0000000000000001 RSI: 0000000000000282 RDI: 0000000000000170
[ 36.345868][ T294] RBP: ffffc90000a27b58 R08: ffffffff81be6067 R09: ffffed10224a25c6
[ 36.353680][ T294] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 36.361491][ T294] R13: ffff88811262f550 R14: 0000000000000000 R15: 1ffff110224c5eb0
[ 36.369307][ T294] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 36.378069][ T294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 36.384491][ T294] CR2: 0000000000000170 CR3: 000000010d056000 CR4: 00000000003506a0
[ 36.392832][ T294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 36.400640][ T294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 36.408448][ T294] Call Trace:
[ 36.411574][ T294] <TASK>
[ 36.414352][ T294] ? __die_body+0x62/0xb0
[ 36.418518][ T294] ? __die+0x7e/0x90
[ 36.422250][ T294] ? page_fault_oops+0x7f9/0xa90
[ 36.427022][ T294] ? kernelmode_fixup_or_oops+0xd0/0xd0
[ 36.432409][ T294] ? exc_page_fault+0x510/0x7f0
[ 36.437094][ T294] ? asm_exc_page_fault+0x27/0x30
[ 36.441949][ T294] ? vfs_rmdir+0x1d7/0x470
[ 36.446201][ T294] ? ihold+0x20/0x60
[ 36.449937][ T294] ? ihold+0x25/0x60
[ 36.453666][ T294] ? ihold+0x20/0x60
[ 36.457407][ T294] vfs_rmdir+0x201/0x470
[ 36.461481][ T294] incfs_kill_sb+0x113/0x230
[ 36.465902][ T294] deactivate_locked_super+0xad/0x110
[ 36.471112][ T294] deactivate_super+0xbe/0xf0
[ 36.475627][ T294] cleanup_mnt+0x45c/0x510
[ 36.479881][ T294] __cleanup_mnt+0x19/0x20
[ 36.484135][ T294] task_work_run+0x129/0x190
[ 36.488557][ T294] do_exit+0xc48/0x2ca0
[ 36.492554][ T294] ? __kasan_check_read+0x11/0x20
[ 36.497412][ T294] ? put_task_struct+0x80/0x80
[ 36.502010][ T294] ? ksys_write+0x24f/0x2c0
[ 36.506351][ T294] ? exc_page_fault+0x47a/0x7f0
[ 36.511041][ T294] ? __ia32_sys_read+0x90/0x90
[ 36.515640][ T294] do_group_exit+0x141/0x310
[ 36.520063][ T294] ? fpregs_assert_state_consistent+0xb6/0xe0
[ 36.525968][ T294] __x64_sys_exit_group+0x3f/0x40
[ 36.530826][ T294] x64_sys_call+0x610/0x9a0
[ 36.535164][ T294] do_syscall_64+0x3b/0xb0
[ 36.539418][ T294] ? clear_bhb_loop+0x35/0x90
[ 36.543936][ T294] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 36.549708][ T294] RIP: 0033:0x7f3db60e6169
[ 36.554009][ T294] Code: Unable to access opcode bytes at RIP 0x7f3db60e613f.
[ 36.561213][ T294] RSP: 002b:00007ffe33b4c758 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 36.569551][ T294] RAX: ffffffffffffffda RBX: 00007f3db61670fe RCX: 00007f3db60e6169
[ 36.577357][ T294] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 36.585170][ T294] RBP: 0000000000000016 R08: 00007ffe33b4a4f6 R09: 00007ffe33b4da10
[ 36.592977][ T294] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe33b4da10
[ 36.600791][ T294] R13: 00007f3db616708c R14: 000055557af754a8 R15: 00007ffe33b4fbd0
[ 36.608644][ T294] </TASK>
[ 36.611482][ T294] Modules linked in:
[ 36.615222][ T294] CR2: 0000000000000170
[ 36.619208][ T294] ---[ end trace 419529d51e4944ae ]---
[ 36.624488][ T294] RIP: 0010:ihold+0x25/0x60
[ 36.628823][ T294] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 81 7d ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 ea f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 04 81 ae
[ 36.648267][ T294] RSP: 0018:ffffc90000a27b48 EFLAGS: 00010202
[ 36.654175][ T294] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81c1ef40
[ 36.661976][ T294] RDX: 0000000000000001 RSI: 0000000000000282 RDI: 0000000000000170
[ 36.670054][ T294] RBP: ffffc90000a27b58 R08: ffffffff81be6067 R09: ffffed10224a25c6
[ 36.677878][ T294] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 36.685671][ T294] R13: ffff88811262f550 R14: 0000000000000000 R15: 1ffff110224c5eb0
[ 36.693482][ T294] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 36.702250][ T294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 36.708690][ T294] CR2: 0000000000000170 CR3: 000000010d056000 CR4: 00000000003506a0
[ 36.716489][ T294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 36.724296][ T294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 36.732117][ T294] Kernel panic - not syncing: Fatal exception
[ 36.738258][ T294] Kernel Offset: disabled
[ 36.742390][ T294] Rebooting in 86400 seconds..