last executing test programs:

2m57.674863766s ago: executing program 32 (id=605):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006140)={0x2020}, 0x2020)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='f2fs_background_gc\x00', r0, 0x0, 0x40}, 0x18)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000001c0)={r0}, 0x4)
ioctl$KVM_SET_DEVICE_ATTR_vm(r0, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000280)={0x3, 0x10001}})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x65, 0x8, 0x0, 0xffffffffffffffff, 0x9d, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRES16=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'erspan0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
sendto$packet(r5, &(0x7f00000000c0)="3f033608260812122c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c152bfdf9435e3ffe46", 0x3840, 0xa0c4, &(0x7f0000000540)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r7}, 0x10)
setitimer(0x0, 0x0, 0x0)
r8 = inotify_init1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
r9 = inotify_add_watch(r8, &(0x7f0000000200)='.\x00', 0x400)
r10 = dup(r8)
inotify_rm_watch(r10, r9)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r11, 0x8983, &(0x7f0000000300)={0x0, 'gre0\x00', {0x2}, 0x5})
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r13 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), r12)
sendmsg$SMC_PNETID_DEL(r12, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="3455a411", @ANYRES16=r13, @ANYBLOB="00012bbd7000fbdbdf25030000000900010073797a31000000001400020073797a5f74756e000000000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x400c0}, 0x8000)

2m55.262683324s ago: executing program 33 (id=549):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00'}, 0x18)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x40002)

2m42.526369581s ago: executing program 34 (id=688):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = syz_usb_connect$uac1(0x0, 0xdc, &(0x7f0000000cc0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206"], 0x0)
syz_usb_control_io(r0, &(0x7f0000001bc0)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000a40)={0x2c, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1c01}}, 0x0, 0x0, 0x0}, 0x0)

2m40.014565619s ago: executing program 35 (id=703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@getqdisc={0x24, 0x26, 0x705, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x1, 0x1}, {0x10, 0x8}, {0x4, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4c88b}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = syz_io_uring_complete(0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', <r7=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r9=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r9, r9, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000280)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@private=0xa010100, 0x4e20, 0x0, 0x4e24, 0xa54, 0x2, 0xa0, 0x80, 0x89, r7, r9}, {0x80000001, 0x7, 0x3, 0x10000, 0xe, 0xb, 0x1, 0xc}, {0xcf5d, 0x800, 0x5}, 0x4, 0x6e6bb2, 0x1, 0x1, 0x1}, {{@in=@broadcast, 0x4d5, 0x2b}, 0x2, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x3506, 0x3, 0x3, 0x3, 0x9, 0x7f, 0x1}}, 0xe8)
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r10 = dup(r5)
write$FUSE_BMAP(r10, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x5}}, 0x18)
getresuid(&(0x7f00000007c0), &(0x7f0000000780), &(0x7f0000000740))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r10])

2m18.231287311s ago: executing program 4 (id=819):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x998, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2m18.164555421s ago: executing program 4 (id=820):
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1001f0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = open(0x0, 0x801, 0x4b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x1, 0x0)
openat$cgroup_int(r1, 0x0, 0x2, 0x0)
poll(0x0, 0x0, 0x3)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
timer_create(0x1, 0x0, &(0x7f0000000340))
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000600)={@fallback, 0x1f, 0x0, 0x4, &(0x7f00000001c0)=[0x0], 0x1, 0x0, &(0x7f0000000500), &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0]}, 0x40)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000100), 0xfd, 0x48f, &(0x7f0000000940)="$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")

2m18.164202331s ago: executing program 36 (id=820):
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1001f0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = open(0x0, 0x801, 0x4b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f00000004c0)=[{0x0}], 0x1}}], 0x1, 0x0)
openat$cgroup_int(r1, 0x0, 0x2, 0x0)
poll(0x0, 0x0, 0x3)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
timer_create(0x1, 0x0, &(0x7f0000000340))
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000600)={@fallback, 0x1f, 0x0, 0x4, &(0x7f00000001c0)=[0x0], 0x1, 0x0, &(0x7f0000000500), &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0]}, 0x40)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000100), 0xfd, 0x48f, &(0x7f0000000940)="$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")

2m15.403491408s ago: executing program 37 (id=836):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r0}, 0x10)
setfsuid(0xee00)

2m15.162572716s ago: executing program 38 (id=839):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x2000, 0x0)
accept4$tipc(r2, 0x0, &(0x7f0000000380), 0x100000)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000500), &(0x7f0000000540)=0x4)

2m3.981220811s ago: executing program 39 (id=911):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r0=>0x0, <r1=>0x0})
clock_nanosleep(0x3, 0x0, &(0x7f00000000c0)={r0, r1+10000000}, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
dup3(r3, r2, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r6, 0x0)
r7 = dup(r5)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_NMI(r8, 0xae9a)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)

1m54.051188412s ago: executing program 40 (id=980):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x998, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r0}, 0x10)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1m52.377961414s ago: executing program 3 (id=981):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000100000000000000000000850000006d000000850000009e00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000013c0)=ANY=[])

1m52.206966083s ago: executing program 3 (id=991):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
gettid()
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000000)='veth1_virt_wifi\x00', 0x10)
fsetxattr$trusted_overlay_redirect(r2, 0x0, 0x0, 0x0, 0x0)

1m52.206370813s ago: executing program 3 (id=992):
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = dup(r3)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6}]}, 0x10)
dup3(r4, r5, 0x0)

1m50.966084497s ago: executing program 1 (id=995):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000d8000000d8000000080000000c00000000000002020000000000000000000003000000000200000005000000010000800b000000000000101c0000000300000004000005040000000600000001000000050000000e0000000100e000000000000000000000000000010000000900000000000000ffffff7f0b00000008000085a342000004000000040000000900000009000000000f00000000000000e02500000500000005000000100000000c05000000ff070000010000000400000005000000090000000100000002000000002e2e2e5f2e2e00"/248], &(0x7f00000004c0)=""/214, 0xf8, 0xd6, 0x1, 0xd7, 0x10000, @value}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000a3187acc3f0c27b63a776a000067000000b7080000000000007b8af8ff00000000bfa200000000000052020000f800b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m50.923573987s ago: executing program 1 (id=997):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e22, 0xffffffff, @empty}, 0x1c)
listen(r0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r3 = dup(r2)
ioctl$USBDEVFS_CONTROL(r3, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x12, 0x2, 0x0, 0x0, 0x0})
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
r6 = dup3(r5, r4, 0x0)
fchdir(r6)
r7 = fsopen(&(0x7f00000000c0)='sockfs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000080)='source', &(0x7f0000000240)='//\xf2/\x06\b//\\o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x89901)
r9 = syz_open_procfs$userns(0x0, &(0x7f0000000040))
mount_setattr(r8, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000000080)={0x100006, 0x0, 0x0, {r9}}, 0x20)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[], 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000280)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000000000140600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="54c200009078ffffd5537815a28a496293683d000000000000000012583462391a75f34b758e46f3a9926d9a993f254185c2493da59cbf8fa18f58c77bfe73ecda714fd1d03dc501a9d21dd70670771125963b05a67e75c26b5a6dd7480e8649ed90986e76da2f5313e6961ddcb4a7e0017e8ebf2bbfeae2c088c06d92a3f2bd53"], 0x0)

1m50.902926067s ago: executing program 1 (id=998):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
r1 = open(&(0x7f00000001c0)='./file0\x00', 0x14103e, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ftruncate(r1, 0x20cf01)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES64=r3, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRESHEX=r0], 0x50)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(r6, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, r7)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r7)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, 0x0, &(0x7f00000002c0)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
socket(0xa, 0x800, 0x1)
read$FUSE(r1, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00030000000000040004006bdcb820945bfeeba9f5484d9e86058e0fe68ed759c45f7e4d7d279118450a0b6f11296a10645e52202499012bf8bda00fa059afa3"], 0x1c}}, 0x0)

1m50.837900486s ago: executing program 3 (id=999):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000d8000000d8000000080000000c00000000000002020000000000000000000003000000000200000005000000010000800b000000000000101c0000000300000004000005040000000600000001000000050000000e0000000100e000000000000000000000000000010000000900000000000000ffffff7f0b00000008000085a342000004000000040000000900000009000000000f00000000000000e02500000500000005000000100000000c05000000ff070000010000000400000005000000090000000100000002000000002e2e2e5f2e2e00"/248], &(0x7f00000004c0)=""/214, 0xf8, 0xd6, 0x1, 0xd7, 0x10000, @value}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000a3187acc3f0c27b63a776a000067000000b7080000000000007b8af8ff00000000bfa200000000000052020000f800b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000006480)=ANY=[@ANYBLOB="666d61736b3d30303030303030303030303030303030303030303030322c646973636172642c6572726f72733d72656d6f756e742d726f2c696f636861727365743d63703837342c616c6c6f775f7574696d653d30303030303030303030303030303030303030343030312c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6572726f72733d72656d6f756e742d726f2c696f636861727365743d63703836302c646973636172642c0062e4c9cc39f60fdc2a31be825db26184c24e5144a3f2d6de7b6e11a787208c8549dc5f3733eb4237f07e5618374a5478011e7626a39ceff26b8c6fd49c87bbb307b46889e9eac43478f00587e36761fd0f6054c9c89e709d215669fc36083192e02d957188a379df966d2dce7a95f0352085c8cb475d15426767f2733bc5fae1d43009c5cbbd57ce5977401f5cb46d412434"], 0x3, 0x1510, &(0x7f0000003640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m50.477759285s ago: executing program 3 (id=1002):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
gettid()
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000000)='veth1_virt_wifi\x00', 0x10)
fsetxattr$trusted_overlay_redirect(r2, 0x0, 0x0, 0x0, 0x0)

1m50.341376664s ago: executing program 3 (id=1006):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r0, 0xee00, 0xee01)
keyctl$chown(0x4, r0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000004c0)={'syztnl0\x00', <r2=>0x0, 0x10, 0x80, 0x8, 0x4, {{0x17, 0x4, 0x1, 0x2c, 0x5c, 0x64, 0x0, 0xb, 0x2f, 0x0, @rand_addr=0x64010100, @multicast1, {[@timestamp_addr={0x44, 0xc, 0x54, 0x1, 0x6, [{@dev={0xac, 0x14, 0x14, 0x20}, 0x1000}]}, @end, @cipso={0x86, 0x21, 0x0, [{0x0, 0xf, "d5af356fa4c700e9ef3d5ebaf8"}, {0x1, 0xc, "636f015c21f07715efb9"}]}, @generic={0x5, 0x2}, @lsrr={0x83, 0x17, 0x43, [@multicast1, @remote, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @multicast2]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x0, 0x24, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0xd8, 0x34, 0x88, 0x8, 0x1a0a, 0x101, 0x1b21, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x9c, 0x50, 0x56}}]}}]}}, 0x0)

1m50.129046463s ago: executing program 41 (id=1006):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r0, 0xee00, 0xee01)
keyctl$chown(0x4, r0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl1\x00', &(0x7f00000004c0)={'syztnl0\x00', <r2=>0x0, 0x10, 0x80, 0x8, 0x4, {{0x17, 0x4, 0x1, 0x2c, 0x5c, 0x64, 0x0, 0xb, 0x2f, 0x0, @rand_addr=0x64010100, @multicast1, {[@timestamp_addr={0x44, 0xc, 0x54, 0x1, 0x6, [{@dev={0xac, 0x14, 0x14, 0x20}, 0x1000}]}, @end, @cipso={0x86, 0x21, 0x0, [{0x0, 0xf, "d5af356fa4c700e9ef3d5ebaf8"}, {0x1, 0xc, "636f015c21f07715efb9"}]}, @generic={0x5, 0x2}, @lsrr={0x83, 0x17, 0x43, [@multicast1, @remote, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @multicast2]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x0, 0x24, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0xd8, 0x34, 0x88, 0x8, 0x1a0a, 0x101, 0x1b21, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x9c, 0x50, 0x56}}]}}]}}, 0x0)

1m49.065288678s ago: executing program 1 (id=1008):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000d8000000d8000000080000000c00000000000002020000000000000000000003000000000200000005000000010000800b000000000000101c0000000300000004000005040000000600000001000000050000000e0000000100e000000000000000000000000000010000000900000000000000ffffff7f0b00000008000085a342000004000000040000000900000009000000000f00000000000000e02500000500000005000000100000000c05000000ff070000010000000400000005000000090000000100000002000000002e2e2e5f2e2e00"/248], &(0x7f00000004c0)=""/214, 0xf8, 0xd6, 0x1, 0xd7, 0x10000, @value}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x3, 0x1510, &(0x7f0000003640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m48.299044204s ago: executing program 1 (id=1010):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700000008c3985e90d537a308"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYRES16=r0, @ANYRESDEC=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000380)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
io_pgetevents(0x0, 0x2, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x479, 0x100000100008e}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
tee(r2, r2, 0x8, 0x2)
getpid()
io_setup(0x2, &(0x7f0000000580))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@restrict={0xf, 0x0, 0x0, 0xb, 0x2}, @restrict={0xd, 0x0, 0x0, 0xb, 0x4}]}, {0x0, [0x61]}}, &(0x7f0000000200)=""/27, 0x33, 0x1b, 0x1, 0x5, 0x10000, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="01000018a1e4274d7f1cce4f971d6d915172bec08543e140", @ANYRES32, @ANYRES32=r0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100"/28], 0x50)
readahead(0xffffffffffffffff, 0x44, 0x0)

1m47.884453702s ago: executing program 1 (id=1012):
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x4)

1m47.269514389s ago: executing program 42 (id=1012):
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x4)

1m46.196084303s ago: executing program 4 (id=1016):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000100000000000000000000850000006d000000850000009e00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000013c0)=ANY=[])

1m46.010253923s ago: executing program 4 (id=1021):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000d8000000d8000000080000000c00000000000002020000000000000000000003000000000200000005000000010000800b000000000000101c0000000300000004000005040000000600000001000000050000000e0000000100e000000000000000000000000000010000000900000000000000ffffff7f0b00000008000085a342000004000000040000000900000009000000000f00000000000000e02500000500000005000000100000000c05000000ff070000010000000400000005000000090000000100000002000000002e2e2e5f2e2e00"/248], &(0x7f00000004c0)=""/214, 0xf8, 0xd6, 0x1, 0xd7, 0x10000, @value}, 0x28)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x3, 0x1510, &(0x7f0000003640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m45.932732572s ago: executing program 4 (id=1022):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
syz_open_procfs$userns(r0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000380))
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, &(0x7f0000000040))
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, r4, 0x2, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@empty, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r5, 0x0, 0x0)

1m45.782169272s ago: executing program 4 (id=1025):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000380))
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000000)={@ipv4={""/10, ""/2, @empty}, <r4=>0x0}, &(0x7f0000000040)=0x14)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x9, '\x00', r4, r5, 0x2, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@empty, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8)
mmap(&(0x7f000000b000/0x4000)=nil, 0x4000, 0x1000005, 0x8012, 0xffffffffffffffff, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r6, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1m45.766809891s ago: executing program 43 (id=1025):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000380))
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000000)={@ipv4={""/10, ""/2, @empty}, <r4=>0x0}, &(0x7f0000000040)=0x14)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x9, '\x00', r4, r5, 0x2, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@empty, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8)
mmap(&(0x7f000000b000/0x4000)=nil, 0x4000, 0x1000005, 0x8012, 0xffffffffffffffff, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r6, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1m45.594321781s ago: executing program 5 (id=1028):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x1, 0x8, 0x0, 0x20000000000000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f086766c744240012e93bf96766c7442402010000006766c744240600000000670f011c2466b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019f09000f01c2", 0x6b}], 0x1, 0x7d, 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000100)={0xbc, 0x0, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prlimit64(0x0, 0xc, &(0x7f0000000140)={0xffffffffffffff81, 0x40}, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
getsockopt$inet6_int(r3, 0x29, 0xce, 0x0, &(0x7f0000000140))

1m45.50096135s ago: executing program 5 (id=1030):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000013c0)=ANY=[])

1m45.194265029s ago: executing program 5 (id=1031):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x195240, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000100)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0xffffffff, 0x40000000, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, 0x45c)

1m45.029424708s ago: executing program 5 (id=1032):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x3, 0x1510, &(0x7f0000003640)="$eJzs3Am4TlX7MPD7Xmvt45D0dJLhsNa6N08yLCdJMiTJkCRJkmRKSDrJKwmJQ6akQxKS4ZAMh5AMJ0465nkekyTpJEmmTMn6rlN83t7qe//v/+17/a//uX/Xta9n3c/a99prP/czrL0N33UZWrNxrWoNiQj+LfjrQxIAxALAQAC4DgACACgXVy4uqz+nxKR/7yDsr/VI6tWeAbuauP7ZG9c/e+P6Z29c/+yN65+9cf2zN65/9sb1Zyw72zy94PW8Zd+N7/9nZ/z7/79IZumxX60tfWPXfyGF65+9cf3/1wr+Kztx/bM3rn/2xvXP3rj+2UGOP+3h+mdvXH/GsrOrff+Zt6u7Xe33H2OMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4yx7OGsv0IBwOX21Z4XY4wxxhhjjDHG/jo+x9WeAWOMMcYYY4wxxv7/QxAgQUEAMZADYiEn5AIBANdCHrgOInA9xMENkBduhHyQHwpAQYiHQlAYNBiwQBBCESgKUbgJisHNUBxKQEkoBQ5KQwLcAmXgVigLt0E5uB3Kwx1QASpCJagMd0IVuAuqwt1QDe6B6lADakItuBdqw31QB+6HuvAA1IMHoT48BA3gYWgIj0AjeBQaw2PQBB6HptAMmkMLaPnfyn8JesDL0BN6QRL0hj7wCvSFftAfBsBAeBUGwWswGF6HZBgCQ+ENGAZvwnB4C0bASBgFb8NoeAfGwFgYB+MhBSbARHgXJsF7MBmmwFSYBqkwHWbA+zATZsFs+ADmwIcwF+bBfFgAafARLIRFkA4fw2L4BDJgCSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVtsB12wE7YBbvhU9gDn8Fe+Bz2wRf/Yv6Zf8jvioCAAgUqVBiDMRiLsZgLc2FuzI15MA9GMIJxGId5MS/mw3xYAAtgPMZjYSyMBg0SEhbBIhjFKBbDYlgci2NJLIkOHSZgApbBW7EslsVyWA7LY3msgBWxIlbGylgFq2BVrIrVsBpWx+pYE2vivXgv9sY6WAfrYl2sh/Uu357ChtgQG2EjbIyNsQk2wabYFJtjc2yJLbEVtsLW2BrbYltsh+2wPbbHREzEDtgBO2JH7ISdsDN2xi7YBbtiN+yGL+UAfBlfxl5YXfTGPtgH+2Jyjv44AAfgqzgIX8PX8HVMxiE4FN/AN/BNHI6ncQSOxFE4CquId3AMjkUS4zEFU3AiTsRJOAkn4xScgtMwFafjDJyBM3EWzsIPcA5+iB/iPJyHCzAN03AhLsJ0TMfFeAYzcAkuxWW4HFfgclyFq3EVrsV1uBY34AbchJtwC27BbbgNd+AO3IUKAD/Fz/AzTMZ9uA/34348gAfwIB7ETMzEQ3gID+NhPIJH8CgexWN4HE/gcTyFp/A0nsGzeBbP43m8gC/Ef9NoV4k1ySCyKKFEjIgRsSJW5BK5RG6RW+QReURERESciBN5RV6RT+QTBUQBES/iRWFRWBhhBIkwBgBEVERFMVFMFBfFRUlRUjjhRIJIEGVEGVFWlBXlxO2ivLhDVBAVRRtXWVQWVURbV1XcLaqJaqK6qCFqilqilqgtaos6oo6oK+qKeqKeqC8eEg1Eb+yPj4isyjQWQ7CJGIpNRTMhL32DtRLDsbVoI9qKp8RIHIHtRSuXKJ4VHcQY7Cj+Jsbi86KzGI9dxIuiq+gmuouXRA/R2vUUvcRk7C36iGnYV/QT/cUAMRNriA9wTs6a4nWRLIaIoeINsQDfFMPFW2KEGClGibfFaPGOGCPGinFivEgRE8RE8a6YJN4Tk8UUMVVME6liupgh3hczxSwxW3wg5ogPxVwxT8wXC0Sa+EgsFItEuvhYLBafiAyxRCwVy8RysUKsFKvEarFGrBXrxHqxQWwUm8RmsUVsFdvEdrFD7BS7xG7xqdgjPhN7xedin/hC7BdfigPiK3FQfC0yxTfikPhWHBbfiSPie3FU/CCOiePihDgpTokfxWlxRpwV58R58ZO4IH4WF4UXIFEKKaWSgYyROWSszClzyWtkbhlcenWvl3HyBplX3ijzyfyygCwo42UhWVhqaaSVJENZRBaVUXmTLCZvlsVlCVlSlpJOlpYJ8hZZRt4qy8rbZDl5uywv75AVZEVZSVaWd8oq8i4JkV+PUV3WkDVlLXmvrC3vk3Xk/bKufEDWkw/K+vIh2UA+LBvKR2Qj+ahsLB+TTeTjsqlsJpvLFrKlfEK2kk/K1rKNbCufku3k07K9fEYmymdlB+kvvUWel53lC7KLfFF2ld1kd/mzvCi97Cl7SYDeso98RfaV/WR/OUAOlK/KQfI1OVi+LpPlEDlUviGHyTflcPmWHCFHylHybTlaviPHyLFynBwvU+QEOVG+KyfJ9+RkOUVOldNkqpwu+18aabaU/zT/3T/IH/zL0TfJzXKL3Cq3ye1yh9wpd8ndcrfcI/fIvXKv3Cf3yf1yvzwgD8iD8qDMlJnykDwkD8vD8og8Io/Ko/KYPC7PyZPylPxRnpZn5Bl5Tp6X5+WFS68BKFRCSaVUoGJUDhWrcqpc6hqVW12r8qjrVERdr+LUDSqvulHlU/lVAVVQxatCqrDSyiirSIWqiCqqouomvPSGUSVVKeVUaZWgbvlX8lUxdbMqrkr8Jv/y/JL+ZH4tVUvVSrVSrVVr1Va1Ve1UO9VetVeJKlF1UB1UR9VRdVKdVGfVWXVRXVRX1VV1V91VD9VD9VQ9VZJKUn3UK6qv6qf6qwFqoHpVDVKD1GA1WCWrZDVUDVXD1DA1XA1XI9QINUqNUqPVaDVGjVHj1DiVolLURDVRTVKT1GQ1WU1VU1WqSlUz1Aw1U81Us9VsNUfNUXPVXDVfzVdpKk0tVAtVukpXi9VilaGWqCVqmVqmVqgVapVapdaoNWqdWqc2qA0qQ21Wm9VWtVVtV9vVTrVT7Va71R61R+1Ve9U+tU/tV/vVAXVAHVQHVabKVIfUIXVYHVZH1BF1VB1Vx9QxdUKdUKfUKXVanVZn1Vl1Xp1XF9QFdVFdzFr2BSIQgQpUEBPEBLFBbJAryBXkDnIHeYI8QSSIBHFBXJA3uDHIF+QPCgQFg/igUFA40IEJbCAuFT0a3BQUC24OigclgpJBqcAFpYOE4JagTHBrUDa4LSgX3B6UD+4IKgQVg0pB5eDOoEpwV1A1uDuoFtwTVA9qBDWDWsG9Qe3gvqBOcH9QN3ggqBc8GNQPHgoaBA8HDYNHgkbBo0Hj4LGgSfB40DRoFjQPWgQt/9LxvT+d/0nXU/fSSbq37qNf0X11P91fD9AD9at6kH5ND9av62Q9RA/Vb+hh+k09XL+lR+iRepR+W4/W7+gxeqwep8frFD1BT9Tv6kn6PT1ZT9FT9TSdqqfrGfp9PVPP0rP1B3qO/lDP1fP0fL1Ap+mP9EK9SKfrj/Vi/YnO0Ev0Ur1ML9cr9Eq9Sq/Wa/RavU6v1xv0Rr1Jb9Zb9Fa9TW/XO/ROvUvv1p/qPfozvVd/rvfpL/R+/aU+oL/SB/XXOlN/ow/pb/Vh/Z0+or/XR/UP+pg+rk/ok/qU/lGf1mf0WX1On9c/6Qv6Z31R+6zFfdbPu1FGmRgTY2JNrMllcpncJrfJY/KYiImYOBNn8pq8Jp/JZwqYAibexJvCprDJQoZMEVPERE3UFDPFTHFT3JQ0JY0zziSYBFPGlDFlTVlTzpQz5U15U8FUMJVMJXOnudPcZe4yd5u7zT3mHlPD1DC1TC1T29Q2dUwdU9fUNfVMPVPf1DcNTAPT0DQ0jUwj09g0Nk1ME9PUNDXNTXPT0rQ0rUwr09q0Nm1NW9POtDPtTXuTaBJNB9PBdDQdTSfTyXQ2nU0X08V0NV1Nd9Pd9DA9TE/T0ySZJNPH9DF9TV/T3/Q3A81AM8gMMoPNYJNsks1QM9QMM8PMcDPcjDAjzaishap5x4wxY804M96kmBQz0Uw0k8wkM9lMNlPNVJNqUs0MM8PMNDPNbDPbzDFzzFwz18w3802aSTMLzUKTbtLNYrPYZJgMs9QsNcvNcrPSrDSrzWqz1qw162G92Wg2ms1ms9lqtprtZrvZaXaa3Wa32WP2mL1mr9ln9pn9Zr85YA6Yg+agyTSZ5pA5ZA6bw+aIOWKOmqPmmDlmTpgT5pQ5ZU6b0+asOWvOm/yXfi+9ibU5bS57jc1tr7V57HX2H+MCtqCNt4VsYattPpv/N7Gx1ha3JWxJW8o6W9om2Ft+F1ewFW0lW9neaavYu2zV38W17X22jr3f1rUP2Fr23t/E9eyDtr59zDZABLDNbCPbwja2j9km9nHb1DazzW0L284+bdvbZ2yifdZ2sM/9Ll5oF9nVdo1da9fZPfYze9aes4ftd/a8/cn2tL3sQPuqHWRfs4Pt6zbZDvldPMq+bUfbd+wYO9aOs+N/F0+102yqnW5n2PftTDvrd3Ga/cjOsel2rp1n59sFv8RZc0q3H9vF9hObYZfYpXaZXW5X2JV21f+d6zK7wW60m+xu+6ndarfZ7XaH3Wl3/RJnncde+7ndZ7+wh+y39oD9yh60R2ym/eaXOOv8jtjv7VH7gz1mj9sT9qQ9ZX+0p+2ZX84/69xP2p/tRestEBKQJEUBxVAOiqWclIuuodx0LeWh6yhC11Mc3UB56UbKR/mpABWkeCpEhUmTIUtEIRWhohSlm+jyOr0klSJHpSmBbqEydCuVpduoHN1O5ekOqkAVqRJVpjupCt1FVeluqkb3UHWqQTWpFt1Ltek+qkP3U116gOrRg1SfHqIG9DA1pEeoET1KjekxakKPU1NqRs2pBbWkJ6gVPUmtqQ21paeoHT1N7ekZSqRnqQM9Rx3pb9SJnqfO9AJ1oRepK3Wj7vQS9aCXqSf1oiTqTX3oFepL/ag/DaCB9CoNotdoML1OyTSEhtIbNIzepOH0Fo2gkTSK3qbR9A6NobE0jsZTCk2gifQuTaL3aDJNoak0jVJpOs2g92kmzaLZ9AHNoQ9pLs2j+bSA0ugjWkiLKJ0+psX0CWXQElpKy2g5raCVtIpW0xpaS+toPW2gjbSJNtMW2krbaDvtoJ20i3bTp7SHPqO99Dntoy9oP31JB+grOkhfUyZ9Q4foWzpM39ER+t73oh/oGB2nE3SSTtGPdJrO0Fk6R+fpJ7pAP9NF8gQhhiKUoQqDMCbMEcaGOcNc4TVh7vDaME94XRgJrw/jwhvCvOGNYb4wf1ggLBjGh4XCwqEOTWhDCsOwSFg0jIY3hcXCm8PiYYmwZFgqdGHpMCG8JSwT3hqWDW8Ly4W3h+XDO8IKYcXwsQcqh3eGVcK7wqrh3WG18J6welgjrBnWCu8Na4f3hXXC+8O64QNh2fDBsH74UNggfDhsGD4SNgofDRuHj4VNwsfDpmGzsHnYImwZPhG2Cp8MW4dtwrbhU2G78OmwffhMmBg+G3YIn/ul/8FFf96fFPYO+4SvhK+E3t8v50cXRNOiH0UXRhdF06MfRxdHP4lmRJdEl0aXRZdHV0RXRldFV0fXRNdG10XXRzdEN0Y3Rb2vlQMcOuGkUy5wMS6Hi3U5XS53jcvtrnV53HUu4q53ce4Gl9fd6PK5/K6AK+jiXSFX2GlnnHXkQlfEFXVRd5Mr5m52xV0JV9KVcs6VdgmuhWvpWrpW7knX2rVxbd1T7in3tHvaPeOecc+6Du4519H9zXVyz7vO7gX3gnvRdXXdXHf3kuvhJuT59TOZ5Pq4Pq6v6+v6u/5uoBvoBrlBbrAb7JJdshvqhrphbpgb7oa7EW6EG+VGudFutBvjxrhxbpxLcSluopvoJrlJbrKb7Ka6qS7VpboZboab6Wa6KrN+PcpcN9fNd/NdmktzC13WmjHdLXaLXYbLcEvdUrfcLXcr3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O91Ot9vtdnv8db8O6va5/W6/O+AOuIPua5fpvnGH3LfusPvOHXHfu6PuB3fMHXcn3El3yv3oTrsz7qw75867n9wF97O76LxLiUyITIy8G5kUeS8yOTIlMjUyLZIamR6ZEXk/MjMyKzI78kFkTuTDyNzIvMj8yIJIWuSjyMLIokh65OPI4sgnkYzIksjSyLLI8siKiPeFtoa+iC/qo/4mX8zf7Iv7Er6kL+WdL+0T/C2+jL/Vl/W3+XL+dl/e3+Er+Iq+kn/cN/XNfHPfwrf0T/hW/knf2rfxbf1Tvp1/2rf3z/hE/6zv4J/zHf3ffCf/vO/sX/Bd/Iu+q+/mu/uXfA//su/pe/kk39v38a/4vr6f7+8H+IH+VT/Iv+YH+9d9sh/ih/o3/DD/ph/u3/Ij/Eg/KuZtP/ryJTKM9yl+gp/o3/WT/Ht+sp/ip/ppPtVP9zP8+36mn+Vn+w/8HP+hn+vn+fl+gU/zH/mFfpFP9x/7xf4Tn+GXXL6p7Ff6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+l1+t//U7/Gf+b3+c7/Pf+H3+y/9Af+VP+i/9pn+G3/If+sP++/8Ef+9P+p/8Mf8cX/Cn/Sn/I/+tD/jz/pz/rz/yV/wP/uL/G/WGGOMMcb+SyZcaYo/6u/9B8+Jv9u5DwBcu61g5t/3Z60o1+f7td1PxLeLAMCzvbo8cnmrXj0pKenSvhkSgqLzAC7/SVCWGLgSL4G28DQkQhso84fz7ye6nad/Mn70doBcf5cTC1fiK+N/+SfjP/HUqIXlw7Nx/4/x5wEUL3olJydciZdAW5X12AbK/sn4+Vv9k/nn/CoFoPXf5eSGK/GV+SfAk/AcJP5mT8YYY4wxxhhj7Ff9RKVOl68/L/+Nzz+6Po9XV3JywJX4n12fM8YYY4wxxhhj7Op7vlv3Z55ITGzT6V9vVP1vZXHjf2rDe4DLzygA+DcHBPiPn8WW/8ixki99dP6xa/k5H8D/jFL+FY2r/MXEGGOMMcYY+8tdWfT/9nl1tSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQ/+J/07sap8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdrX9nwAAAP//geYOMQ==")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m44.944944897s ago: executing program 5 (id=1034):
syz_usb_connect$uac1(0x2, 0x8a, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902780003020000000904000000010100000a2401e700000201020a2408000f0000000000090401000001020000090401010101020000090501a8303c56092000ff081a0725018002010101020000088477010903bd0201000000000000090582093e00000500072501034f9e29201bca5affe4d6f28b68ab152bc708e2781db6008e310fefc9003d81e224f0d015b671ca522d823eb342a89579fe3adb5e5d95f393ac2559e4aa231d4378ae3684532c3eb9edd94930e1c2a2bdee3f80141349d377937969de4e7221fcbfe5e25555d834f6c038d0ce27a94c84fc7153c8e654"], 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000340)={0x2004})
poll(&(0x7f0000002780)=[{r4}], 0x1, 0x80)
syz_open_dev$hidraw(&(0x7f0000000000), 0x2, 0xb42)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_usb_connect$uac1(0x2, 0x8a, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902780003020000000904000000010100000a2401e700000201020a2408000f0000000000090401000001020000090401010101020000090501a8303c56092000ff081a0725018002010101020000088477010903bd0201000000000000090582093e00000500072501034f9e29201bca5affe4d6f28b68ab152bc708e2781db6008e310fefc9003d81e224f0d015b671ca522d823eb342a89579fe3adb5e5d95f393ac2559e4aa231d4378ae3684532c3eb9edd94930e1c2a2bdee3f80141349d377937969de4e7221fcbfe5e25555d834f6c038d0ce27a94c84fc7153c8e654"], 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) (async)
epoll_create1(0x80000) (async)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000340)={0x2004}) (async)
poll(&(0x7f0000002780)=[{r4}], 0x1, 0x80) (async)
syz_open_dev$hidraw(&(0x7f0000000000), 0x2, 0xb42) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) (async)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)

1m44.782015807s ago: executing program 5 (id=1035):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000380))
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, &(0x7f0000000040))
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, r4, 0x2, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@empty, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r5, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1m44.768592346s ago: executing program 44 (id=1035):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000380))
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, &(0x7f0000000040))
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, r4, 0x2, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000780)={{{@in=@empty, @in=@multicast2}}, {{@in6=@private2}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r5, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

31.121092184s ago: executing program 8 (id=1469):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a})
chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00')
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)

29.989235648s ago: executing program 8 (id=1472):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x1, 0x8, 0x0, 0x20000000000000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f086766c744240012e93bf96766c7442402010000006766c744240600000000670f011c2466b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019f09000f01c2", 0x6b}], 0x1, 0x7d, 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000100)={0xbc, 0x0, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prlimit64(0x0, 0xc, &(0x7f0000000140)={0xffffffffffffff81, 0x40}, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
getsockopt$inet6_int(r3, 0x29, 0xce, 0x0, &(0x7f0000000140))

29.851531597s ago: executing program 8 (id=1476):
sendmmsg(0xffffffffffffffff, &(0x7f0000003440)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="b5ce05a7f2a99e71ff611ea37b6d84ae4045233fa85b02009344507e99583728984603f21afd706c3bc836c91aba75a1fc719a14e53428492cae9b12b5d62e1cf67fa50e4de8acc2a9c1a878e3e6abaddad54b800476c64772a4c55a27e74810717c4a0f47be8fc2ce3c20e7411e6c2073ce35caa4d73023ed8d90073cc04d8b94aed31c84b8a6d52478c557b7370eaccbf6993a6dcc35cefda9c5b3d0aa833f3815cc27bd60f79d7daf6b7f43f3d3e8a2c5df3d0f6258a41fa573505f8c0b5af3844986ede73a5bbffe5f07fe0f", 0xce}], 0x1, &(0x7f0000000680)=[{0x80, 0x1, 0x3, "3ed44a3f66d32e23e85bfd9b4b0a4457ae527f7bcecac0825652cbe493f5aa9047dfcd32fb584653ffe3e3f75c8796b25a714e82aa112fba34d5900c981ef11581a9f91acea681623b3b2395823307ad6ea197099663c23972f81a92920a28fcddb2612cb27dc5d4f1708812bb509847"}, {0xc0, 0x102, 0x8, "a9c4db48c02163206964295e7d5e23e9dabdd62c4539d81c609b2dcb4539bf06f2bd934df2be0b9df34c1bc4960b72bc3e7c3cac18b5f80a3433782cf70a75983c2cb497863defc5e79077ee8d4847e165f90bf4bb848ef84b8595ba97b2f558108223124560df0147cca4ade447fa68c75c18e63b7740f254e03a956c384d55d2a2474d5b3acd4f558018918452d0216d19003e7a94cb315894c553bb697ea8595da3491aa921579abdb8"}], 0x140}}], 0x1, 0x2004c000)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'ip_vti0\x00', &(0x7f0000000140)={'sit0\x00', 0x0, 0x20, 0x20, 0x4, 0x5, {{0x5, 0x4, 0x2, 0x0, 0x14, 0x68, 0x0, 0xb, 0x2f, 0x0, @multicast1, @broadcast}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)=@x86={0x5, 0x1, 0x2, 0x0, 0x40, 0x6, 0xfb, 0x89, 0x18, 0xd, 0x7, 0x4, 0x0, 0x1000, 0x1000, 0x2, 0xc, 0x7, 0x19, '\x00', 0x3, 0x8000000000000001})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

29.659011286s ago: executing program 8 (id=1478):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000006480)=ANY=[@ANYBLOB="666d61736b3d30303030303030303030303030303030303030303030322c646973636172642c6572726f72733d72656d6f756e742d726f2c696f636861727365743d63703837342c616c6c6f775f7574696d653d30303030303030303030303030303030303030343030312c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6572726f72733d72656d6f756e742d726f2c696f636861727365743d63703836302c646973636172642c0062e4c9cc39f60fdc2a31be825db26184c24e5144a3f2d6de7b6e11a787208c8549dc5f3733eb4237f07e5618374a5478011e7626a39ceff26b8c6fd49c87bbb307b46889e9eac43478f00587e36761fd0f6054c9c89e709d215669fc36083192e02d957188a379df966d2dce7a95f0352085c8cb475d15426767f2733bc5fae1d43009c5cbbd57ce5977401f5cb46d412434"], 0x3, 0x1510, &(0x7f0000003640)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

29.618406656s ago: executing program 8 (id=1479):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000013c0)=ANY=[])

29.532094036s ago: executing program 8 (id=1482):
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
umount2(&(0x7f0000000180)='./file0/file0/file0/file0/file0\x00', 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0xeea390, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000066c0)="a062030607792c01386f28a428828947de99f79cc542703d923c7cb9d4e1f6fd95fbf2f747ab32f6fb041861fb3f87a88cb85405b4e73c0b6b12c81e42a9f13d82c32b7ddb172bcba1aac5c38f083747ac179f08d4d6d342a87ba8dd9bb7a9680f27433c3357b4f6ac97b19a973592f1ac6e7853a0b15ba42a28efb9cc30b146346b546018966e94976ca28f26a1950dd64c0adbb0c2e09bbd9caa9e7886a2b3d6e2b6d6616b718f1322ea2881ca59ef73948b1bcdc2dd3970e63cbc1043ce42af0ea1f95d17268cbc3ef062c8c31a537e94a20c1c505a6022d5ece7f51bd9c754d8c47cbe80bbb30b2159991a94dd3a25e64aff8a7a17374b5a71e0c7c241cbfd7f084e18a50bea512ada902210a3881ffcd42071ab09c4d80139d8980d6dc5d12c2595ced445caf22f80d8fb1a4c243da47fadb8e28e9c04fea820a8a2f032f5adff8b7d9269e63db68d196bf7f416405e52b6b8abd8bb9d9694b8b5eddae348209963738cd9710bd6c291af1c8eaf0e52d2f2f24bef8c8bc9f77eed40104e07c8ee1b4cb358fc73e2653fef6232b5e9f5d0be26b91a0b7967ed5e3bf10c449424ff4d11951d963677001d9576425d6a9c4503268a407d74854f5e1caacc0ccc463dc56e684db1d80b370da238915579ab82cdbd7d155adf10b96ed71100ea92834e8a4e4f5b7b831bff6fb4febe01bb398ea4065446f277f107aa3cc06e0b7a6e98434bf57744ba9ecb8effe704d7f852e16bc33ac113649f7540b7a7a67cf5493b400ce06e571d485af1732938b79ded4de7dad97a7e1c0be7bd479dc264647bb76503168423e3f6fc95f8ac8ea35e39f476ab54e88286fcf73eead1f794784465592fe4ad112ac63bbc3b3f35b87c40bc5fa6e3ca6cad878f9772a61a23aa00491a9e2442eb90a32af2bd74e99d075bcda20288bfc30f3b00a7e8e1a0b4791573abd65284bbb53e2b7d667239b95b332dd423e4d7c512de559bd53fde5285add9795bda81ec142620e693af9c787a4499dd76ca0d77d9c7c4043e537ec6c1cd0b9a642b12adc782a0e00f6c1ed7379d5fff4c2feb19182db977f657b195e4710ff00f78e35a146119897495b0e1a0068a6606292ee72bf65adcd2cd29b4e59a4b3f82eac77d5254013d03d2fb2511975558906741912d09304f0d4cf08c8f62690c67968c869f75a4025224d8e84baf7a42e01b4ecf7e55d7c45839778c2266880d1bb73e3aad618d1a4f8d5a16914d64d70438a88512649fd4caa90506e5a2d58a33ecaebc9b2e5f8a4fbeca57c829ae02fd2dc146e939c3d295ada7df4a07e74b356c6ffd7a9c546b9eddf7e013cbcb2b57ae0d225249f7e06a415681d9f597a060fd55e39bd56f04b863efeca458a0cbc54b660db50ca40d27a3fda3416860e691cfc780593f06b467700968bb918c32547e378b14b4e0dcd11cb0b2fb36ea70946ac62290184b4eed38b51c322a75367b50f558e063bf363341a17c28ddcbf9ce53da06f26303fd156423a25f686809bc9845a78e0cc3d94e04bc8da85f22a4a8ece2c4ac2c79e54dcc4eabc61e067060ad880377a71fe0c2c0305256e4f3c637575f086e4ae3d7ab5d106fde03d24c47dccba3da23a244c1f50a4f60cd8d71b77390c5ce6d5612fd0260a2f33389b064ae6acac783eca62874232fd3808fb2188151a43de6cebc7e245106183f7d929f1eeff6f972da3e3d967170247925fb0f04bf38e88d06321f9ff9d2c296553d842b69036a2b6de2aad3879aedee723ff00736f7b0dffe6182104105ff0f0b636f5192d6bb5ae7ef950825827d2f3d6285d83aedca3f31474e0ad50ce6290a0e546c30d900e5b4208ecc8b3aca0ba3d110fc3c0a7e004a53e5d0ba1cc1c2bb42c3dbcbb4ceb6674151932ae56f6b03cc34ce450c292fecd2456ddcf42b075e6fd49305fbf265a36f3cff61321dd60f16e844089d659130947672a2d059e04af9ef653e8afec926b5a5d411f60a2a435437095a1df8dc60a616bd1a1ce7b5251ed8f905becffebd635eee8ff0055c40f146f1350a406b853ecb005c6ede4dc270ce6751cff915aa27f5f6b0736da14c9949de599d57868c29cc97ad03bd89502a34b88ad29c8762d0dc24a6df759821882a32e70531cab51fa1752a4fc49cf0706cb24d203174b2940f29ef8b0ce65b40cfde4e0c7310c685cc8de8384e485a951192fa8c36c11f9b88a48caf027dca480caa4fccae70ea6c837eb82f926ad7691c7709f217220d71f6e374fb8522a84c118b5c25f3d56acfb25afbe676fc9e574b6c5a59c00a0bbeeff61fd82a1677f3da9bb596133db491a8f11b945d930c8a67de9ce80025c764d518efcbae25d9194dc96c31ed02c63b1ac976715f7233ffed7cb6e929bbb5afabd34bc37c095acd0abbbdb1ea48e40a30ac99550f0ccca19ecef5acb2604c48fffb53b352d114fac72d6fc019ddec558406668f773fed9476148133c0f9ca4d1fd7e70dd04bfa089dc57e5940f29a5fd33dc79913ff48853794fdaf891d71de94c4a4fed0544e09f2bd578b07003031b8602f08ca8a79fa5ebfd5477f4d4f031c3efe0db273446a99d0cbe21a3cf43f3b82774e4657bb4f9675adbaf71c52953f0b18a61e05a9c770536fbad215848f8238e8730b9085189ea4621780dac500d7d7dc7815b45e232f86592498f1515ac8c50306013524cc5f0a74b67bc85d435d332ce69f00641c86a3e91be84b78ac358f35b18d69679df4197d3be8554417cf44aee6dc623f68ce3388df18168efa1c87c776cbda792f6110b6af178eb8200a91dfb72c1e23b5e5a66b5a3ee3f4c2bba2ccac939dcb036006b86e894093922a95fd70baba9424a3d0327a0f209fe10b39f3cec3f669d301a2834e58fd56f94d622dccf653f08e776c9f3e1b0e5b3cdef133834b93c41c70438d51a0b127262868d49ca91623c3d8b75c2cce0b771b9ac941bb96029e782224a3686a7c0dd164e162ede667e0e5817e7bde85ad3bf30a6a5bdc420f751679be74a02f84aa93b971c3f45a67d155f7ecb1d5284660918dbf102bc16f496fb62a1290e6b88ddaff55740583cba13076afd623276634e0c11663be50766980949095003ef5bc6f90a98bbad436b67928513e70115224f672ca2a24e27bb98bd5288c49ea23d47ef13c5ff28c43ce53ca16a6caeccc1f601226253c4a38a88a93828f6c800547cadbaa6d7ad26db618cccd38a671507cad5ba0065ce2edba81a059b95c36c5d04ab456fd6fd81ec3738ebe546d973c0886a5e7b83dd9c2f58f5d6c19519e67575b3732a486555f8d8c4ae004a62e8d07ab2c8ef74cdb96aa99d75aeb1c25985996f281d71106910a3c3da17de35e04dbe00e2b7b75ec2fed177a7f2d04fbf68bd0b8af682b30911867d4d1497ba060b662f4e97a8e7fd3613015cc34302377497cd08bcdc29f06dae240820d2ccddbf8c95c76a4ba5d3e1b37a62369ce3f79fb74ebd9bc82c3fa3edad4034b6715c2853fa7781c974b5a4e541e8b69bf4bd653fcce4e4340d9409fe9112e4d253a3b7e9d43f4426127b10f2d5d3fcd2193490f7d933e0cc53dae552f2d7c9d77b8f9b27c59105cfae43a0aab314a0820fbb5684bf20986e3be215688b42938d272c4c0edd17bcdc84a514d2483456d6cfb4f5c1218859ee55bfc77da36c9c75734932a12fd03df38232063ed92024f8ee7c21f314129feb10670bb4d6a0ad4fb3dc57a64cfe6509a0770650cdec0efd5e0b1fd29433cf871c9ddbe648319bd481357326ac1eb32b4bef4ad89ab6122e92dc786decac88624a4a3963ae771f8023b9a92e446114764c53d7efc07e3ea77a9daac5cabbe648a223e249db62102ef7b7b6d06df46b6ff913911b89848a47aecc0563fb06b6d77fe1daf4541cf619105ab68e0bcdf7a05af22b0551323bf33dec8167df2b7fac62dc9e286dd3462f488c82ad194f7fd5d3ca72fe9c0c37cdb6d75684326e5cb30319ab333fc70bb197320acda161d2e685e78ac2cb1417223f64742b12a316d590b18a4173b2a105a381baf6f383ec2e81d04860b5cc536475d7c5d05bd6a7db1a5d93930bacba8c1de63707bd24785e19fc1f15ba724660ac00d0f2ebbcd5528b8cbe4f3ca332e8611e937a310fc79d234be6c1cd09d6a5cb06ab36a9d667188144c81f86aaf0851763573b36cc21462ba4f3d6e95d38d1e9b943085661d234ef6d079bc9d84c7447c85baba88263451ba10559e1ce326fee5074b26b54872e690a9a1e589e1c444daa3224b292bf9ec4a604dc512760084084f27386c89a1190b8905f0d720508c0ed69272f396725805480188aa4602a26e833c16aa5079c0577a8203ec0b2b929ef3b410bb427c168b7fefd1be652f06efc61c7a295a5d07a9fd61bd5bfe67ac5f74e485a66c92950a1b460257084ca3a3489943ad450300967234b487fa3def4010f9b715196562ebb0846b7ac3eba47646af6285582b4402f64aa684dff7d9cf81fbe1aa88959f7906f06839389f2ad56efb5029afe1d5ceac99a3e698f49ff0da7db06d7c9e94a8773a13fab93def139667b4dc6b741bd2769da7786acecbe315f9006bb6b72abe5bdc587d8d5aa8f67aaefef68197fd2e7874d9b7da2c3a5618720c12e8fc31db3e334c47abcbf10c6181ec14af4f9e90e19a35360a793b1e9b336e49b3ed67568a860cd4c298f967ba323d315821959629e5b7aaac367e1ddb8a1c5d61500afa69331a4c90861852f533657b28b97a343bc531a11ff634b157a6d859a35f0d2a595375e11a32457575f1d73da033bf5eeda12337b9fdd46bce192d3aaaa240a8c65bf47704d6aa64a9531f9de14a96fc9fe380db35dd5ec52321c67fb4c18abcaf22fbe8f602ed201232251317e1a1b71e1e2c924a92d84685de348eec97fed954b7f6681ddf521b4ee03a1aeb2e446ee2a7f4dfa37b1c53831139fc624c14dcc4d144ccdf758fd9f344b4cdc1df70f6a24fa78cab136c912d1ebffa7053ccbc9b9445762236dca409820f738370117d5c369dfc50fd42277f14eeaf29110aedcd503008c42914d04e219a8b6c01e337d04724919b07157e2275ba6365a9dba5ebc8019bd1aa1b8668023f64cf47e1b49b4fbcfc10d560bb74405c90751504db8100d8a8a1a3ff84d98f1262fbbd6b962f492b9531a7411c08e7e56eb0f838075f754b6a395b6b58a8e4c47eb46bfaba2ac94800a396749d18ba0e6219f8d616ec71a1e60b3bcc24e19d4a20ddbc6a871e6d7efa50a362610598d892a5adecbcfe217534deee3620dfc88c7992ec2e710e083ef0a50c20621405f654804d1af4f24d22b8ca48f26303e6969127a74f0b276a5624c3b84410d4d5ee3c62605876e60a88df2bd6e8db8c7e486fdb452178563e7add6bc126b721b9ef8b12181989b87031573a4010d88e34f15a2344e4808b74c99ad68f0c2aca4e8d504397c03e1328c4b1ec43fd902d206c3cfb63d7541ac57fdbc70b0033f87514286101231fe7e79668c802e1c23d61540cdf13a5e675b736e221ddc29ab747d9c64f6213f51d3c1ded2e2b0efc4e45183d90468f61ec1720f7a0b87947e2c54125cebe6563ee4415d886bbe869d17d36371c942c11db1e13c1dd40ed24cabaf7ee80eae6c4db934e982d9619d753dcd679c5650cd95d21582e31b259043a0d03371cd294f4cc028042c75070c9b534a2d79f164ab9d773295795280d1584ca664b53b263fe2e23534d27b0d85742fae8061e03187795129dd272041c6eb9c10c3406da1f752f4ca697bdbddd74975cd4dbba5687fb30ac4fd5d2579494eac73053a63821a852cf41a80f6668006f7e1c4e30b48d638ebab470c558d42baeed1adc8fc71f73e95f3ca212a4b009b508e89898727f805685e4e7650a2961d62c117d1ee9017236a6bffa0c36ae11bc52d346c83399e43c42cdb9f443aa307109a97ee66ceb7a29eeb2f1a2bb3ee1492229116db07301b2aa4126aee7775daa2d0eab4d206fae11b3c6b565dcc4c7b4dd1cf2abec81150d0629803f6eb221be384b8772fe6d6c4fa98c928a9d0a02e9ff8bb7a2168dbebe140323d93bee8983c496bccf752c372b795a3493624cefb3cfeb4307bd39826cac1ea3f18912deef1b8c8db30bc016990a477bc0a925fb36453a9e21354b2d7e6e3d4ca4dd20f27a8db05429d44b7a485365191dc4ba977a815958faf6434813a9f4046054763dd55dbb7fae892b746e169ae046ae3361a9f75cf622b03f75b1633da864395bd1c3a594fab0b1fb37f088dd1f2776e2b795c78635c2026a8ce7ff40968a1960786049a217dd8872ac0c01f4bafcf2d3d751dd46a5e1bec00540a9ca7afca3ef37575d4a8b1291d05be94913092890a9b4bfff39edbff307e5654896e79228777c0f8ea46c55bfe19e522bf457ab4e6b0167d776dbcd0160598370a12c4a03e4edc82b245a7608797b03d4ed89dfc2a5bf07b9fcb251fb8608553f3b3774818717a9aabe6b2ded811515ba454b390a6065bbc59552f3bfe51d38f139792e1aae60093a7c5770b52a1730feb1049c14a7d5261d644f6b738e22ee72aafa422bd93f61e1ccac0a5ef4726c66f61bb539acb937bd63da82c700c0860be90ce5621ced22b52b63d041266fc258fbfa6641aef22e97804e5138ad2ce4405eaf76bb0acd7fc61b2d6de4aabc5c28a850fcf219cff77c97d3cb6bec0067c171b912d11d82c56cbad56c0032a9657d4cdd1eacaca53f40f5e3fe911127e1cd30781351f180e1413933cee2d46ca0eea31ee01fe4e99a567edd0b10565d47b87c8a48366143e889e52d0ff13c920aea092c2545fa9b7056204fec156549d3c0a997bc1cf4a01338483bf5c69d6958ae038f1c3e3b84baeb2c1f9e064c0750602c34c6c483c316391d975f94f21f6dfe74e92c33228b408a9e2b9abcda33c497abba9c48a63e5c8f1a8d0f4c24d36a44e1601e8a09e8a5c7179bd4c44b17e542dd99cace87aab60a5e53325d544c991b6fa5deffa49fd886332980deeca9229cb2f67f495a7b743153854ed81e1623b12dbd65512d08a5732fee2db3fb455cf6df5a1701a2b8674633c6792162dc86ac76e30da225b0167a7e704ad33ba694f9c902afbeed58eef609874767053f59414d4d3eccbbcdbc7eba997c71f9b1f5139bb020d5dae1db6e2dcfbb51b5371b08bdbc3312b05ee6d8c03c8b5a7d4f23da45f276394f222b1a0bdf4e2603243cdba60ee0530387c88bb457ca9932f2283a4d55bb1195e6d325ed93f714e21908b1baafa467f1cec7fa26e5c384ee6828e77978bd1abd014de549a5e5966f2b2f4ba000f9d77f1abfe3a6c337cdb852c1ec59f61b63d543f3062dd2616a163ed7ca60168b0347b5c5646a678dafb4c502c333a0a48f0341b47f5c5946e42e571db0bfa0682a449ca64e71b5661a842975182399245c6de241512c67ac918d7e0c5cb66565010e881b8333567ca584321ead1c383b099d8bf1c56dac08cb218cde4226ad420d6d6313f9c4884d6394722304fdaa76e61db8c0d54eb1151344c41ce1130272928eecb2f9f0f23c752622374eb1223a80efcf0b937dff7d813d7be0340226c0a7b163741d9aecafcb7ddae5a219323323f621c802be82399e06d2e1cc582e759ffa303c5103f8a44d7129d2853b02e506abda57ad2836d7ff16f95232149fbeb8b62e586d3536bb4ae042ecd9e25d1dee789353071f9c89d4361000c47b763556e8902f1f25cbd8ae71679e03ff27db0ec75eeee3fccafc7fcf22c377ac60d3c61a43cb53abf6162118f2efc86a5ce80e69a02bc1db80018beeef6d567941232e4412a958ed012bf7a832c1eaf68134ecabc4927ad666b3d0f21d4e8d52fa37e0a9751124efed8bf47544299138a6f69d89e295677f12606c79b72451c263fca3eec22bf0c47c641159a0bbfb3b2b03154af533e5c06a149e52adcfae31bfc55f30064a8903c8d3b828d275a937b1e4adffa0597da5e253b50bd71b33f057ffeff0b2a0829b3bf33350fbe67c7c79034f80d69e6a21be495a848d328f416f15966491b218eab390544e39d498258ad80ddae248634c845cbe6f1c1e93e7c2b02075411e075fe936bcc75f4a4e1a3687cb3dbbb61cb31ddfbbc87a1859b3a48fccdd8e5915c8bf4eebe8f7093cef6a7a91c8682915f9908c854c483e90c9643467292884d284134dbaddafdbc74d94a5f9713719d62b4f6b4236803d210181847ca27129fde264156895f4e1822ef78a3b215ef56d7e36d2b94c93f5e931a0d13a3a3030061ce62de595eecf47eae6bf698530145757700df18f66fd7261a12c119d6679663b3c0f99d1705aebe66dc862eb21ccb7360b93f54507149b577abf521113991e06f345e8282fdc18de673e1ca7b188ee34b14f37f86ddcf97fef0b913c33cf8e5d5d33707dbcdbe4b27cef056670252f186735cdd02f6ed6bfe5318a704f00e34ffc4fda9855bf37c51be6a7423e44dd8a98883c8fa82ca37c90d681fb7a0db915576b50e49aff545b99aa3aa6343b814ba0bf64e53b2a1edcae2231bf20d65e4bb4da6dc8382120ede652adfb7c30a46e0ee784cbde74563d83eb8d89a1573fa104fddca9d4833c49dc904bda905426c7dee3e48b596c8ee201bea57fedb1a0649457eaac3c5b5f4519af3adb66f10b861e711cd4034448890e15047c2f8902588268b5645051f3f3968ed8d630e050ccef0d01b61ffeade51e4e72d8fd46bba4c20009396e984c424d174934a67a1930665fbea04c809e7cda0a2cdfd3a14d6b99c3a8d8b3691825830456876f188ff871fc861e4c6a0ca377dc1f0cb0f929f7eb1f5da045d9a588a393312acacca5c5a3b15bb1b488b08fc40ad65ae2c1df187eccd8377525a81d80df57579ae52f775fb2efdd172a41c370300fcc594c2635dcf50e9eb9d34fa8b4bbfd13078422e3a7734a8ae6cc09e39d07c7ee19838f8da4cbafe4162c8f8dc44e284840bd0a5c80bfc657c22e37e0d9a96dda34a51ce616c9ccdc95955cf85d93860da902ab30f11aa333eacc25c47981d8636038761ed4d84fcbb0ca92dd2e07863b9505b451c3c49e36a172527578123049ff2dc2b4e258a3f698a12ca4705a6fd0ce6bc4f1767b4d9c2e57c9ed1388527964ac96ff5e4cf5ad6fdb6a853b43905df32af8bd788b520fd526cbb95195a1bc00d654cb080acdf67938517a6cdac741d86730358be16465b4e1301f47f6a444c4e8d2980b8bd98a8dcd6617cde0b287e2d1f59167b5c445146fa49728111b8a2729428cabd02facb8fbddbdb2769680f288648d6baac53e0d909335da3e2b4c13ebd41f32820c9f491e9124ca444a0532f60e2816e15a5810baa91f64454aa355f9d362c7d1a461561689d08b1350a216b6f1bda57aae0706b3710a1b8e52a7e3084e600b5ee3dc540bba0c16267d549304a7840659a32e40070715c9bb912792d4a7b84fa06e73b9ddbc2f06c4edc19d25f5a198c7e3fc6226842e6215da5d826fcf5949612889f78e9de39d4e64b86b7033b5717a21f8f2b81c799a3fc0bfe6f5837b252eefa360c91a6148296bd19d50a343d909c1edf5261e70c8dfb2c488940cf236941ad3fd01247e37902a4bbfdd1839f7c92c260a2c494022fac08629303c8e54108d78ae2c94289c7f998ba3b622b48931ee7c17c59f5499d282467a1b8050acc94a0b17b21836c80b69f519b9b077d18e33c027faad562fa09f2cc6120f8cf5ee18cf7db9d729ffbb9de58885713215b7aebb8c98d9fa009be0a9ef3ceccdb2b31968db555b26c5c94e382d06ebf6d356e8caa85def5813dd1596d823924c4fb63dba5bd094cb64f204d1e59d31287715f831a1f0be95d8749f2166ba0b0b6b64a37991be1fe1c1e922835f2da0c074ec9413561d52166576b1c4f1e18f078dc046d1c284964b80217b55c59a474740c3649116b33e927479736bff6005859c7c00598f22cb8eca38af802f4c86836e8330492ac7ef3707890a8ff856dc7786ed769bba75b18484b257b3b022eeb51aa720639f79e6e6bd3d3c9a61f7822abe562867b4693f0b2f61135aaeaa510b31112efeec48d2602c6d4f2ddeeb51bb03ab18c18d8e127a37e22881febca47742b9332d3f2251003b1a46c40eca111d02446466b669568c70971bd33254ca577777f126f86f8a3665f065b645ff261e78e0f532e83a81b99c5de3488de74ca82daa0e4e7404eff911ae955acbb800f9f91b774e472bc14aa92817b6d85877b1861a6ca92c03c83b6f1490068bad8eab1f58c9e91e1029683de2ca45c99966966031ee86d8c9995f0612480e2a6d5396e8ae361d6fd2e24557613a1191f5019d4c8078628013512ea3a59532efffa6cfe4970d28d8c7aa8c866c4275ff2b0b4ef1a7e56854d7ee4bc445713da9349d13e30a4a802cb9db2f10280fd9ea043b5b3480441e8ed2d907eae1259befba9d87a04ce42b0010c70af157b90e0bf72549852fd122edd6cf3475f76852b13b4bf887cf32e25ad34aed7fd5a6e97b307f9b4ff1c07b2b55beef5ef3dd96eeb2a57720c18209d911a55341cee67e6ff577f7acaba01c2c9690b15a3b8aaa5b9d734196467a8c074b2eeeb5ae931ddf3deb15b1a8d603e72125c2e68ad206f2c4252a659f8248ff882a8e54126ebc0c77a46101072272460e683d465279a3695be6b64c9eeb4a576d95fd520be42eab5c95cbace0dfd80e2d67bab9f683a1cc9c006c02f0f90a21a0f51218c628f5608fbf1abc79aa63452bde1002383033578f32980e3779a8edeb226f6d3f9b36d8f07bddd7479b60346a4b4fa883940e3aef8ad8d834dad4405960a4409a6255e8753d0c0ad0960ff3ef48ce93fbe6b165e86eab36fccb8b989f5b54e6ccaa19749ff065a0a732d15c41b9072bbc6f07e1fd5a3df2775874e46b61ed50714e8c403fbed6884ec06f52ab71d2c191fcc56ac0b17ba3c46d2dab3e11c79383bd8867ff14b5fbca73b9ae594b6a09fb73a2e8f15aee59150e8d6d3dad9659025d045bbd1b9ca257c67bb78abe8f7eb9c8b3bc32951c41f7390bacc8c7059a2a9b078ab50413605aec604e4666a6ace765b0e7ab558fe6232f2703d07811e3d0ac5bf9434e87876e99250ee9db6527a8ccb4a3ee3bde738563c9746f941cf2cd7efacdbd2593cafdbe5171864b2982b54dc5a32c86638c0e650a331625033b8dd65851965ae791880349d5cd52548f4422a317f96ed79e7ccf3bd671e6dc70365f521c65206386eb1f99570a544d11b3d36fea285f8a3770ca303a965a0c1d598ebe3696e647be734ccf760d3d47dec75e236d7ac08019b6622a7b9f08bc8f0937ab75e75a047a7386befbd56fc4b2f89c852dadce8df946cb3fafe4eed2678caadf1a913ae32b2c0b8a37984cb700343c5e24609f8c5ddeff5e653837a9332a41c8e21466a13d79224125d5f6a4fef79b5adae7f4ab7d351c55400545edd3c00637bd27164828925e9bb5d79f1f1e6eb3270ab799ae38772f779565d92c47503de695f7aad7ddacda6f6c71e755b3737231b64715bf07849d3466e4f92239f733436ce674389bd16900", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x6, 0x0, 0xc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r0, &(0x7f0000008bc0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r4)
llistxattr(&(0x7f0000000000)='./file0/file0/file0/file0/file0\x00', &(0x7f0000004280)=""/4096, 0x1000)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, r2, {0x7, 0x24, 0x0, 0x0, 0x0, 0x3, 0x1}}, 0x50)

29.516061466s ago: executing program 45 (id=1482):
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
umount2(&(0x7f0000000180)='./file0/file0/file0/file0/file0\x00', 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0xeea390, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000066c0)="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", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x6, 0x0, 0xc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r0, &(0x7f0000008bc0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r4)
llistxattr(&(0x7f0000000000)='./file0/file0/file0/file0/file0\x00', &(0x7f0000004280)=""/4096, 0x1000)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, r2, {0x7, 0x24, 0x0, 0x0, 0x0, 0x3, 0x1}}, 0x50)

7.065887755s ago: executing program 6 (id=1640):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e26}, 0x7f)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000180)=0x7ff, 0x4)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'wg0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f0000000180)="0b03feffe2ff020002004788aa96a13bb1000011000088ca1a00", 0x1001c, 0x0, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x4, 0x0, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x41100, 0xe9, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x1000, 0xd6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
accept4$unix(r0, &(0x7f0000000240), &(0x7f00000001c0)=0x6e, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r6, &(0x7f00000001c0), 0x0, 0x840, 0x0, 0x0)

6.162657471s ago: executing program 6 (id=1651):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000002c0)="05030500d3fc030000004788800509101128", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
getresuid(&(0x7f0000000280)=<r4=>0x0, &(0x7f00000002c0), &(0x7f0000000300))
setreuid(0x0, r4)
futex(&(0x7f0000002000)=0x1, 0xb, 0x0, 0x0, &(0x7f00000020c0)=0x2, 0x2)
r5 = socket$inet6(0xa, 0x800, 0x138)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}, 0x530}, 0x1c)
mount$binderfs(0x0, 0x0, 0x0, 0x210008, &(0x7f00000000c0)={[], [{@context={'context', 0x3d, 'unconfined_u'}}, {@context={'context', 0x3d, 'user_u'}}]})
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001602020000052406000005240000000d240f01000000000000000000090581034000"], 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000080)=@x86={0x5, 0x6, 0x2, 0x0, 0x40, 0x6, 0xfb, 0x9, 0x18, 0xd, 0x7, 0x4, 0x0, 0x1000, 0x1000, 0x2, 0xc, 0x7, 0x9, '\x00', 0x3, 0x8000000000000001})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

3.891415619s ago: executing program 6 (id=1663):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a80)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
syz_open_dev$evdev(&(0x7f0000000180), 0x2, 0x408000)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="68020000010501020000000000000000020000025402f5000100000009000000067ef3005519218073797a3100000000000000000000000000000000000000000000000000000000da55111a7843e7c0338db4285e7e3d99b452bacba6c9a08010ff87794b888ea07bf8dd79a6cef9a525f52091a00c91a9ec1318439574d8c21f98ad11cefb186d0e00018003000000ff0200000100540f01000000010000000700160e02000000ad0900000700fd0903000000080000002f05070003000000000000000800070001000000131200000101eed402000000030000002408050100000000000000000300b80801000000050000000000010001000000008000000d0003000300000004040000d500020001000000cab900000800060002000000f4070000e200090001000000b7c700002f0007000100000003000000ff0707000100000007000000000080000700000000000700000002000000020000000300000005000b00020000000100004005000f0000000000040000000500030003000000a00a000009000800000000000600000400000008000900020000000c000000536e0c0063287dd809000000ff7f030001000000040000000400050002000000090000000004010103000000050000000010090001000000000000000500050001000000080000000600d81501000000000000007154050002000000060000000400080000000000080000000600040003000000800a020008000000000000000500000004000300030000000800000013000100020000000100d1b6057a900b7a570000050000008100c97c030000000e000000bcab744561fdcd1c6f16099ed3e744b8ac1e5027b76acb18567eb2aeaa1d48dbe88b7f043241dc486dc4e9c575e2f78fdfcbba0fda5bf8b79b382ae8ef399cced15857aeda66d099d0246e42f702f734bb1e1617919bbc295f7085147d677e2d96a3355352beec000000000000000000706c26143802e413f8dc2b65dc24bd82e55288ac4f8b70139a7916e091202caf58f922b60b115dcd8f3eceb4bf41f21326a205c73fafff27088e5b77bcc6df587509f2280f3b8752aa515b451215c72a68fd09ea142aa04a75da14d0f01c003e92d06bca8ace46765dff63a1418237e98863bc283d9e429cab4f36d0baf3b527ab6932a2edd0b6bf89ca5cf744f6c39bac46a287262a378d57a8ed73ba84e003120e6ae7c3cd56b9f61ed20a3be24a638a689db312fbe4b626fdeac7f2c99d4df08efb936106105eee6c08cfefdab0d3c0f4"], 0x268}, 0x1, 0x0, 0x0, 0x200080c5}, 0x8000)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f0000000ac0)=@fragment={0x1d, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x268}, 0x8)
getsockopt$inet6_opts(r1, 0x29, 0x3b, 0xfffffffffffffffe, &(0x7f0000000840)=0x5e)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
r3 = syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902120001000000000904"], 0x0)
syz_usb_control_io(r3, 0x0, &(0x7f0000000980)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)={0x40, 0x13, 0x6, @multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r3, 0x0, &(0x7f0000001740)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)={0x40, 0x19, 0x2, "b3f0"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r3, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000140)=ANY=[@ANYBLOB="100001"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000480)={0x2c, 0x0, 0x0, &(0x7f0000000380)={0x0, 0xf, 0x11, {0x5, 0xf, 0x11, 0x1, [@ssp_cap={0xc, 0x10, 0xa, 0xa, 0x0, 0x7fffffe, 0xf, 0x2}]}}, 0x0, 0x0}, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80080, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x1)
ioctl$KDSIGACCEPT(r4, 0x400455cb, 0x6)
syz_usb_control_io$uac1(r3, &(0x7f0000000280)={0x14, &(0x7f00000001c0)={0x40, 0x7, 0x66, {0x66, 0xf, "6fa2203f2481efe292efaa5b1d824186351a886765e93f685b3bbf6e5645adde27d993f0a07277419bebc9533047435c5e9fb75799b398c4bd5169e9c92f90d118defc652bdb0b3973c085c936ec3d7af598afa96a4e0827868d8eaab7b73c3ba1e3cd75"}}, &(0x7f0000000240)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x447}}}, &(0x7f00000008c0)={0x44, &(0x7f00000002c0)={0x0, 0xe, 0x15, "67391bb051fcbf20c4ca58b50fcfaf5fdd7ffab6cd"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x80}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xc}, &(0x7f0000000380)={0x20, 0x81, 0x2, "7810"}, &(0x7f00000003c0)={0x20, 0x82, 0x2, '@\x00'}, &(0x7f0000000400)={0x20, 0x83, 0x1, '@'}, &(0x7f0000000440)={0x20, 0x84, 0x3, "062195"}, &(0x7f0000000480)={0x20, 0x85, 0x3, "b31203"}})
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220f00000003a8407a730b93bf0280b3"], 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r5, 0x400c4808, &(0x7f0000000040)={0x3, 0x100, 0xd86a})

3.069755515s ago: executing program 0 (id=1674):
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
read(r1, &(0x7f0000000080)=""/155, 0x9b)
write$binfmt_script(r0, &(0x7f00000036c0)={'#! ', './file0', [], 0xa, "f47eb8825b353a07ca7472a89cb8833d06b29aedce7b8677c71d8c1dd2b1e001ab1fd5572a3b706da0dd4a0600"}, 0x38)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x14cb84fb0918cdfe)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000000)=[@request_death, @clear_death], 0x0, 0x0, 0x0})
r3 = mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x2)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000540)={0x6c, 0x0, &(0x7f00000004c0)=[@free_buffer={0x40086303, r3}, @increfs={0x40046304, 0x2}, @request_death={0x400c630e, 0x1}, @exit_looper, @reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x78, 0x18, &(0x7f0000000380)={@ptr={0x70742a85, 0x0, &(0x7f0000000180)=""/70, 0x46, 0x2, 0x8}, @ptr={0x70742a85, 0x0, &(0x7f0000000200)=""/254, 0xfe, 0x0, 0xa}, @ptr={0x70742a85, 0x0, &(0x7f0000000300)=""/96, 0x60, 0x0, 0x14}}, &(0x7f0000000400)={0x0, 0x28, 0x50}}}], 0x2b, 0x0, &(0x7f0000000440)="7baf69d829ab644989dfd779f04f85ac91c8015ff885b60ed928064d13520f904f177a5301f4fd3c04d120"})
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x2880, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r4, 0x400448dd, &(0x7f0000000100))

1.94207568s ago: executing program 2 (id=1688):
sendmmsg(0xffffffffffffffff, &(0x7f0000003440)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="b5ce05a7f2a99e71ff611ea37b6d84ae4045233fa85b02009344507e99583728984603f21afd706c3bc836c91aba75a1fc719a14e53428492cae9b12b5d62e1cf67fa50e4de8acc2a9c1a878e3e6abaddad54b800476c64772a4c55a27e74810717c4a0f47be8fc2ce3c20e7411e6c2073ce35caa4d73023ed8d90073cc04d8b94aed31c84b8a6d52478c557b7370eaccbf6993a6dcc35cefda9c5b3d0aa833f3815cc27bd60f79d7daf6b7f43f3d3e8a2c5df3d0f6258a41fa573505f8c0b5af3844986ede73a5bbffe5f07fe0f64c9a8", 0xd1}], 0x1}}], 0x1, 0x2004c000)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'ip_vti0\x00', &(0x7f0000000140)={'sit0\x00', 0x0, 0x20, 0x20, 0x4, 0x5, {{0x5, 0x4, 0x2, 0x0, 0x14, 0x68, 0x0, 0xb, 0x2f, 0x0, @multicast1, @broadcast}}}})
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)=@x86={0x5, 0x1, 0x2, 0x0, 0x40, 0x6, 0xfb, 0x89, 0x18, 0xd, 0x7, 0x4, 0x0, 0x1000, 0x1000, 0x2, 0xc, 0x7, 0x19, '\x00', 0x3, 0x8000000000000001})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.94136441s ago: executing program 2 (id=1689):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x802, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f00000000c0))
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@delalloc}, {@nouid32}]}, 0xfe, 0x265, &(0x7f0000000840)="$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")
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r1, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r2, 0x65, 0x7, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r3, 0x80106720, &(0x7f0000000240)={0x3, &(0x7f0000000680)=[{0x6, 0xfe, &(0x7f00000003c0)="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"}, {0x1, 0xed, &(0x7f0000000b40)="1ef655a30fbfa514677ed2003bfd75b079582a0f4a7647cef996b86c100ac22aa2e89606293752e105ee2352760bad329a81b45dedea868ef8b4999bb4fb3e4ac429a2288d0f78a2c7780477235e715bcad2652e4c11cd1c2f0e1d643a4b8986d2945d50c7d5145307a4bf3b39ad82a53defab1574e3aeb77ffde7ee067292311fcbf02ca861a4d7fa505dd4a32867b9b1415fa3db9c299fff02bd2031d9364c5d3abe249e661a7c3d5209e0c96dfdc2155efe1dfae46b331667b8f3214dabbcb7574215cb66ae105d479518b2ef60dff998755c16289ebc2bad34621645a0afd7c10973eb19819852c0ff84b2", 0x1}, {0xb, 0xfc, &(0x7f00000004c0)="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", 0x1, 0x1}]})
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f00000000c0)=@filename='./bus\x00', 0xee01, &(0x7f0000000180)={0x192, 0x3, 0x1, 0x1})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000700)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f0000000ac0)=ANY=[], 0x24, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f0000000280)=0x11)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0xfff, 0x17d, 0x8, 0x7}, 'syz1\x00', 0x6})
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x11, 0x6, 0x8b}, 0x18)
fcntl$dupfd(r5, 0x0, r3)

1.87476866s ago: executing program 7 (id=1691):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team0\x00', <r4=>0x0})
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r7, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000001c0)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000240)={'ip6_vti0\x00', <r9=>0x0, 0x2f, 0x1, 0x7, 0x2, 0x5, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, 0x18, 0x700, 0xfffffff8, 0x6}})
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r11, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r12=>0x0})
sendmsg$nl_route(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090500000000fddbdf25021fc0cb", @ANYRES32=r12, @ANYBLOB="080002000a01010108000200ac141412080009000600000008000900000000000800f400ac1414aa08000900"], 0x48}}, 0x0)
r13 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r14=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r15=>0x0})
sendmsg$nl_route(r13, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@RTM_DELMDB={0x18, 0x55, 0x1, 0x70bd26, 0x25dfdbfe, {0x7, r15}}, 0x18}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r16=>0x0, 0x0, 0x0, 0x0, 0x2, 0x4, &(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x7c, &(0x7f00000003c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0xd8, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
sendmsg$TEAM_CMD_NOOP(r2, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000500)={&(0x7f0000000700)={0x2a8, r3, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r4}, {0xb4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r8}}}]}}, {{0x8, 0x1, r9}, {0x100, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r15}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}]}}, {{0x8, 0x1, r16}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}]}, 0x2a8}, 0x1, 0x0, 0x0, 0x20044030}, 0x4)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

1.82956921s ago: executing program 2 (id=1692):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.828329579s ago: executing program 2 (id=1693):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=ANY=[@ANYBLOB="12000000170000000400000006"], 0x48)
r1 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_msfilter(r1, 0x0, 0x23, &(0x7f0000004b00)=ANY=[@ANYBLOB="e0"], 0x10)
r2 = syz_open_dev$vcsa(&(0x7f0000000000), 0x2, 0x60440)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000040)={'vlan0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000014b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r8=>0x0})
sendto$packet(r7, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xc, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
write$cgroup_subtree(r2, &(0x7f00000000c0)={[{0x2b, 'cpuacct'}]}, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000), 0xf)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = inotify_init1(0x0)
inotify_add_watch(r10, &(0x7f0000000000)='.\x00', 0x10000a9)
ioctl$SIOCSIFHWADDR(r9, 0x89f1, &(0x7f0000000040)={'ip6_vti0\x00', @random='\a\x00\x00 \x00'})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000000), &(0x7f0000000100)=@udp}, 0x20)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f00000011c0)={r0, &(0x7f0000000040), 0x0}, 0x20)

1.786461339s ago: executing program 7 (id=1694):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000100850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

1.785419999s ago: executing program 7 (id=1695):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000100000000000000000000850000006d000000850000009e00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000013c0)=ANY=[])

1.734307549s ago: executing program 7 (id=1696):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x6c, 0x2, {{}, [@TCA_NETEM_LOSS={0x30}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xfffffeb2, 0x2}]}}}]}, 0x9c}}, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005240000000d240f0100000000000000000009ff"], 0x0)

1.728336769s ago: executing program 2 (id=1697):
r0 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x4, [0x0, 0x3, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x4000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x200000], [0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x800, 0xfffffffb, 0x0, 0xecb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x100000]}, 0x45c)

1.718173219s ago: executing program 2 (id=1698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x20080, 0x10c, 0x1}, 0x18)
readlinkat(r1, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=""/87, 0x57)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000540)={0x2c, &(0x7f0000000200)={0x0, 0x0, 0x5, {0x5, 0x0, "a8c6df"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000000100)={0x24, 0x0, &(0x7f0000000800)={0x0, 0x3, 0x2, @string={0x1}}, 0x0, 0x0}, 0x0)

1.037756675s ago: executing program 6 (id=1701):
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

1.029074205s ago: executing program 6 (id=1702):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x802, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f00000000c0))
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@delalloc}, {@nouid32}]}, 0xfe, 0x265, &(0x7f0000000840)="$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")
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r1, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r2, 0x65, 0x7, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r3, 0x80106720, &(0x7f0000000240)={0x3, &(0x7f0000000680)=[{0x6, 0xfe, &(0x7f00000003c0)="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"}, {0x1, 0xed, &(0x7f0000000b40)="1ef655a30fbfa514677ed2003bfd75b079582a0f4a7647cef996b86c100ac22aa2e89606293752e105ee2352760bad329a81b45dedea868ef8b4999bb4fb3e4ac429a2288d0f78a2c7780477235e715bcad2652e4c11cd1c2f0e1d643a4b8986d2945d50c7d5145307a4bf3b39ad82a53defab1574e3aeb77ffde7ee067292311fcbf02ca861a4d7fa505dd4a32867b9b1415fa3db9c299fff02bd2031d9364c5d3abe249e661a7c3d5209e0c96dfdc2155efe1dfae46b331667b8f3214dabbcb7574215cb66ae105d479518b2ef60dff998755c16289ebc2bad34621645a0afd7c10973eb19819852c0ff84b2", 0x1}, {0xb, 0xfc, &(0x7f00000004c0)="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", 0x1, 0x1}]})
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f00000000c0)=@filename='./bus\x00', 0xee01, &(0x7f0000000180)={0x192, 0x3, 0x1, 0x1})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000700)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f0000000ac0)=ANY=[], 0x24, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f0000000280)=0x11)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0xfff, 0x17d, 0x8, 0x7}, 'syz1\x00', 0x6})
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x11, 0x6, 0x8b}, 0x18)
fcntl$dupfd(r5, 0x0, r3)

974.787235ms ago: executing program 0 (id=1703):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

957.697745ms ago: executing program 0 (id=1704):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x2a03, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
futex(0x0, 0x5, 0x0, 0x0, &(0x7f0000004000), 0xb9004000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="20000000110001010000", @ANYRES32], 0x20}}, 0x0)
lseek(r1, 0xfffffffffffffffe, 0x2)
r3 = socket(0x1, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x8, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000140)='asymmetric\x00', 0x0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/../file0\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="300000001a0001000078484ead00000081000000000000000000000014000100fc0200000000000000020000000000aa"], 0x30}}, 0x0)

901.486695ms ago: executing program 6 (id=1705):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
accept$inet(0xffffffffffffffff, &(0x7f0000000800)={0x2, 0x0, @remote}, &(0x7f0000000840)=0x10)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000880)=ANY=[], 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000080)="441f080100000000ff0000005b1957034b596f21d3816491ee54bec6fe", 0x1d)
syz_usb_control_io(r1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r5}, &(0x7f0000000180), &(0x7f0000000200)=r4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000000), 0x208e24b)

726.503774ms ago: executing program 9 (id=1706):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000100850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

716.004114ms ago: executing program 9 (id=1707):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x802, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f00000000c0))
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@delalloc}, {@nouid32}]}, 0xfe, 0x265, &(0x7f0000000840)="$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")
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r1, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r2, 0x65, 0x7, 0x0, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r3, 0x80106720, &(0x7f0000000240)={0x4, &(0x7f0000000680)=[{0x6, 0xfe, &(0x7f00000003c0)="c107dbf38a98e83b6df7d927738be5be2329de18043b695aa395c436031a4349ae8a03697376065f5c62db5366b21ce252a8db6973d5a6934393438b2e0bc35449c1a6e338e99556879f89daf3ff4b2497cf8808fecdf2cf53f9fabf562bbe8d966a6514374192821b57f87d49631279919cdeaaf005c68adb1266ed7739269a6a29e22844224b52bcef0c8f6bedbd78b41a9d7188769831a1d205cb55d8cfdaa86f566c5e9919f4f8e03c3f0756273993fea1ddef7fb942b1520938081e92ba2e2f616af582e5d72d1e99e1520a3883da27291a2a977ae1408545f9d22108f1cc2a68b505b845208756ba18601e69d5a60e781f616857ecafc56d222883"}, {0x1, 0xed, &(0x7f0000000b40)="1ef655a30fbfa514677ed2003bfd75b079582a0f4a7647cef996b86c100ac22aa2e89606293752e105ee2352760bad329a81b45dedea868ef8b4999bb4fb3e4ac429a2288d0f78a2c7780477235e715bcad2652e4c11cd1c2f0e1d643a4b8986d2945d50c7d5145307a4bf3b39ad82a53defab1574e3aeb77ffde7ee067292311fcbf02ca861a4d7fa505dd4a32867b9b1415fa3db9c299fff02bd2031d9364c5d3abe249e661a7c3d5209e0c96dfdc2155efe1dfae46b331667b8f3214dabbcb7574215cb66ae105d479518b2ef60dff998755c16289ebc2bad34621645a0afd7c10973eb19819852c0ff84b2", 0x1}, {0x6ef, 0x5b, &(0x7f0000000300)="fa278adda2ce98407b36dde6830869e66daa894fb7ba3f573356738939e35c471de8a6fc1354458403958ee13a4413b4fabfc846e344991898a045c5a079c211507ddcede5008c426388f4a90502550ae22ec3ebaa038099118b02", 0x1, 0x1}, {0xb, 0xfb, &(0x7f00000004c0)="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", 0x1, 0x1}]})
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f00000000c0)=@filename='./bus\x00', 0xee01, &(0x7f0000000180)={0x192, 0x3, 0x1, 0x1})
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000700)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f0000000ac0)=ANY=[], 0x24, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f0000000280)=0x11)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0xfff, 0x17d, 0x8, 0x7}, 'syz1\x00', 0x6})
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x11, 0x6, 0x8b}, 0x18)
fcntl$dupfd(r5, 0x0, r3)

618.361013ms ago: executing program 9 (id=1708):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000100000000000000000000850000006d000000850000009e00000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, 0x0)

580.005544ms ago: executing program 9 (id=1709):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=ANY=[@ANYBLOB="12000000170000000400000006"], 0x48)
r1 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_msfilter(r1, 0x0, 0x23, &(0x7f0000004b00)=ANY=[@ANYBLOB="e0"], 0x10)
r2 = syz_open_dev$vcsa(&(0x7f0000000000), 0x2, 0x60440)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000040)={'vlan0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000014b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r8=>0x0})
sendto$packet(r7, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xc, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
write$cgroup_subtree(r2, &(0x7f00000000c0)={[{0x2b, 'cpuacct'}]}, 0x9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000), 0xf)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = inotify_init1(0x0)
inotify_add_watch(r10, &(0x7f0000000000)='.\x00', 0x10000a9)
ioctl$SIOCSIFHWADDR(r9, 0x89f1, &(0x7f0000000040)={'ip6_vti0\x00', @random='\a\x00\x00 \x00'})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000000), &(0x7f0000000100)=@udp}, 0x20)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f00000011c0)={r0, &(0x7f0000000040), 0x0}, 0x20)

518.976803ms ago: executing program 9 (id=1710):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000100850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

509.012973ms ago: executing program 9 (id=1711):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
uname(&(0x7f0000000100))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x81, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf26, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3000000, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

454.211543ms ago: executing program 7 (id=1712):
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

444.188343ms ago: executing program 7 (id=1713):
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
read(r1, &(0x7f0000000080)=""/155, 0x9b)
write$binfmt_script(r0, &(0x7f00000036c0)={'#! ', './file0', [], 0xa, "f47eb8825b353a07ca7472a89cb8833d06b29aedce7b8677c71d8c1dd2b1e001ab1fd5572a3b706da0dd4a0600"}, 0x38)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x14cb84fb0918cdfe)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000000)=[@request_death, @clear_death], 0x0, 0x0, 0x0})
r3 = mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x2)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000540)={0x6c, 0x0, &(0x7f00000004c0)=[@free_buffer={0x40086303, r3}, @increfs={0x40046304, 0x2}, @request_death={0x400c630e, 0x1}, @exit_looper, @reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x78, 0x18, &(0x7f0000000380)={@ptr={0x70742a85, 0x0, &(0x7f0000000180)=""/70, 0x46, 0x2, 0x8}, @ptr={0x70742a85, 0x0, &(0x7f0000000200)=""/254, 0xfe, 0x0, 0xa}, @ptr={0x70742a85, 0x0, &(0x7f0000000300)=""/96, 0x60, 0x0, 0x14}}, &(0x7f0000000400)={0x0, 0x28, 0x50}}}], 0x2b, 0x0, &(0x7f0000000440)="7baf69d829ab644989dfd779f04f85ac91c8015ff885b60ed928064d13520f904f177a5301f4fd3c04d120"})
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x2880, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r5, 0x400448dd, &(0x7f0000000100))
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
r7 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0xfffff034}]}, 0x10)
syz_usb_ep_write$ath9k_ep2(r7, 0x83, 0xf, &(0x7f0000000100)=@generic={0x5, 0x0, 0x7, "4d6cdd3d", "271d119a35d0ff"})
syz_usb_ep_write$ath9k_ep2(r7, 0x83, 0x8, &(0x7f0000000080)=ANY=[])
r8 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_GET_KEY(r8, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x60, r9, 0x10, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "e533f84eb5f1200df290dba24a"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "64cd6bb10ed243c96c6021732c"}, @NL80211_ATTR_KEY_SEQ={0x13, 0xa, "8c662f8c5c4e2dd12eafd27d8550ce"}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
syz_usb_connect$printer(0x3, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201100100"], 0x0)
syz_usb_ep_write$ath9k_ep2(r7, 0x83, 0x8, &(0x7f00000000c0)=ANY=[])

74.217851ms ago: executing program 0 (id=1714):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x800)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000900)={0x0, 0x0, 0x1, r3})
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x11400, 0xd000, 0x1, r3, 0x4})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r4}, 0x0, &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r5}, 0x10)
setpriority(0x1, 0x0, 0x800)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
read$msr(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r6, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x2b, &(0x7f00000000c0)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9, 0x0, @opaque="c6"}}}}}, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r7, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
epoll_create1(0x0)

8.91416ms ago: executing program 0 (id=1715):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 0 (id=1716):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x6c, 0x2, {{}, [@TCA_NETEM_LOSS={0x30}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xfffffeb2, 0x2}]}}}]}, 0x9c}}, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005240000000d240f0100000000000000000009ffff032000000000090582"], 0x0)

kernel console output (not intermixed with test programs):

][ T4793] RSP: 002b:00007f71dc5bce18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  270.091430][ T4793] RAX: ffffffffffffffda RBX: 000000000000048f RCX: 00007f71dc785d29
[  270.099247][ T4793] RDX: 00007f71dc5bcef0 RSI: 0000000000000000 RDI: 00007f71dc802409
[  270.107052][ T4793] RBP: 0000000020000940 R08: 00007f71dc5bcbb7 R09: 00007f71dc5bce40
[  270.114866][ T4793] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000000
[  270.122676][ T4793] R13: 00007f71dc5bcef0 R14: 00007f71dc5bceb0 R15: 0000000020000100
[  270.130492][ T4793]  </TASK>
[  270.195584][ T4790] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.9.1374: corrupted xattr block 95
[  270.209045][ T4790] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.1374: bg 0: block 7: invalid block bitmap
[  270.221910][ T4790] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  270.230975][ T4790] EXT4-fs error (device loop9): ext4_xattr_delete_inode:2925: inode #11: comm syz.9.1374: corrupted xattr block 95
[  270.244216][ T4790] EXT4-fs warning (device loop9): ext4_evict_inode:299: xattr delete (err -117)
[  270.253142][ T4790] EXT4-fs (loop9): 1 orphan inode deleted
[  270.258724][ T4790] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  270.338310][   T60] usb 3-1: device descriptor read/64, error -71
[  270.412819][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  270.458381][   T60] usb usb3-port1: attempt power cycle
[  270.508301][ T3074] usb 8-1: Using ep0 maxpacket: 8
[  270.513322][ T4801] loop9: detected capacity change from 0 to 512
[  270.514305][ T3074] usb 8-1: config index 0 descriptor too short (expected 30482, got 18)
[  270.527920][ T3074] usb 8-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  270.536432][ T3074] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 101
[  270.546780][ T3074] usb 8-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  270.555728][ T3074] usb 8-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  270.563885][ T3074] usb 8-1: Product: syz
[  270.567838][ T3074] usb 8-1: Manufacturer: syz
[  270.577471][ T4801] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  270.577564][ T3074] usb 8-1: config 0 descriptor??
[  270.591401][ T4801] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.593423][ T3074] ftdi_sio 8-1:0.0: FTDI USB Serial Device converter detected
[  270.610573][ T3074] usb 8-1: Detected FT2232C/D
[  270.689655][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  270.800413][ T3074] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  270.826302][ T3074] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  270.870780][ T3074] usb 8-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  270.993167][ T3074] usb 8-1: USB disconnect, device number 17
[  271.079785][ T3074] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  271.134202][ T3074] ftdi_sio 8-1:0.0: device disconnected
[  271.510809][ T4812] loop2: detected capacity change from 0 to 1024
[  271.601028][ T4812] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  271.632612][ T4825] loop6: detected capacity change from 0 to 1024
[  271.644704][ T4825] EXT4-fs (loop6): orphan cleanup on readonly fs
[  271.645969][ T4812] EXT4-fs (loop2): orphan cleanup on readonly fs
[  271.652269][ T4825] EXT4-fs (loop6): 1 truncate cleaned up
[  271.662719][ T4825] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  271.683666][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  271.723889][ T4812] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  271.778490][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  271.812109][ T4812] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1382: mark_inode_dirty error
[  271.847700][ T4834] FAULT_INJECTION: forcing a failure.
[  271.847700][ T4834] name failslab, interval 1, probability 0, space 0, times 0
[  271.885925][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  271.921917][ T4834] CPU: 0 PID: 4834 Comm: syz.9.1386 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  271.928667][ T4812] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.1382: Invalid block bitmap block 3 in block_group 0
[  271.931559][ T4834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  271.931572][ T4834] Call Trace:
[  271.957788][ T4834]  <TASK>
[  271.957798][ T4834]  dump_stack_lvl+0x151/0x1b7
[  271.957823][ T4834]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  271.957842][ T4834]  ? __stack_depot_save+0x36/0x480
[  271.957862][ T4834]  dump_stack+0x15/0x18
[  271.957879][ T4834]  should_fail_ex+0x3d0/0x520
[  271.957903][ T4834]  __should_failslab+0xaf/0xf0
[  271.957922][ T4834]  should_failslab+0x9/0x20
[  271.957942][ T4834]  kmem_cache_alloc_node+0x42/0x330
[  271.957959][ T4834]  ? dup_task_struct+0x5a/0x7d0
[  271.957986][ T4834]  dup_task_struct+0x5a/0x7d0
[  271.958004][ T4834]  ? __kasan_check_write+0x14/0x20
[  271.958019][ T4834]  copy_process+0x5c3/0x3530
[  271.958038][ T4834]  ? __kasan_check_write+0x14/0x20
[  271.958053][ T4834]  ? proc_fail_nth_write+0x20b/0x290
[  271.958074][ T4834]  ? selinux_file_permission+0x2bb/0x560
[  271.958090][ T4834]  ? proc_fail_nth_read+0x210/0x210
[  271.958109][ T4834]  ? fsnotify_perm+0x6a/0x5b0
[  271.958123][ T4834]  ? idle_dummy+0x10/0x10
[  271.958141][ T4834]  ? vfs_write+0x952/0xed0
[  271.958161][ T4834]  ? __kasan_slab_free+0x11/0x20
[  271.958184][ T4834]  kernel_clone+0x229/0x890
[  271.958205][ T4834]  ? __kasan_check_write+0x14/0x20
[  271.958220][ T4834]  ? mutex_unlock+0xb2/0x260
[  271.958243][ T4834]  ? create_io_thread+0x180/0x180
[  271.958263][ T4834]  __x64_sys_clone+0x231/0x280
[  271.958282][ T4834]  ? __do_sys_vfork+0x110/0x110
[  271.958302][ T4834]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  271.958320][ T4834]  ? exit_to_user_mode_prepare+0x39/0xa0
[  271.958339][ T4834]  x64_sys_call+0x1b0/0x9a0
[  271.958354][ T4834]  do_syscall_64+0x3b/0xb0
[  271.958370][ T4834]  ? clear_bhb_loop+0x55/0xb0
[  271.958389][ T4834]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  271.958406][ T4834] RIP: 0033:0x7ff93ed85d29
[  271.958420][ T4834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.958432][ T4834] RSP: 002b:00007ff93fb56fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  271.958450][ T4834] RAX: ffffffffffffffda RBX: 00007ff93ef76160 RCX: 00007ff93ed85d29
[  271.958462][ T4834] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000640c7000
[  271.958471][ T4834] RBP: 00007ff93fb57090 R08: 0000000000000000 R09: 0000000000000000
[  271.958480][ T4834] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  271.958489][ T4834] R13: 0000000000000000 R14: 00007ff93ef76160 R15: 00007ffe456a83e8
[  271.958502][ T4834]  </TASK>
[  272.026000][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.497134][ T4812] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  273.508176][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.510906][ T4865] loop6: detected capacity change from 0 to 512
[  273.527103][ T4812] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1382: mark_inode_dirty error
[  273.553761][ T4865] EXT4-fs: Ignoring removed i_version option
[  273.558391][   T60] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  273.569280][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.575618][ T4812] Quota error (device loop2): write_blk: dquota write failed
[  273.576057][ T4865] EXT4-fs: Ignoring removed mblk_io_submit option
[  273.609304][ T4812] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm syz.2.1382: lblock 6 mapped to illegal pblock 1 (length 1)
[  273.619806][ T4865] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  273.650084][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.668318][ T4812] Quota error (device loop2): write_blk: dquota write failed
[  273.679399][ T4865] EXT4-fs (loop6): 1 truncate cleaned up
[  273.684859][ T4865] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  273.718386][ T4812] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  273.758302][   T60] usb 10-1: Using ep0 maxpacket: 16
[  273.763495][ T4812] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.1382: lblock 0 mapped to illegal pblock 48 (length 1)
[  273.787964][   T60] usb 10-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  273.805079][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.808768][   T60] usb 10-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  273.822353][   T60] usb 10-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  273.832051][   T60] usb 10-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  273.835255][ T4812] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  273.885994][   T60] usb 10-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  273.895191][   T60] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.904258][ T4812] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1382: Failed to acquire dquot type 0
[  273.923902][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  273.936340][ T4812] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 49: comm syz.2.1382: lblock 1 mapped to illegal pblock 49 (length 1)
[  274.016135][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  274.247123][ T4812] Quota error (device loop2): do_insert_tree: Can't read tree quota block 1
[  274.277656][ T4812] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  274.287499][ T4812] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1382: Failed to acquire dquot type 0
[  274.308494][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  274.318438][ T4812] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  274.319984][   T60] hid (null): report_id 0 is invalid
[  274.338449][   T60] hid-generic 0003:245E:0001.001F: unknown main item tag 0x0
[  274.349164][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  274.362029][ T4812] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.1382: mark_inode_dirty error
[  274.409526][   T60] hid-generic 0003:245E:0001.001F: ignoring exceeding usage max
[  274.410107][ T4812] EXT4-fs (loop2): Remounting filesystem read-only
[  274.418543][   T60] hid-generic 0003:245E:0001.001F: report_id 0 is invalid
[  274.424769][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  274.430418][   T60] hid-generic 0003:245E:0001.001F: item 0 0 1 8 parsing failed
[  274.443523][   T60] hid-generic: probe of 0003:245E:0001.001F failed with error -22
[  274.454431][ T4812] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  274.470157][ T4812] EXT4-fs (loop2): 1 orphan inode deleted
[  274.475892][ T4812] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  274.527616][  T342] usb 10-1: USB disconnect, device number 10
[  274.598328][   T60] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  274.775369][ T4885] loop6: detected capacity change from 0 to 256
[  274.788212][ T4885] exFAT-fs (loop6): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  274.788407][   T60] usb 9-1: Using ep0 maxpacket: 16
[  274.816116][   T28] audit: type=1400 audit(1734779604.444:1166): avc:  denied  { create } for  pid=4886 comm="syz.7.1403" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  274.823248][   T60] usb 9-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  274.838186][ T4887] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1403'.
[  274.863503][   T28] audit: type=1400 audit(1734779604.494:1167): avc:  denied  { write } for  pid=4886 comm="syz.7.1403" name="file0" dev="tmpfs" ino=776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  274.878340][   T60] usb 9-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.886633][ T4887] capability: warning: `syz.7.1403' uses 32-bit capabilities (legacy support in use)
[  274.905918][   T28] audit: type=1400 audit(1734779604.514:1168): avc:  denied  { open } for  pid=4886 comm="syz.7.1403" path="/140/file0" dev="tmpfs" ino=776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  274.918274][   T60] usb 9-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  274.936556][   T28] audit: type=1400 audit(1734779604.564:1169): avc:  denied  { ioctl } for  pid=4886 comm="syz.7.1403" path="/140/file0" dev="tmpfs" ino=776 ioctlcmd=0x1261 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  274.958278][   T60] usb 9-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  274.988051][ T4891] FAULT_INJECTION: forcing a failure.
[  274.988051][ T4891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.989810][   T60] usb 9-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  275.001227][ T4891] CPU: 0 PID: 4891 Comm: syz.7.1405 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  275.019382][ T4891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  275.029278][ T4891] Call Trace:
[  275.030215][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.032397][ T4891]  <TASK>
[  275.032406][ T4891]  dump_stack_lvl+0x151/0x1b7
[  275.047505][ T4891]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  275.052800][ T4891]  ? kstrtouint+0xf6/0x180
[  275.057055][ T4891]  ? _kstrtol+0x150/0x150
[  275.061219][ T4891]  dump_stack+0x15/0x18
[  275.065209][ T4891]  should_fail_ex+0x3d0/0x520
[  275.069725][ T4891]  should_fail+0xb/0x10
[  275.073714][ T4891]  should_fail_usercopy+0x1a/0x20
[  275.078582][ T4891]  _copy_from_user+0x1e/0xc0
[  275.083004][ T4891]  copy_msghdr_from_user+0xaa/0x670
[  275.088037][ T4891]  ? sendmsg_copy_msghdr+0x70/0x70
[  275.092988][ T4891]  __sys_sendmsg+0x236/0x390
[  275.097463][ T4891]  ? ____sys_sendmsg+0x9a0/0x9a0
[  275.102189][ T4891]  ? __kasan_check_write+0x14/0x20
[  275.107133][ T4891]  ? mutex_unlock+0xb2/0x260
[  275.111569][ T4891]  ? __kasan_check_write+0x14/0x20
[  275.116513][ T4891]  ? __ia32_sys_read+0x90/0x90
[  275.121106][ T4891]  ? debug_smp_processor_id+0x17/0x20
[  275.126316][ T4891]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  275.132220][ T4891]  __x64_sys_sendmsg+0x7f/0x90
[  275.136816][ T4891]  x64_sys_call+0x16a/0x9a0
[  275.141155][ T4891]  do_syscall_64+0x3b/0xb0
[  275.145408][ T4891]  ? clear_bhb_loop+0x55/0xb0
[  275.149922][ T4891]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  275.155650][ T4891] RIP: 0033:0x7f6aded85d29
[  275.159905][ T4891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.179347][ T4891] RSP: 002b:00007f6adfbb0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.187589][ T4891] RAX: ffffffffffffffda RBX: 00007f6adef75fa0 RCX: 00007f6aded85d29
[  275.195404][ T4891] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  275.203213][ T4891] RBP: 00007f6adfbb0090 R08: 0000000000000000 R09: 0000000000000000
[  275.211031][ T4891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.218839][ T4891] R13: 0000000000000000 R14: 00007f6adef75fa0 R15: 00007ffd0ec65698
[  275.226652][ T4891]  </TASK>
[  275.231053][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  275.400934][ T4900] FAULT_INJECTION: forcing a failure.
[  275.400934][ T4900] name failslab, interval 1, probability 0, space 0, times 0
[  275.413441][ T4900] CPU: 1 PID: 4900 Comm: syz.7.1408 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  275.423013][ T4900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  275.432917][ T4900] Call Trace:
[  275.436032][ T4900]  <TASK>
[  275.438816][ T4900]  dump_stack_lvl+0x151/0x1b7
[  275.443325][ T4900]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  275.448622][ T4900]  ? dup_task_struct+0x29/0x7d0
[  275.453306][ T4900]  dump_stack+0x15/0x18
[  275.457296][ T4900]  should_fail_ex+0x3d0/0x520
[  275.461821][ T4900]  __should_failslab+0xaf/0xf0
[  275.466412][ T4900]  should_failslab+0x9/0x20
[  275.470748][ T4900]  kmem_cache_alloc_node+0x42/0x330
[  275.475779][ T4900]  ? dup_task_struct+0x5a/0x7d0
[  275.480472][ T4900]  dup_task_struct+0x5a/0x7d0
[  275.484981][ T4900]  ? __kasan_check_write+0x14/0x20
[  275.489930][ T4900]  copy_process+0x5c3/0x3530
[  275.494359][ T4900]  ? raw_irqentry_exit_cond_resched+0x2a/0x30
[  275.500258][ T4900]  ? irqentry_exit+0x30/0x40
[  275.504688][ T4900]  ? sysvec_reschedule_ipi+0x8f/0x170
[  275.509891][ T4900]  ? idle_dummy+0x10/0x10
[  275.514069][ T4900]  kernel_clone+0x229/0x890
[  275.518401][ T4900]  ? _raw_spin_unlock+0x4c/0x70
[  275.523087][ T4900]  ? finish_task_switch+0x167/0x7b0
[  275.528120][ T4900]  ? requeue_task_rt+0x410/0x410
[  275.532896][ T4900]  ? create_io_thread+0x180/0x180
[  275.537761][ T4900]  __x64_sys_clone+0x231/0x280
[  275.542360][ T4900]  ? __do_sys_vfork+0x110/0x110
[  275.547042][ T4900]  ? switch_fpu_return+0xe/0x10
[  275.551749][ T4900]  ? exit_to_user_mode_prepare+0x7e/0xa0
[  275.557232][ T4900]  x64_sys_call+0x1b0/0x9a0
[  275.561541][ T4900]  do_syscall_64+0x3b/0xb0
[  275.565786][ T4900]  ? clear_bhb_loop+0x55/0xb0
[  275.570306][ T4900]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  275.576029][ T4900] RIP: 0033:0x7f6aded85d29
[  275.580284][ T4900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.599729][ T4900] RSP: 002b:00007f6adfb6dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  275.607971][ T4900] RAX: ffffffffffffffda RBX: 00007f6adef76160 RCX: 00007f6aded85d29
[  275.615782][ T4900] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000640c7000
[  275.623594][ T4900] RBP: 00007f6adfb6e090 R08: 0000000000000000 R09: 0000000000000000
[  275.631405][ T4900] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  275.639216][ T4900] R13: 0000000000000000 R14: 00007f6adef76160 R15: 00007ffd0ec65698
[  275.647032][ T4900]  </TASK>
[  276.320995][   T60] hid (null): report_id 0 is invalid
[  276.327069][   T60] hid-generic 0003:245E:0001.0020: unknown main item tag 0x0
[  276.360723][ T4908] loop7: detected capacity change from 0 to 512
[  276.403555][ T4908] EXT4-fs: Ignoring removed i_version option
[  276.409463][   T60] hid-generic 0003:245E:0001.0020: ignoring exceeding usage max
[  276.432828][ T4908] EXT4-fs: Ignoring removed mblk_io_submit option
[  276.440556][   T60] hid-generic 0003:245E:0001.0020: report_id 0 is invalid
[  276.459705][ T4908] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  276.481441][   T60] hid-generic 0003:245E:0001.0020: item 0 0 1 8 parsing failed
[  276.509187][   T60] hid-generic: probe of 0003:245E:0001.0020 failed with error -22
[  276.517970][ T4908] EXT4-fs (loop7): 1 truncate cleaned up
[  276.527057][ T4908] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  276.552996][   T60] usb 9-1: USB disconnect, device number 15
[  277.060583][ T4923] loop2: detected capacity change from 0 to 2048
[  277.079563][ T4923] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  277.094170][ T4923] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  277.109200][ T4923] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  277.121604][ T4923] EXT4-fs (loop2): This should not happen!! Data will be lost
[  277.121604][ T4923] 
[  277.131242][ T4923] EXT4-fs (loop2): Total free blocks count 0
[  277.137150][ T4923] EXT4-fs (loop2): Free/Dirty block details
[  277.143027][ T4923] EXT4-fs (loop2): free_blocks=2415919104
[  277.149162][ T4923] EXT4-fs (loop2): dirty_blocks=80
[  277.154096][ T4923] EXT4-fs (loop2): Block reservation details
[  277.160823][ T4923] EXT4-fs (loop2): i_reserved_data_blocks=5
[  277.174445][ T2992] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  277.254848][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  277.311258][ T4936] FAULT_INJECTION: forcing a failure.
[  277.311258][ T4936] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  277.317313][ T4937] loop2: detected capacity change from 0 to 1024
[  277.369676][ T4937] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  277.377949][ T4937] EXT4-fs (loop2): orphan cleanup on readonly fs
[  277.384991][ T4937] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  277.395636][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.402170][ T4937] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1416: mark_inode_dirty error
[  277.418171][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.424743][ T4937] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.1416: Invalid block bitmap block 3 in block_group 0
[  277.427297][ T4936] CPU: 1 PID: 4936 Comm: syz.6.1415 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  277.438469][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.447583][ T4936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  277.454268][ T4937] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  277.463789][ T4936] Call Trace:
[  277.463802][ T4936]  <TASK>
[  277.463808][ T4936]  dump_stack_lvl+0x151/0x1b7
[  277.463831][ T4936]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  277.473633][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.476117][ T4936]  ? vfs_write+0x952/0xed0
[  277.479095][ T4937] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1416: mark_inode_dirty error
[  277.483403][ T4936]  ? __kasan_slab_free+0x11/0x20
[  277.483429][ T4936]  dump_stack+0x15/0x18
[  277.489095][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.495036][ T4936]  should_fail_ex+0x3d0/0x520
[  277.499526][ T4937] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm syz.2.1416: lblock 6 mapped to illegal pblock 1 (length 1)
[  277.510311][ T4936]  should_fail+0xb/0x10
[  277.510337][ T4936]  should_fail_usercopy+0x1a/0x20
[  277.515494][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.519075][ T4936]  _copy_from_user+0x1e/0xc0
[  277.519100][ T4936]  __sys_bpf+0x23b/0x7f0
[  277.525674][ T4937] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.1416: lblock 0 mapped to illegal pblock 48 (length 1)
[  277.529924][ T4936]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[  277.529953][ T4936]  ? __ia32_sys_read+0x90/0x90
[  277.544050][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.547631][ T4936]  ? debug_smp_processor_id+0x17/0x20
[  277.552670][ T4937] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1416: Failed to acquire dquot type 0
[  277.558829][ T4936]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  277.558853][ T4936]  __x64_sys_bpf+0x7c/0x90
[  277.563605][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.567336][ T4936]  x64_sys_call+0x87f/0x9a0
[  277.581623][ T4937] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 49: comm syz.2.1416: lblock 1 mapped to illegal pblock 49 (length 1)
[  277.586427][ T4936]  do_syscall_64+0x3b/0xb0
[  277.609459][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.613594][ T4936]  ? clear_bhb_loop+0x55/0xb0
[  277.639111][ T4937] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1416: Failed to acquire dquot type 0
[  277.648315][ T4936]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  277.648343][ T4936] RIP: 0033:0x7f4efdb85d29
[  277.683534][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.684419][ T4936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.710202][ T4936] RSP: 002b:00007f4efe9c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  277.712297][ T4937] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  277.718442][ T4936] RAX: ffffffffffffffda RBX: 00007f4efdd76160 RCX: 00007f4efdb85d29
[  277.718456][ T4936] RDX: 0000000000000048 RSI: 000000002000e000 RDI: 0000000000000005
[  277.718467][ T4936] RBP: 00007f4efe9c1090 R08: 0000000000000000 R09: 0000000000000000
[  277.718478][ T4936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.758890][ T4936] R13: 0000000000000000 R14: 00007f4efdd76160 R15: 00007fffd6deb7c8
[  277.766704][ T4936]  </TASK>
[  277.778561][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.784937][ T4937] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.1416: mark_inode_dirty error
[  277.799783][ T4937] EXT4-fs (loop2): Remounting filesystem read-only
[  277.816293][ T4937] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  277.838284][   T60] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  277.846682][ T4937] EXT4-fs (loop2): 1 orphan inode deleted
[  277.862590][ T4937] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  278.028278][   T60] usb 8-1: Using ep0 maxpacket: 16
[  278.034269][   T60] usb 8-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  278.057107][   T60] usb 8-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  278.090237][   T60] usb 8-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.117966][   T60] usb 8-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  278.197774][   T60] usb 8-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  278.207285][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.643684][   T60] hid (null): report_id 0 is invalid
[  278.686274][   T60] hid-generic 0003:245E:0001.0021: unknown main item tag 0x0
[  278.779420][   T60] hid-generic 0003:245E:0001.0021: ignoring exceeding usage max
[  278.869225][ T4949] loop8: detected capacity change from 0 to 1024
[  278.913532][   T60] hid-generic 0003:245E:0001.0021: report_id 0 is invalid
[  279.353442][   T60] hid-generic 0003:245E:0001.0021: item 0 0 1 8 parsing failed
[  279.364512][   T60] hid-generic: probe of 0003:245E:0001.0021 failed with error -22
[  279.379129][   T60] usb 8-1: USB disconnect, device number 18
[  279.409493][ T4949] EXT4-fs (loop8): orphan cleanup on readonly fs
[  279.425152][ T4953] loop6: detected capacity change from 0 to 1024
[  279.438642][ T4949] EXT4-fs (loop8): 1 truncate cleaned up
[  279.448487][ T4949] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  279.479408][ T4953] EXT4-fs (loop6): orphan cleanup on readonly fs
[  279.510541][ T4953] EXT4-fs (loop6): 1 truncate cleaned up
[  279.523694][ T4953] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  279.536055][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  279.597021][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  279.637241][ T4960] loop8: detected capacity change from 0 to 512
[  279.695215][ T4960] EXT4-fs (loop8): 1 orphan inode deleted
[  279.700852][ T4960] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  279.714142][  T333] __quota_error: 7 callbacks suppressed
[  279.714160][  T333] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  279.766027][ T4960] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.787362][  T333] EXT4-fs error (device loop8): ext4_release_dquot:6811: comm kworker/u4:5: Failed to release dquot type 1
[  280.775642][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  280.871162][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  281.272694][ T4978] loop8: detected capacity change from 0 to 512
[  281.278885][   T28] audit: type=1400 audit(1734779866.886:1171): avc:  denied  { getopt } for  pid=4976 comm="syz.7.1428" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  281.380971][ T4978] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  281.389889][ T4978] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.422815][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  281.528367][  T828] usb 8-1: new low-speed USB device number 19 using dummy_hcd
[  281.595870][ T4991] fuse: Bad value for 'fd'
[  281.666479][ T4992] loop8: detected capacity change from 0 to 256
[  281.679810][ T4992] exFAT-fs (loop8): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  281.707870][ T4990] loop6: detected capacity change from 0 to 40427
[  281.716104][ T4990] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[  281.723030][ T4990] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  281.731110][  T828] usb 8-1: Invalid ep0 maxpacket: 32
[  281.737261][ T4990] F2FS-fs (loop6): heap/no_heap options were deprecated
[  281.746502][ T4990] F2FS-fs (loop6): invalid crc value
[  281.752861][ T4990] F2FS-fs (loop6): Found nat_bits in checkpoint
[  281.777823][ T4990] F2FS-fs (loop6): Start checkpoint disabled!
[  281.784713][ T4990] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  281.791636][ T4990] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  281.908401][  T828] usb 8-1: new low-speed USB device number 20 using dummy_hcd
[  282.098360][  T828] usb 8-1: Invalid ep0 maxpacket: 32
[  282.104007][  T828] usb usb8-port1: attempt power cycle
[  282.424438][ T5003] loop8: detected capacity change from 0 to 1024
[  282.435115][ T5003] EXT4-fs (loop8): orphan cleanup on readonly fs
[  282.456490][ T5005] loop2: detected capacity change from 0 to 1024
[  282.466933][ T5003] EXT4-fs (loop8): 1 truncate cleaned up
[  282.488423][ T5005] EXT4-fs (loop2): orphan cleanup on readonly fs
[  282.494772][ T5003] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  282.505162][ T5005] EXT4-fs (loop2): 1 truncate cleaned up
[  282.524045][ T5005] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  282.538725][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  282.566202][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  282.662673][ T5013] 9pnet_fd: Insufficient options for proto=fd
[  282.698366][  T828] usb 8-1: new low-speed USB device number 21 using dummy_hcd
[  282.718406][ T4047] usb 10-1: new full-speed USB device number 11 using dummy_hcd
[  282.722071][ T5019] 9pnet_fd: Insufficient options for proto=fd
[  282.732817][ T5017] loop8: detected capacity change from 0 to 512
[  282.735145][ T5019] 9pnet_fd: Insufficient options for proto=fd
[  282.745916][  T828] usb 8-1: Invalid ep0 maxpacket: 32
[  282.784856][ T5017] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  282.793873][ T5017] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.818042][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  283.556853][  T828] usb 8-1: new low-speed USB device number 22 using dummy_hcd
[  283.588669][  T828] usb 8-1: Invalid ep0 maxpacket: 32
[  283.593917][  T828] usb usb8-port1: unable to enumerate USB device
[  283.639448][ T4047] usb 10-1: config 5 has an invalid interface number: 123 but max is 0
[  283.647613][ T4047] usb 10-1: config 5 has no interface number 0
[  283.653725][ T4047] usb 10-1: config 5 interface 123 altsetting 7 has an invalid endpoint with address 0xEB, skipping
[  283.697112][ T4047] usb 10-1: config 5 interface 123 altsetting 7 endpoint 0x4 has invalid maxpacket 24929, setting to 64
[  283.708122][ T4047] usb 10-1: config 5 interface 123 has no altsetting 0
[  283.716252][ T4047] usb 10-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  283.725232][ T4047] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.733115][ T4047] usb 10-1: Product: syz
[  283.737163][ T4047] usb 10-1: Manufacturer: syz
[  283.746047][ T4047] usb 10-1: SerialNumber: syz
[  283.749125][ T5042] loop8: detected capacity change from 0 to 512
[  283.758312][  T330] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  283.771511][ T5006] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  283.788716][  T643] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  283.948276][  T330] usb 7-1: Using ep0 maxpacket: 8
[  283.954374][  T330] usb 7-1: config index 0 descriptor too short (expected 30482, got 18)
[  283.964422][ T5042] loop8: detected capacity change from 0 to 40427
[  283.970721][  T330] usb 7-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  283.988866][ T5042] F2FS-fs (loop8): fault_injection options not supported
[  283.995167][ T5000] loop9: detected capacity change from 0 to 1024
[  283.995744][ T5042] F2FS-fs (loop8): heap/no_heap options were deprecated
[  284.002282][  T330] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 101
[  284.024884][ T5000] EXT4-fs: Ignoring removed orlov option
[  284.027205][ T5042] F2FS-fs (loop8): Image doesn't support compression
[  284.032687][  T330] usb 7-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  284.046240][ T5042] F2FS-fs (loop8): invalid crc value
[  284.046616][  T330] usb 7-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  284.061419][ T5000] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  284.074549][ T5042] F2FS-fs (loop8): Found nat_bits in checkpoint
[  284.080679][  T330] usb 7-1: Product: syz
[  284.088436][  T330] usb 7-1: Manufacturer: syz
[  284.096554][ T4047] usb 10-1: USB disconnect, device number 11
[  284.127289][  T330] usb 7-1: config 0 descriptor??
[  284.137315][  T330] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected
[  284.153743][  T330] usb 7-1: Detected FT2232C/D
[  284.158359][ T5042] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  284.201996][   T28] audit: type=1400 audit(1734779869.826:1172): avc:  denied  { setattr } for  pid=5041 comm="syz.8.1447" name="file1" dev="loop8" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  284.244127][ T3646] syz-executor: attempt to access beyond end of device
[  284.244127][ T3646] loop8: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  284.336678][  T330] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  284.353318][  T330] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  284.368517][  T330] usb 7-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  284.390322][  T330] usb 7-1: USB disconnect, device number 12
[  284.403351][  T330] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  284.425289][  T330] ftdi_sio 7-1:0.0: device disconnected
[  284.454477][ T5053] loop8: detected capacity change from 0 to 1024
[  284.463018][ T5053] EXT4-fs (loop8): orphan cleanup on readonly fs
[  284.479702][ T5053] EXT4-fs (loop8): 1 truncate cleaned up
[  284.485408][ T5053] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  284.503590][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  284.632511][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  285.279439][ T5067] 9pnet_fd: Insufficient options for proto=fd
[  285.343957][ T5068] serio: Serial port pts0
[  285.861490][ T5075] loop8: detected capacity change from 0 to 512
[  285.868079][ T5075] EXT4-fs: Ignoring removed i_version option
[  285.875021][ T5075] EXT4-fs: Ignoring removed mblk_io_submit option
[  285.887010][ T5075] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  285.997507][ T5075] EXT4-fs (loop8): 1 truncate cleaned up
[  286.038617][ T5075] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  287.446086][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  287.505611][ T5094] loop2: detected capacity change from 0 to 1024
[  287.596568][ T5097] loop6: detected capacity change from 0 to 128
[  287.624468][ T5094] EXT4-fs (loop2): orphan cleanup on readonly fs
[  287.659692][ T5097] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  287.669417][ T5097] ext4 filesystem being mounted at /118/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  287.707935][ T5097] FAULT_INJECTION: forcing a failure.
[  287.707935][ T5097] name failslab, interval 1, probability 0, space 0, times 0
[  287.720433][ T5097] CPU: 0 PID: 5097 Comm: syz.6.1460 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  287.729985][ T5097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  287.739880][ T5097] Call Trace:
[  287.743003][ T5097]  <TASK>
[  287.745783][ T5097]  dump_stack_lvl+0x151/0x1b7
[  287.750296][ T5097]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  287.755613][ T5097]  dump_stack+0x15/0x18
[  287.759581][ T5097]  should_fail_ex+0x3d0/0x520
[  287.764100][ T5097]  ? getname_flags+0xba/0x520
[  287.768609][ T5097]  __should_failslab+0xaf/0xf0
[  287.773207][ T5097]  should_failslab+0x9/0x20
[  287.777548][ T5097]  kmem_cache_alloc+0x3b/0x320
[  287.782150][ T5097]  getname_flags+0xba/0x520
[  287.786488][ T5097]  __x64_sys_rename+0x5f/0x90
[  287.791002][ T5097]  x64_sys_call+0x266/0x9a0
[  287.795343][ T5097]  do_syscall_64+0x3b/0xb0
[  287.799593][ T5097]  ? clear_bhb_loop+0x55/0xb0
[  287.804110][ T5097]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  287.809835][ T5097] RIP: 0033:0x7f4efdb85d29
[  287.814090][ T5097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.833620][ T5097] RSP: 002b:00007f4efe9c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  287.841862][ T5097] RAX: ffffffffffffffda RBX: 00007f4efdd76160 RCX: 00007f4efdb85d29
[  287.849674][ T5097] RDX: 0000000000000000 RSI: 0000000020000f40 RDI: 0000000020000600
[  287.857486][ T5097] RBP: 00007f4efe9c1090 R08: 0000000000000000 R09: 0000000000000000
[  287.865299][ T5097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.873110][ T5097] R13: 0000000000000000 R14: 00007f4efdd76160 R15: 00007fffd6deb7c8
[  287.880927][ T5097]  </TASK>
[  287.884678][   T28] audit: type=1400 audit(1734780129.334:1173): avc:  denied  { link } for  pid=5091 comm="syz.6.1460" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop6" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  287.996326][ T5094] EXT4-fs (loop2): 1 truncate cleaned up
[  288.023022][ T5094] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  288.288528][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  288.522322][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  288.530891][ T5116] 9pnet_fd: Insufficient options for proto=fd
[  289.559708][ T5128] loop9: detected capacity change from 0 to 512
[  289.571348][ T5131] loop8: detected capacity change from 0 to 128
[  289.603638][ T5128] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  289.605605][ T5131] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  289.612555][ T5128] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.622037][ T5131] ext4 filesystem being mounted at /109/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  289.630964][ T1279] usb 8-1: new full-speed USB device number 23 using dummy_hcd
[  289.673177][ T3646] EXT4-fs (loop8): unmounting filesystem.
[  289.684443][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  289.708357][ T1479] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  289.849451][ T1279] usb 8-1: config 5 has an invalid interface number: 123 but max is 0
[  289.857444][ T1279] usb 8-1: config 5 has no interface number 0
[  289.863678][ T1279] usb 8-1: config 5 interface 123 altsetting 7 has an invalid endpoint with address 0xEB, skipping
[  289.875512][ T1279] usb 8-1: config 5 interface 123 altsetting 7 endpoint 0x4 has invalid maxpacket 24929, setting to 64
[  289.888020][ T1279] usb 8-1: config 5 interface 123 has no altsetting 0
[  289.888348][ T1479] usb 3-1: Using ep0 maxpacket: 8
[  289.896323][ T1279] usb 8-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  289.910056][ T1279] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.911117][ T1479] usb 3-1: config index 0 descriptor too short (expected 30482, got 18)
[  289.917880][ T1279] usb 8-1: Product: syz
[  289.926210][ T1479] usb 3-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  289.930385][ T1279] usb 8-1: Manufacturer: syz
[  289.939226][ T1479] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 101
[  289.943549][ T1279] usb 8-1: SerialNumber: syz
[  289.952979][ T1479] usb 3-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  289.965404][ T1479] usb 3-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  289.965987][ T5105] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  289.974364][ T1479] usb 3-1: Product: syz
[  289.984559][ T1479] usb 3-1: Manufacturer: syz
[  289.989779][ T1479] usb 3-1: config 0 descriptor??
[  289.995806][ T1479] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  290.007297][ T1479] usb 3-1: Detected FT2232C/D
[  290.008697][ T5159] loop8: detected capacity change from 0 to 256
[  290.020861][ T5159] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  290.138328][  T828] usb 10-1: new full-speed USB device number 12 using dummy_hcd
[  290.195919][ T1479] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  290.202811][ T5105] loop7: detected capacity change from 0 to 1024
[  290.213119][ T1479] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  290.213395][ T5105] EXT4-fs: Ignoring removed orlov option
[  290.235346][ T1479] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  290.249483][ T5165] loop6: detected capacity change from 0 to 512
[  290.263542][ T1479] usb 3-1: USB disconnect, device number 33
[  290.273048][ T1479] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  290.282687][ T5165] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  290.291416][ T1479] ftdi_sio 3-1:0.0: device disconnected
[  290.310653][ T5165] EXT4-fs (loop6): invalid journal inode
[  290.316364][ T5165] EXT4-fs (loop6): can't get journal size
[  290.323545][ T5105] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  290.332134][  T828] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  290.343798][ T5165] EXT4-fs (loop6): 1 truncate cleaned up
[  290.344054][  T828] usb 10-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  290.350239][ T5165] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  290.398517][  T828] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  290.407461][  T828] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  290.417111][   T28] audit: type=1400 audit(1734780132.044:1174): avc:  denied  { execute } for  pid=5164 comm="syz.6.1484" path="/124/file0/blkio.bfq.avg_queue_size" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  290.426068][  T828] usb 10-1: SerialNumber: syz
[  290.444893][ T1279] usb 8-1: USB disconnect, device number 23
[  290.451783][ T5166] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.451799][ T5166] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.452279][ T5166] device bridge_slave_0 entered promiscuous mode
[  290.452714][ T5166] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.452725][ T5166] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.452941][ T5166] device bridge_slave_1 entered promiscuous mode
[  290.482280][  T828] usb 10-1: bad CDC descriptors
[  290.482427][  T828] usb-storage 10-1:1.0: USB Mass Storage device detected
[  290.496954][  T828] usb-storage 10-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  290.542575][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  290.561040][ T5166] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.567929][ T5166] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.575113][ T5166] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.581971][ T5166] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.606452][ T5179] loop6: detected capacity change from 0 to 512
[  290.617458][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  290.628204][  T314] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.635931][  T314] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.644422][ T5179] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  290.654329][ T5179] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  290.666896][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  290.676000][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.682874][  T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.691269][ T1479] usb 10-1: USB disconnect, device number 12
[  290.697621][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  290.706297][  T314] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.713156][  T314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.722759][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  290.746486][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  290.754462][ T5166] device veth0_vlan entered promiscuous mode
[  290.761020][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  290.775985][ T5185] loop2: detected capacity change from 0 to 512
[  290.784089][ T5185] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  290.784250][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  290.801920][ T5185] EXT4-fs (loop2): invalid journal inode
[  290.802822][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  290.807555][ T5185] EXT4-fs (loop2): can't get journal size
[  290.815937][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  290.830162][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  290.842375][ T5185] EXT4-fs (loop2): 1 truncate cleaned up
[  290.844064][ T5166] device veth1_macvtap entered promiscuous mode
[  290.848515][ T5185] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  290.866135][   T43] device bridge_slave_1 left promiscuous mode
[  290.872577][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.880325][   T43] device bridge_slave_0 left promiscuous mode
[  290.886306][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.894745][   T43] device veth1_macvtap left promiscuous mode
[  290.901152][   T43] device veth0_vlan left promiscuous mode
[  290.901551][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  290.934826][ T5194] loop2: detected capacity change from 0 to 512
[  290.943162][ T5194] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  290.958380][ T5194] EXT4-fs (loop2): invalid journal inode
[  290.975023][ T5194] EXT4-fs (loop2): can't get journal size
[  290.981865][ T5194] EXT4-fs (loop2): 1 truncate cleaned up
[  290.987758][ T5194] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  290.998048][ T5194] FAULT_INJECTION: forcing a failure.
[  290.998048][ T5194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.011095][ T5194] CPU: 1 PID: 5194 Comm: syz.2.1490 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  291.020711][ T5194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  291.030601][ T5194] Call Trace:
[  291.033729][ T5194]  <TASK>
[  291.036504][ T5194]  dump_stack_lvl+0x151/0x1b7
[  291.041019][ T5194]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  291.046312][ T5194]  ? __kasan_check_write+0x14/0x20
[  291.051257][ T5194]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  291.056552][ T5194]  dump_stack+0x15/0x18
[  291.060546][ T5194]  should_fail_ex+0x3d0/0x520
[  291.065060][ T5194]  should_fail+0xb/0x10
[  291.069053][ T5194]  should_fail_usercopy+0x1a/0x20
[  291.073912][ T5194]  _copy_to_user+0x1e/0x90
[  291.078166][ T5194]  simple_read_from_buffer+0xc7/0x150
[  291.083373][ T5194]  proc_fail_nth_read+0x1a3/0x210
[  291.088233][ T5194]  ? proc_fault_inject_write+0x390/0x390
[  291.093703][ T5194]  ? fsnotify_perm+0x269/0x5b0
[  291.098301][ T5194]  ? security_file_permission+0x86/0xb0
[  291.103682][ T5194]  ? proc_fault_inject_write+0x390/0x390
[  291.109151][ T5194]  vfs_read+0x26c/0xae0
[  291.113144][ T5194]  ? kernel_read+0x1f0/0x1f0
[  291.117569][ T5194]  ? mutex_lock+0xb1/0x1e0
[  291.121822][ T5194]  ? bit_wait_io_timeout+0x120/0x120
[  291.126947][ T5194]  ? __fdget_pos+0x2e2/0x390
[  291.131371][ T5194]  ? ksys_read+0x77/0x2c0
[  291.135537][ T5194]  ksys_read+0x199/0x2c0
[  291.139625][ T5194]  ? vfs_write+0xed0/0xed0
[  291.143869][ T5194]  ? debug_smp_processor_id+0x17/0x20
[  291.149077][ T5194]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  291.154978][ T5194]  __x64_sys_read+0x7b/0x90
[  291.159319][ T5194]  x64_sys_call+0x28/0x9a0
[  291.163570][ T5194]  do_syscall_64+0x3b/0xb0
[  291.167825][ T5194]  ? clear_bhb_loop+0x55/0xb0
[  291.172344][ T5194]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  291.178065][ T5194] RIP: 0033:0x7f3325f8473c
[  291.182319][ T5194] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  291.201767][ T5194] RSP: 002b:00007f3326e9b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  291.210009][ T5194] RAX: ffffffffffffffda RBX: 00007f3326175fa0 RCX: 00007f3325f8473c
[  291.217827][ T5194] RDX: 000000000000000f RSI: 00007f3326e9b0a0 RDI: 0000000000000007
[  291.225629][ T5194] RBP: 00007f3326e9b090 R08: 0000000000000000 R09: 0000000000000000
[  291.233455][ T5194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.241253][ T5194] R13: 0000000000000000 R14: 00007f3326175fa0 R15: 00007fff8ee78548
[  291.249079][ T5194]  </TASK>
[  291.257646][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  291.266506][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  291.276316][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  291.312411][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  291.328720][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  291.337357][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  291.363044][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  291.398749][ T5210] loop2: detected capacity change from 0 to 128
[  291.410369][ T5210] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  291.418912][ T5210] ext4 filesystem being mounted at /89/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  291.511918][   T28] audit: type=1400 audit(1734780133.144:1175): avc:  denied  { rename } for  pid=5209 comm="syz.2.1495" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  291.625143][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  291.649381][   T28] audit: type=1400 audit(1734780133.284:1176): avc:  denied  { read } for  pid=5207 comm="syz.6.1494" name="rtc0" dev="devtmpfs" ino=259 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  291.725586][   T28] audit: type=1400 audit(1734780133.284:1177): avc:  denied  { open } for  pid=5207 comm="syz.6.1494" path="/dev/rtc0" dev="devtmpfs" ino=259 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  291.749511][  T330] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  291.781497][   T28] audit: type=1400 audit(1734780133.284:1178): avc:  denied  { ioctl } for  pid=5207 comm="syz.6.1494" path="/dev/rtc0" dev="devtmpfs" ino=259 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  291.839725][ T5232] loop2: detected capacity change from 0 to 128
[  291.854840][ T5232] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000902)
[  291.865814][ T5232] FAT-fs (loop2): Filesystem has been set read-only
[  291.963425][  T330] usb 10-1: Using ep0 maxpacket: 8
[  291.978737][  T330] usb 10-1: config index 0 descriptor too short (expected 30482, got 18)
[  291.996157][  T330] usb 10-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  292.016644][  T330] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 101
[  292.027249][  T330] usb 10-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  292.046301][  T330] usb 10-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  292.054604][  T330] usb 10-1: Product: syz
[  292.058662][  T330] usb 10-1: Manufacturer: syz
[  292.063796][  T330] usb 10-1: config 0 descriptor??
[  292.069643][  T330] ftdi_sio 10-1:0.0: FTDI USB Serial Device converter detected
[  292.079052][ T5250] loop2: detected capacity change from 0 to 128
[  292.091068][  T330] usb 10-1: Detected FT2232C/D
[  292.109488][ T5250] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  292.119110][ T5250] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  292.268328][  T342] usb 1-1: new full-speed USB device number 29 using dummy_hcd
[  292.269942][  T330] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  292.282885][ T5253] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  292.299957][  T330] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  292.307690][  T330] usb 10-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  292.325429][  T330] usb 10-1: USB disconnect, device number 13
[  292.341740][  T330] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  292.352700][  T330] ftdi_sio 10-1:0.0: device disconnected
[  292.459354][  T342] usb 1-1: config 5 has an invalid interface number: 123 but max is 0
[  292.467513][  T342] usb 1-1: config 5 has no interface number 0
[  292.474019][  T342] usb 1-1: config 5 interface 123 altsetting 7 has an invalid endpoint with address 0xEB, skipping
[  292.484926][  T342] usb 1-1: config 5 interface 123 altsetting 7 endpoint 0x4 has invalid maxpacket 24929, setting to 64
[  292.496710][  T342] usb 1-1: config 5 interface 123 has no altsetting 0
[  292.506806][  T342] usb 1-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  292.516010][  T342] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.524097][  T342] usb 1-1: Product: syz
[  292.528094][  T342] usb 1-1: Manufacturer: syz
[  292.532734][  T342] usb 1-1: SerialNumber: syz
[  292.538458][ T5244] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  292.568929][ T3074] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  292.636230][   T28] audit: type=1400 audit(1734780134.264:1179): avc:  denied  { ioctl } for  pid=5200 comm="syz.7.1492" path="/dev/rtc0" dev="devtmpfs" ino=259 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  292.759302][ T3074] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  292.765521][  T342] usb 1-1: USB disconnect, device number 29
[  292.798480][ T3074] usb 7-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  292.818578][ T3074] usb 7-1: config 0 interface 0 has no altsetting 0
[  292.825206][ T3074] usb 7-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[  292.825245][ T5258] FAULT_INJECTION: forcing a failure.
[  292.825245][ T5258] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.834868][ T3074] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.861913][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  292.889848][ T3074] usb 7-1: config 0 descriptor??
[  292.910080][ T5260] netlink: 'syz.2.1509': attribute type 32 has an invalid length.
[  292.917964][ T5258] CPU: 1 PID: 5258 Comm: syz.9.1508 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  292.927673][ T5258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  292.937566][ T5258] Call Trace:
[  292.940692][ T5258]  <TASK>
[  292.943468][ T5258]  dump_stack_lvl+0x151/0x1b7
[  292.947980][ T5258]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  292.953277][ T5258]  ? kstrtouint_from_user+0x124/0x180
[  292.958481][ T5258]  dump_stack+0x15/0x18
[  292.962482][ T5258]  should_fail_ex+0x3d0/0x520
[  292.966989][ T5258]  should_fail+0xb/0x10
[  292.970979][ T5258]  should_fail_usercopy+0x1a/0x20
[  292.975841][ T5258]  _copy_from_user+0x1e/0xc0
[  292.980268][ T5258]  iovec_from_user+0xc7/0x320
[  292.984782][ T5258]  ? proc_fail_nth_read+0x210/0x210
[  292.989817][ T5258]  __import_iovec+0x70/0x430
[  292.994241][ T5258]  ? __fget_files+0x2cb/0x330
[  292.998756][ T5258]  import_iovec+0xe5/0x120
[  293.003009][ T5258]  do_preadv+0x1d4/0x350
[  293.007087][ T5258]  ? vfs_writev+0x590/0x590
[  293.011432][ T5258]  ? fput+0x15b/0x1b0
[  293.015246][ T5258]  ? ksys_write+0x260/0x2c0
[  293.019588][ T5258]  ? debug_smp_processor_id+0x17/0x20
[  293.024792][ T5258]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  293.030696][ T5258]  __x64_sys_preadv+0x9e/0xb0
[  293.035209][ T5258]  x64_sys_call+0x7c9/0x9a0
[  293.039551][ T5258]  do_syscall_64+0x3b/0xb0
[  293.043801][ T5258]  ? clear_bhb_loop+0x55/0xb0
[  293.048313][ T5258]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  293.054042][ T5258] RIP: 0033:0x7ff93ed85d29
[  293.058294][ T5258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.077741][ T5258] RSP: 002b:00007ff93fb99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  293.085982][ T5258] RAX: ffffffffffffffda RBX: 00007ff93ef75fa0 RCX: 00007ff93ed85d29
[  293.093794][ T5258] RDX: 0000000000000001 RSI: 0000000020002240 RDI: 0000000000000003
[  293.101609][ T5258] RBP: 00007ff93fb99090 R08: 0000000000000000 R09: 0000000000000000
[  293.109424][ T5258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.117227][ T5258] R13: 0000000000000000 R14: 00007ff93ef75fa0 R15: 00007ffe456a83e8
[  293.125047][ T5258]  </TASK>
[  293.301586][ T3074] zeroplus 0003:0C12:0005.0022: unknown main item tag 0x0
[  293.309636][ T3074] zeroplus 0003:0C12:0005.0022: unknown main item tag 0x0
[  293.316616][ T3074] zeroplus 0003:0C12:0005.0022: unknown main item tag 0x0
[  293.323891][ T3074] zeroplus 0003:0C12:0005.0022: unknown main item tag 0x0
[  293.331258][ T3074] zeroplus 0003:0C12:0005.0022: unknown main item tag 0x0
[  293.338918][ T3074] zeroplus 0003:0C12:0005.0022: hidraw0: USB HID v0.00 Device [HID 0c12:0005] on usb-dummy_hcd.6-1/input0
[  293.350401][ T3074] zeroplus 0003:0C12:0005.0022: no inputs found
[  293.552989][ T5284] FAULT_INJECTION: forcing a failure.
[  293.552989][ T5284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.565916][ T5284] CPU: 1 PID: 5284 Comm: syz.9.1517 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  293.575484][ T5284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  293.585378][ T5284] Call Trace:
[  293.588502][ T5284]  <TASK>
[  293.591281][ T5284]  dump_stack_lvl+0x151/0x1b7
[  293.595793][ T5284]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  293.601089][ T5284]  ? __kasan_check_read+0x11/0x20
[  293.605949][ T5284]  dump_stack+0x15/0x18
[  293.609941][ T5284]  should_fail_ex+0x3d0/0x520
[  293.614456][ T5284]  should_fail+0xb/0x10
[  293.618445][ T5284]  should_fail_usercopy+0x1a/0x20
[  293.623305][ T5284]  _copy_from_user+0x1e/0xc0
[  293.627734][ T5284]  copy_msghdr_from_user+0xaa/0x670
[  293.632767][ T5284]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  293.638236][ T5284]  ? sendmsg_copy_msghdr+0x70/0x70
[  293.643181][ T5284]  ? kasan_check_range+0x1bd/0x2a0
[  293.648128][ T5284]  __sys_sendmsg+0x236/0x390
[  293.652556][ T5284]  ? ____sys_sendmsg+0x9a0/0x9a0
[  293.657354][ T5284]  ? plist_del+0x40e/0x420
[  293.661585][ T5284]  ? fpregs_restore_userregs+0x130/0x290
[  293.667055][ T5284]  __x64_sys_sendmsg+0x7f/0x90
[  293.671657][ T5284]  x64_sys_call+0x16a/0x9a0
[  293.675996][ T5284]  do_syscall_64+0x3b/0xb0
[  293.680247][ T5284]  ? clear_bhb_loop+0x55/0xb0
[  293.684763][ T5284]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  293.690489][ T5284] RIP: 0033:0x7ff93ed85d29
[  293.694737][ T5284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.714183][ T5284] RSP: 002b:00007ff93fb57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.722424][ T5284] RAX: ffffffffffffffda RBX: 00007ff93ef76160 RCX: 00007ff93ed85d29
[  293.730237][ T5284] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000008
[  293.738046][ T5284] RBP: 00007ff93fb57090 R08: 0000000000000000 R09: 0000000000000000
[  293.745864][ T5284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.753671][ T5284] R13: 0000000000000000 R14: 00007ff93ef76160 R15: 00007ffe456a83e8
[  293.761490][ T5284]  </TASK>
[  293.765020][  T342] usb 3-1: new full-speed USB device number 34 using dummy_hcd
[  293.765310][ T1279] usb 7-1: USB disconnect, device number 13
[  293.772470][ T1479] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  293.928330][  T828] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  293.959497][  T342] usb 3-1: config 5 has an invalid interface number: 123 but max is 0
[  293.967567][ T1479] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  293.978203][  T342] usb 3-1: config 5 has no interface number 0
[  293.984100][  T342] usb 3-1: config 5 interface 123 altsetting 7 has an invalid endpoint with address 0xEB, skipping
[  293.994584][ T1479] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.004145][  T342] usb 3-1: config 5 interface 123 altsetting 7 endpoint 0x4 has invalid maxpacket 24929, setting to 64
[  294.015067][ T1479] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  294.023855][ T1479] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.031641][  T342] usb 3-1: config 5 interface 123 has no altsetting 0
[  294.039289][ T1479] usb 8-1: config 0 descriptor??
[  294.044815][  T342] usb 3-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  294.054013][  T342] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.061846][  T342] usb 3-1: Product: syz
[  294.065808][  T342] usb 3-1: Manufacturer: syz
[  294.070271][  T342] usb 3-1: SerialNumber: syz
[  294.075688][ T5271] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  294.108313][  T828] usb 1-1: Using ep0 maxpacket: 8
[  294.114235][  T828] usb 1-1: config index 0 descriptor too short (expected 30482, got 18)
[  294.122421][  T828] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  294.130972][  T828] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101
[  294.140926][  T828] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  294.149812][  T828] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  294.157931][  T828] usb 1-1: Product: syz
[  294.161941][  T828] usb 1-1: Manufacturer: syz
[  294.167160][  T828] usb 1-1: config 0 descriptor??
[  294.172782][  T828] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  294.180391][  T828] usb 1-1: Detected FT2232C/D
[  294.288566][ T5271] loop2: detected capacity change from 0 to 1024
[  294.295264][ T5271] EXT4-fs: Ignoring removed orlov option
[  294.332107][ T5271] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  294.362131][  T342] usb 3-1: USB disconnect, device number 34
[  294.374359][  T828] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  294.396434][  T828] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  294.416448][  T828] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  294.608626][ T5300] FAULT_INJECTION: forcing a failure.
[  294.608626][ T5300] name failslab, interval 1, probability 0, space 0, times 0
[  294.626752][ T5300] CPU: 0 PID: 5300 Comm: syz.6.1521 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  294.636386][ T5300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  294.646292][ T5300] Call Trace:
[  294.646668][  T828] usb 1-1: USB disconnect, device number 30
[  294.649404][ T5300]  <TASK>
[  294.649413][ T5300]  dump_stack_lvl+0x151/0x1b7
[  294.649443][ T5300]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  294.649460][ T5300]  ? __kasan_check_write+0x14/0x20
[  294.656913][  T828] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  294.657909][ T5300]  ? mutex_unlock+0xb2/0x260
[  294.663057][  T828] ftdi_sio 1-1:0.0: device disconnected
[  294.667716][ T5300]  ? bit_wait_io_timeout+0x120/0x120
[  294.667747][ T5300]  dump_stack+0x15/0x18
[  294.680699][ T1479] hid (null): bogus close delimiter
[  294.681779][ T5300]  should_fail_ex+0x3d0/0x520
[  294.710251][ T5300]  ? getname_flags+0xba/0x520
[  294.714762][ T5300]  __should_failslab+0xaf/0xf0
[  294.719366][ T5300]  should_failslab+0x9/0x20
[  294.723701][ T5300]  kmem_cache_alloc+0x3b/0x320
[  294.728306][ T5300]  getname_flags+0xba/0x520
[  294.732639][ T5300]  getname+0x19/0x20
[  294.736374][ T5300]  __x64_sys_execve+0x78/0xb0
[  294.740888][ T5300]  x64_sys_call+0x1c5/0x9a0
[  294.745233][ T5300]  do_syscall_64+0x3b/0xb0
[  294.749481][ T5300]  ? clear_bhb_loop+0x55/0xb0
[  294.753993][ T5300]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  294.759719][ T5300] RIP: 0033:0x7f4efdb85d29
[  294.763976][ T5300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.783419][ T5300] RSP: 002b:00007f4efe9e2038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  294.791664][ T5300] RAX: ffffffffffffffda RBX: 00007f4efdd76080 RCX: 00007f4efdb85d29
[  294.799474][ T5300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[  294.807288][ T5300] RBP: 00007f4efe9e2090 R08: 0000000000000000 R09: 0000000000000000
[  294.815099][ T5300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.822906][ T5300] R13: 0000000000000001 R14: 00007f4efdd76080 R15: 00007fffd6deb7c8
[  294.830725][ T5300]  </TASK>
[  294.921888][ T1479] usb 8-1: string descriptor 0 read error: -22
[  295.091231][ T1479] uclogic 0003:256C:006D.0023: failed retrieving string descriptor #200: -71
[  295.099938][ T1479] uclogic 0003:256C:006D.0023: failed retrieving pen parameters: -71
[  295.107796][ T1479] uclogic 0003:256C:006D.0023: failed probing pen v2 parameters: -71
[  295.132967][ T1479] uclogic 0003:256C:006D.0023: failed probing parameters: -71
[  295.149832][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  295.161019][ T1479] uclogic: probe of 0003:256C:006D.0023 failed with error -71
[  295.215508][ T1479] usb 8-1: USB disconnect, device number 24
[  295.233245][ T5317] futex_wake_op: syz.9.1527 tries to shift op by -1; fix this program
[  295.247749][ T5319] loop6: detected capacity change from 0 to 512
[  295.255118][ T5319] EXT4-fs: Ignoring removed i_version option
[  295.260998][ T5319] EXT4-fs: Ignoring removed mblk_io_submit option
[  295.267570][ T5319] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  295.297246][ T5319] EXT4-fs (loop6): 1 truncate cleaned up
[  295.304882][ T5319] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  295.774020][  T828] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  295.958990][  T828] usb 1-1: Using ep0 maxpacket: 8
[  295.972440][  T828] usb 1-1: config index 0 descriptor too short (expected 30482, got 18)
[  295.980698][  T828] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  295.980719][  T828] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101
[  295.981934][  T828] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  296.007112][  T828] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  296.015506][  T828] usb 1-1: Product: syz
[  296.020093][  T828] usb 1-1: Manufacturer: syz
[  296.021711][ T5331] serio: Serial port ptm0
[  296.029346][  T828] usb 1-1: config 0 descriptor??
[  296.035166][  T828] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  296.042788][  T828] usb 1-1: Detected FT2232C/D
[  296.135665][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  296.153768][ T5336] loop6: detected capacity change from 0 to 512
[  296.160541][ T5336] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  296.183623][ T5336] EXT4-fs (loop6): 1 truncate cleaned up
[  296.189682][ T5336] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  296.202192][ T5336] syz.6.1533 (pid 5336) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  296.244077][  T828] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  296.252577][  T828] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  296.259772][  T828] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  296.268768][  T828] usb 1-1: USB disconnect, device number 31
[  296.279611][  T828] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  296.291833][ T5340] loop7: detected capacity change from 0 to 512
[  296.298761][  T828] ftdi_sio 1-1:0.0: device disconnected
[  296.305899][ T5340] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.1534: inode #1: comm syz.7.1534: iget: illegal inode #
[  296.318889][ T5340] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.1534: error while reading EA inode 1 err=-117
[  296.331280][ T5340] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.1534: inode #1: comm syz.7.1534: iget: illegal inode #
[  296.344237][ T5340] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.1534: error while reading EA inode 1 err=-117
[  296.356579][ T5340] EXT4-fs (loop7): 1 orphan inode deleted
[  296.362182][ T5340] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  296.374041][ T5340] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.1534: invalid indirect mapped block 234881024 (level 0)
[  296.406194][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  296.421493][ T5343] loop7: detected capacity change from 0 to 512
[  296.439541][ T5343] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  296.448838][ T5343] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.468739][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  296.485216][   T28] audit: type=1400 audit(1734780394.108:1180): avc:  denied  { add_name } for  pid=5346 comm="syz.7.1536" name="cpuacct.usage_percpu_user" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  296.508471][ T3074] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  296.516139][   T28] audit: type=1400 audit(1734780394.108:1181): avc:  denied  { associate } for  pid=5346 comm="syz.7.1536" name="cpuacct.usage_percpu_user" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  296.743973][   T28] audit: type=1400 audit(1734780394.368:1182): avc:  denied  { create } for  pid=5348 comm="syz.7.1537" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  296.828125][ T5355] FAULT_INJECTION: forcing a failure.
[  296.828125][ T5355] name failslab, interval 1, probability 0, space 0, times 0
[  296.898493][ T5355] CPU: 1 PID: 5355 Comm: syz.9.1539 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  296.908133][ T5355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  296.918028][ T5355] Call Trace:
[  296.921148][ T5355]  <TASK>
[  296.923925][ T5355]  dump_stack_lvl+0x151/0x1b7
[  296.928448][ T5355]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  296.933732][ T5355]  ? preempt_schedule_irq+0xe7/0x140
[  296.938861][ T5355]  ? __queue_map_get+0x3b0/0x3b0
[  296.943632][ T5355]  dump_stack+0x15/0x18
[  296.947623][ T5355]  should_fail_ex+0x3d0/0x520
[  296.952140][ T5355]  ? getname_flags+0xba/0x520
[  296.956649][ T5355]  __should_failslab+0xaf/0xf0
[  296.961247][ T5355]  should_failslab+0x9/0x20
[  296.965588][ T5355]  kmem_cache_alloc+0x3b/0x320
[  296.970189][ T5355]  getname_flags+0xba/0x520
[  296.974528][ T5355]  getname+0x19/0x20
[  296.978260][ T5355]  do_sys_openat2+0xe0/0x870
[  296.982687][ T5355]  ? __schedule+0xcbd/0x1560
[  296.987110][ T5355]  ? do_sys_open+0x220/0x220
[  296.991542][ T5355]  ? __sched_text_start+0x8/0x8
[  296.996224][ T5355]  ? ksys_write+0x260/0x2c0
[  297.000566][ T5355]  __x64_sys_openat+0x243/0x290
[  297.005255][ T5355]  ? __ia32_sys_open+0x270/0x270
[  297.010026][ T5355]  ? switch_fpu_return+0xe/0x10
[  297.014715][ T5355]  ? exit_to_user_mode_prepare+0x7e/0xa0
[  297.020183][ T5355]  x64_sys_call+0x6bf/0x9a0
[  297.024520][ T5355]  do_syscall_64+0x3b/0xb0
[  297.028773][ T5355]  ? clear_bhb_loop+0x55/0xb0
[  297.033287][ T5355]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  297.039014][ T5355] RIP: 0033:0x7ff93ed85d29
[  297.043268][ T5355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.062711][ T5355] RSP: 002b:00007ff93fb99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  297.070954][ T5355] RAX: ffffffffffffffda RBX: 00007ff93ef75fa0 RCX: 00007ff93ed85d29
[  297.078769][ T5355] RDX: 00000000000026e1 RSI: 0000000020000400 RDI: ffffffffffffff9c
[  297.086578][ T5355] RBP: 00007ff93fb99090 R08: 0000000000000000 R09: 0000000000000000
[  297.094389][ T5355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.102201][ T5355] R13: 0000000000000000 R14: 00007ff93ef75fa0 R15: 00007ffe456a83e8
[  297.110018][ T5355]  </TASK>
[  297.118208][ T3074] usb 7-1: Using ep0 maxpacket: 16
[  297.127115][ T3074] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  297.137077][ T3074] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  297.147608][ T3074] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  297.156564][ T3074] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.164492][ T3074] usb 7-1: Product: 䊶怌ﴤ乺ᛨ읅栭幅罟ㇹ⤮譣젍휭㞔梇ꮂ☳ꓨ̪酦ᐐภ髱ꓛ몡땟ꗏ䧿ꤙ雒ԅ挥뭙蓵㽇꛸ꊕ꫿엫肈뢖漏꼤剙삳鷤﮷㥊뢔⛎퓫六䒄髷䆝჆ெ证큷뜫閲扵芡⊋拓즜苘㦯帜粱耱貢뗱끨樨黱ꂲ魠䣵
[  297.192891][ T3074] usb 7-1: Manufacturer: ࡃ
[  297.197232][ T3074] usb 7-1: SerialNumber: syz
[  297.200448][ T5360] loop2: detected capacity change from 0 to 256
[  297.211021][ T5360] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  297.297311][ T5370] loop9: detected capacity change from 0 to 512
[  297.297315][ T5371] loop2: detected capacity change from 0 to 512
[  297.297573][ T5371] EXT4-fs: Ignoring removed i_version option
[  297.315571][ T5371] EXT4-fs: Ignoring removed mblk_io_submit option
[  297.322783][ T5371] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  297.337734][ T5371] EXT4-fs (loop2): 1 truncate cleaned up
[  297.340102][ T5370] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  297.343436][ T5371] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  297.352327][ T5370] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.411686][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  297.442203][ T5379] loop2: detected capacity change from 0 to 128
[  297.469687][ T5379] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  297.477481][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  297.484393][ T5379] ext4 filesystem being mounted at /106/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  297.507406][ T5379] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  297.530080][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  297.530738][ T5383] loop9: detected capacity change from 0 to 512
[  297.556222][ T5383] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  297.563191][ T5387] loop2: detected capacity change from 0 to 1024
[  297.565203][ T5383] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.711518][   T28] audit: type=1400 audit(1734780651.336:1183): avc:  denied  { write } for  pid=5335 comm="syz.6.1533" name="bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  297.738025][ T5387] EXT4-fs (loop2): orphan cleanup on readonly fs
[  297.763255][ T5387] EXT4-fs (loop2): 1 truncate cleaned up
[  297.918404][  T342] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  297.968376][   T60] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  298.099622][  T342] usb 8-1: too many configurations: 65, using maximum allowed: 8
[  298.210661][   T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.228562][  T342] usb 8-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  298.250298][   T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.399466][  T342] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.423349][   T60] usb 10-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  298.430015][ T3074] usb 7-1: 0:2 : does not exist
[  298.432608][ T5387] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  298.441283][ T3074] usb 7-1: USB disconnect, device number 14
[  298.478363][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  298.547509][   T60] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.622439][   T60] usb 10-1: config 0 descriptor??
[  298.644323][ T5398] loop6: detected capacity change from 0 to 128
[  298.720115][ T5398] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  298.752047][ T5398] ext4 filesystem being mounted at /136/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  298.773324][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  299.090171][   T60] hid-rmi 0003:06CB:81A7.0024: item fetching failed at offset 2/5
[  299.097894][   T60] hid-rmi 0003:06CB:81A7.0024: parse failed
[  299.812741][   T60] hid-rmi: probe of 0003:06CB:81A7.0024 failed with error -22
[  300.056999][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  300.063554][  T643] udevd[643]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  300.071712][ T1279] usb 10-1: USB disconnect, device number 14
[  300.100428][ T5403] loop2: detected capacity change from 0 to 40427
[  300.107739][ T5403] F2FS-fs (loop2): quotafile must be on filesystem root
[  300.349618][ T5403] loop2: detected capacity change from 0 to 40427
[  300.398656][  T643] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  300.488900][ T5403] loop2: detected capacity change from 0 to 1024
[  300.528701][  T643] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  300.607281][ T5424] loop2: detected capacity change from 0 to 512
[  300.640083][ T5424] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  300.649445][ T5424] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.688149][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  300.706071][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  300.733932][ T5431] loop9: detected capacity change from 0 to 512
[  300.751870][ T5431] EXT4-fs: Ignoring removed i_version option
[  300.757727][ T5431] EXT4-fs: Ignoring removed mblk_io_submit option
[  300.769731][ T5431] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  300.780969][ T5431] EXT4-fs (loop9): 1 truncate cleaned up
[  300.786439][ T5431] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  300.822341][   T60] usb 8-1: USB disconnect, device number 25
[  300.836562][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  300.921751][   T28] audit: type=1400 audit(1734780910.549:1184): avc:  denied  { watch watch_reads } for  pid=5443 comm="syz.0.1565" path="/12" dev="tmpfs" ino=76 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  301.107954][   T28] audit: type=1326 audit(1734780910.729:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5418 comm="syz.6.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4efdb85d29 code=0x7fc00000
[  301.147060][   T28] audit: type=1326 audit(1734780910.729:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5418 comm="syz.6.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4efdb85d29 code=0x7fc00000
[  301.192989][   T28] audit: type=1326 audit(1734780910.729:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5418 comm="syz.6.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4efdb85d29 code=0x7fc00000
[  301.238309][   T28] audit: type=1326 audit(1734780910.729:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5418 comm="syz.6.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4efdb85d29 code=0x7fc00000
[  301.284904][   T28] audit: type=1326 audit(1734780910.729:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5418 comm="syz.6.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4efdb85d29 code=0x7fc00000
[  301.308291][ T3074] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  301.338294][ T1279] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  301.458291][   T60] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  301.498328][ T3074] usb 1-1: Using ep0 maxpacket: 16
[  301.504456][ T3074] usb 1-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  301.525650][ T3074] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  301.536508][ T1279] usb 3-1: Using ep0 maxpacket: 16
[  301.542584][ T1279] usb 3-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  301.563758][ T1279] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  301.574597][ T3074] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  301.584195][ T3074] usb 1-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  301.596978][ T1279] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  301.606584][ T1279] usb 3-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  301.619392][ T3074] usb 1-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  301.628301][ T3074] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.636187][ T1279] usb 3-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  301.638271][   T60] usb 7-1: Using ep0 maxpacket: 16
[  301.648561][ T1279] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.659101][   T60] usb 7-1: config 0 has an invalid interface number: 2 but max is 0
[  301.682108][   T60] usb 7-1: config 0 has no interface number 0
[  301.694255][   T60] usb 7-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid maxpacket 19339, setting to 1024
[  301.715382][   T60] usb 7-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  301.739864][   T60] usb 7-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  301.758271][   T60] usb 7-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  301.768428][   T60] usb 7-1: Product: syz
[  301.772400][   T60] usb 7-1: SerialNumber: syz
[  301.791156][   T60] usb 7-1: config 0 descriptor??
[  301.798438][ T5455] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  302.019054][   T60] usb 7-1: invalid MIDI in EP 0
[  302.030350][   T60] snd-usb-audio: probe of 7-1:0.2 failed with error -22
[  302.053269][  T352] udevd[352]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.2/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  302.060736][ T3074] hid (null): report_id 0 is invalid
[  302.069654][   T60] usb 7-1: USB disconnect, device number 15
[  302.075954][ T1279] hid (null): report_id 0 is invalid
[  302.090058][ T3074] hid-generic 0003:245E:0001.0025: unknown main item tag 0x0
[  302.108615][ T1279] hid-generic 0003:245E:0001.0026: unknown main item tag 0x0
[  302.115820][ T1279] hid-generic 0003:245E:0001.0026: ignoring exceeding usage max
[  302.123445][ T3074] hid-generic 0003:245E:0001.0025: ignoring exceeding usage max
[  302.132156][ T3074] hid-generic 0003:245E:0001.0025: report_id 0 is invalid
[  302.140392][ T1279] hid-generic 0003:245E:0001.0026: report_id 0 is invalid
[  302.147356][ T3074] hid-generic 0003:245E:0001.0025: item 0 0 1 8 parsing failed
[  302.154906][ T1279] hid-generic 0003:245E:0001.0026: item 0 0 1 8 parsing failed
[  302.162490][ T3074] hid-generic: probe of 0003:245E:0001.0025 failed with error -22
[  302.170456][ T1279] hid-generic: probe of 0003:245E:0001.0026 failed with error -22
[  302.264536][ T3074] usb 1-1: USB disconnect, device number 32
[  302.273936][ T5458] loop9: detected capacity change from 0 to 2048
[  302.294793][   T60] usb 3-1: USB disconnect, device number 35
[  302.308981][ T5460] loop7: detected capacity change from 0 to 1024
[  302.317906][ T5460] EXT4-fs (loop7): orphan cleanup on readonly fs
[  302.325974][ T5458] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  302.326588][ T5460] EXT4-fs (loop7): 1 truncate cleaned up
[  302.342307][ T5460] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  302.365181][ T5458] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  302.380237][ T5458] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[  302.386568][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  302.392628][ T5458] EXT4-fs (loop9): This should not happen!! Data will be lost
[  302.392628][ T5458] 
[  302.407873][ T5458] EXT4-fs (loop9): Total free blocks count 0
[  302.448684][ T5458] EXT4-fs (loop9): Free/Dirty block details
[  302.454484][ T5458] EXT4-fs (loop9): free_blocks=2415919104
[  302.460251][ T5458] EXT4-fs (loop9): dirty_blocks=80
[  302.465349][ T5458] EXT4-fs (loop9): Block reservation details
[  302.471288][ T5458] EXT4-fs (loop9): i_reserved_data_blocks=5
[  302.489944][  T314] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  302.514695][ T5470] loop9: detected capacity change from 0 to 1024
[  302.571575][ T5470] EXT4-fs (loop9): orphan cleanup on readonly fs
[  302.584664][ T5470] EXT4-fs (loop9): 1 truncate cleaned up
[  302.742089][ T5470] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  302.782359][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  302.806607][ T5477] loop9: detected capacity change from 0 to 512
[  302.816046][ T5477] EXT4-fs: Ignoring removed i_version option
[  302.822083][ T5477] EXT4-fs: Ignoring removed mblk_io_submit option
[  302.834542][ T5477] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  302.845951][ T5477] EXT4-fs (loop9): 1 truncate cleaned up
[  302.851553][ T5477] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  302.990820][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  303.032744][ T5485] FAULT_INJECTION: forcing a failure.
[  303.032744][ T5485] name failslab, interval 1, probability 0, space 0, times 0
[  303.117781][ T5485] CPU: 1 PID: 5485 Comm: syz.0.1576 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  303.127424][ T5485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  303.137320][ T5485] Call Trace:
[  303.140442][ T5485]  <TASK>
[  303.143222][ T5485]  dump_stack_lvl+0x151/0x1b7
[  303.147736][ T5485]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  303.153032][ T5485]  ? __kasan_check_read+0x11/0x20
[  303.157888][ T5485]  dump_stack+0x15/0x18
[  303.161884][ T5485]  should_fail_ex+0x3d0/0x520
[  303.166397][ T5485]  __should_failslab+0xaf/0xf0
[  303.170995][ T5485]  should_failslab+0x9/0x20
[  303.175332][ T5485]  kmem_cache_alloc_node+0x42/0x330
[  303.180366][ T5485]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  303.185836][ T5485]  ? __alloc_skb+0xcc/0x2d0
[  303.190176][ T5485]  __alloc_skb+0xcc/0x2d0
[  303.194344][ T5485]  netlink_sendmsg+0x7a6/0xd30
[  303.198945][ T5485]  ? netlink_getsockopt+0x540/0x540
[  303.203978][ T5485]  ? security_socket_sendmsg+0x82/0xb0
[  303.209271][ T5485]  ? netlink_getsockopt+0x540/0x540
[  303.214305][ T5485]  sock_write_iter+0x394/0x4e0
[  303.218905][ T5485]  ? sock_read_iter+0x4b0/0x4b0
[  303.223604][ T5485]  ? fsnotify_perm+0x6a/0x5b0
[  303.228113][ T5485]  vfs_write+0xaf6/0xed0
[  303.232185][ T5485]  ? native_set_ldt+0x130/0x130
[  303.236875][ T5485]  ? file_end_write+0x1c0/0x1c0
[  303.241557][ T5485]  ? finish_task_switch+0x167/0x7b0
[  303.246594][ T5485]  ? __fget_files+0x2cb/0x330
[  303.251111][ T5485]  ? __fdget_pos+0x204/0x390
[  303.255532][ T5485]  ? ksys_write+0x77/0x2c0
[  303.259789][ T5485]  ksys_write+0x199/0x2c0
[  303.263956][ T5485]  ? __ia32_sys_read+0x90/0x90
[  303.268551][ T5485]  ? fpregs_restore_userregs+0x130/0x290
[  303.274021][ T5485]  __x64_sys_write+0x7b/0x90
[  303.278448][ T5485]  x64_sys_call+0x2f/0x9a0
[  303.282702][ T5485]  do_syscall_64+0x3b/0xb0
[  303.286966][ T5485]  ? clear_bhb_loop+0x55/0xb0
[  303.291475][ T5485]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  303.297196][ T5485] RIP: 0033:0x7fa9d6985d29
[  303.301448][ T5485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.320893][ T5485] RSP: 002b:00007fa9d7881038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  303.329135][ T5485] RAX: ffffffffffffffda RBX: 00007fa9d6b76080 RCX: 00007fa9d6985d29
[  303.336947][ T5485] RDX: 0000000000000023 RSI: 0000000020000040 RDI: 0000000000000007
[  303.344762][ T5485] RBP: 00007fa9d7881090 R08: 0000000000000000 R09: 0000000000000000
[  303.352568][ T5485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.360466][ T5485] R13: 0000000000000000 R14: 00007fa9d6b76080 R15: 00007ffc68c9f4b8
[  303.368285][ T5485]  </TASK>
[  303.598711][ T5488] loop7: detected capacity change from 0 to 128
[  303.605096][ T5488] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  303.629556][ T5488] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  303.639698][   T28] kauditd_printk_skb: 62 callbacks suppressed
[  303.639712][   T28] audit: type=1400 audit(1734781169.269:1252): avc:  denied  { mount } for  pid=5487 comm="syz.7.1578" name="/" dev="loop7" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  303.718209][ T5497] loop2: detected capacity change from 0 to 512
[  303.724579][ T5497] EXT4-fs: Ignoring removed i_version option
[  303.731622][ T5497] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  303.756155][ T5497] EXT4-fs (loop2): 1 truncate cleaned up
[  303.783568][ T5497] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  303.808852][   T28] audit: type=1326 audit(1734781169.439:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  303.869990][   T28] audit: type=1326 audit(1734781169.459:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  303.893253][   T28] audit: type=1326 audit(1734781169.459:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  303.924781][  T314] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  303.956396][   T28] audit: type=1326 audit(1734781169.459:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  303.979981][   T28] audit: type=1326 audit(1734781169.459:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  304.003395][   T28] audit: type=1326 audit(1734781169.479:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5490 comm="syz.2.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3325f85d29 code=0x7ffc0000
[  304.027552][   T28] audit: type=1400 audit(1734781169.549:1259): avc:  denied  { unmount } for  pid=2524 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  304.048455][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  304.218302][    T6] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  304.618279][    T6] usb 8-1: Using ep0 maxpacket: 16
[  304.626799][    T6] usb 8-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  304.637665][    T6] usb 8-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  304.649825][    T6] usb 8-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  304.660281][    T6] usb 8-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  304.673253][    T6] usb 8-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  304.688548][    T6] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.660360][    T6] hid (null): report_id 0 is invalid
[  305.666423][    T6] hid-generic 0003:245E:0001.0027: unknown main item tag 0x0
[  305.673821][    T6] hid-generic 0003:245E:0001.0027: ignoring exceeding usage max
[  305.682584][    T6] hid-generic 0003:245E:0001.0027: report_id 0 is invalid
[  305.689641][    T6] hid-generic 0003:245E:0001.0027: item 0 0 1 8 parsing failed
[  305.697192][    T6] hid-generic: probe of 0003:245E:0001.0027 failed with error -22
[  305.860896][ T3074] usb 8-1: USB disconnect, device number 26
[  306.098353][    T6] usb 3-1: new full-speed USB device number 36 using dummy_hcd
[  306.290238][    T6] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  306.314070][    T6] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  306.374480][    T6] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  306.415195][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  306.450462][    T6] usb 3-1: SerialNumber: syz
[  306.915195][    T6] cdc_ether 3-1:1.0: skipping garbage
[  306.930127][    T6] cdc_ether: probe of 3-1:1.0 failed with error -22
[  306.936674][    T6] usb-storage 3-1:1.0: USB Mass Storage device detected
[  306.959661][    T6] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  307.116425][  T316] usb 3-1: USB disconnect, device number 36
[  308.189924][   T28] audit: type=1400 audit(1734781173.819:1260): avc:  denied  { ioctl } for  pid=5582 comm="syz.9.1607" path="socket:[43048]" dev="sockfs" ino=43048 ioctlcmd=0x550f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  308.206470][ T5574] loop6: detected capacity change from 0 to 40427
[  308.221281][ T5574] F2FS-fs (loop6): Image doesn't support compression
[  308.233836][ T5574] F2FS-fs (loop6): Image doesn't support compression
[  308.243695][ T5574] F2FS-fs (loop6): invalid crc value
[  308.250156][ T5574] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  308.280717][ T5574] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  308.344962][   T60] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  308.398319][  T330] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  308.538318][   T60] usb 8-1: device descriptor read/64, error -71
[  308.652359][ T5603] fuse: Bad value for 'fd'
[  308.761195][  T330] usb 1-1: Using ep0 maxpacket: 8
[  308.767180][  T330] usb 1-1: config index 0 descriptor too short (expected 30482, got 18)
[  308.775348][  T330] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  308.783846][  T330] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101
[  308.793822][  T330] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  308.802722][  T330] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  308.811060][  T330] usb 1-1: Product: syz
[  308.815057][  T330] usb 1-1: Manufacturer: syz
[  308.821129][  T330] usb 1-1: config 0 descriptor??
[  308.826652][  T330] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  308.833973][ T3074] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  308.841525][  T330] usb 1-1: Detected FT2232C/D
[  308.868302][   T60] usb 8-1: device descriptor read/64, error -71
[  309.027299][  T330] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  309.033942][ T3074] usb 3-1: Using ep0 maxpacket: 16
[  309.039132][  T330] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  309.046298][  T330] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  309.054262][ T3074] usb 3-1: too many endpoints for config 4 interface 0 altsetting 0: 73, using maximum allowed: 30
[  309.065522][  T330] usb 1-1: USB disconnect, device number 33
[  309.071307][ T3074] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  309.082128][ T3074] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  309.091898][  T330] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  309.101249][  T330] ftdi_sio 1-1:0.0: device disconnected
[  309.107026][ T3074] usb 3-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  309.120227][ T3074] usb 3-1: New USB device found, idVendor=245e, idProduct=0001, bcdDevice= 0.00
[  309.129183][ T3074] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.138481][   T60] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  309.178329][    T6] usb 10-1: new full-speed USB device number 15 using dummy_hcd
[  309.288301][   T60] usb 8-1: device descriptor read/64, error -71
[  309.369430][    T6] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  309.379581][    T6] usb 10-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  309.393297][    T6] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  309.402270][    T6] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  309.410314][    T6] usb 10-1: SerialNumber: syz
[  309.416109][    T6] cdc_ether 10-1:1.0: skipping garbage
[  309.421509][    T6] cdc_ether: probe of 10-1:1.0 failed with error -22
[  309.428173][    T6] usb-storage 10-1:1.0: USB Mass Storage device detected
[  309.437122][    T6] usb-storage 10-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  309.548767][ T3074] hid (null): report_id 0 is invalid
[  309.555255][ T3074] hid-generic 0003:245E:0001.0028: unknown main item tag 0x0
[  309.558301][   T60] usb 8-1: device descriptor read/64, error -71
[  309.562703][ T3074] hid-generic 0003:245E:0001.0028: ignoring exceeding usage max
[  309.576663][ T3074] hid-generic 0003:245E:0001.0028: report_id 0 is invalid
[  309.583633][ T3074] hid-generic 0003:245E:0001.0028: item 0 0 1 8 parsing failed
[  309.591199][ T3074] hid-generic: probe of 0003:245E:0001.0028 failed with error -22
[  309.616923][ T1684] usb 10-1: USB disconnect, device number 15
[  309.648376][  T344] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  309.688474][   T60] usb usb8-port1: attempt power cycle
[  309.750576][ T3074] usb 3-1: USB disconnect, device number 37
[  309.829308][  T344] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  309.840054][  T828] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  309.847387][  T344] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  309.857323][  T344] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  309.870150][  T344] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  309.879015][  T344] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.887496][  T344] usb 7-1: config 0 descriptor??
[  310.048329][  T828] usb 1-1: Using ep0 maxpacket: 8
[  310.054163][  T828] usb 1-1: config index 0 descriptor too short (expected 30482, got 18)
[  310.062336][  T828] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  310.070816][  T828] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101
[  310.080703][  T828] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  310.089586][  T828] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  310.097872][  T828] usb 1-1: Product: syz
[  310.098926][ T5615] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  310.101892][   T60] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  310.112069][ T5615] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  310.117686][  T828] usb 1-1: Manufacturer: syz
[  310.130258][  T828] usb 1-1: config 0 descriptor??
[  310.181372][  T828] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  310.188892][   T60] usb 8-1: device descriptor read/8, error -71
[  310.195955][  T828] usb 1-1: Detected FT2232C/D
[  310.337027][  T828] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  310.345400][  T828] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  310.352676][   T60] usb 8-1: device descriptor read/8, error -71
[  310.359675][  T344] plantronics 0003:047F:FFFF.0029: unknown main item tag 0x0
[  310.367099][  T344] plantronics 0003:047F:FFFF.0029: No inputs registered, leaving
[  310.375830][  T828] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  310.385368][  T828] usb 1-1: USB disconnect, device number 34
[  310.394454][  T344] plantronics 0003:047F:FFFF.0029: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  310.417663][  T828] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  310.427822][  T828] ftdi_sio 1-1:0.0: device disconnected
[  310.538288][ T3074] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  310.638325][   T60] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  310.679296][   T60] usb 8-1: device descriptor read/8, error -71
[  310.728309][ T3074] usb 3-1: Using ep0 maxpacket: 8
[  310.734331][ T3074] usb 3-1: config index 0 descriptor too short (expected 30482, got 18)
[  310.742707][ T3074] usb 3-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  310.751831][ T3074] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 101
[  310.762459][ T3074] usb 3-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  310.771579][ T3074] usb 3-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  310.779829][ T3074] usb 3-1: Product: syz
[  310.784035][ T3074] usb 3-1: Manufacturer: syz
[  310.790855][ T3074] usb 3-1: config 0 descriptor??
[  310.798145][ T3074] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  310.806795][ T3074] usb 3-1: Detected FT2232C/D
[  310.829273][   T60] usb 8-1: device descriptor read/8, error -71
[  310.948372][   T60] usb usb8-port1: unable to enumerate USB device
[  310.998337][ T3074] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  311.007908][ T3074] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  311.018337][ T3074] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  311.027563][ T3074] usb 3-1: USB disconnect, device number 38
[  311.035099][ T3074] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  311.045008][ T3074] ftdi_sio 3-1:0.0: device disconnected
[  311.191398][ T5650] loop7: detected capacity change from 0 to 1024
[  311.219292][ T5650] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  311.243018][ T5650] EXT4-fs (loop7): orphan cleanup on readonly fs
[  311.251016][ T5650] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  311.264192][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.271173][ T5650] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #3: comm syz.7.1631: mark_inode_dirty error
[  311.283069][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.298450][ T5650] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:477: comm syz.7.1631: Invalid block bitmap block 3 in block_group 0
[  311.312012][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.318410][ T5650] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  311.327784][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.335022][ T5650] EXT4-fs error (device loop7): ext4_dirty_inode:6091: inode #3: comm syz.7.1631: mark_inode_dirty error
[  311.346288][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.352651][ T5650] Quota error (device loop7): write_blk: dquota write failed
[  311.359902][ T5650] EXT4-fs error (device loop7): ext4_map_blocks:634: inode #3: block 1: comm syz.7.1631: lblock 6 mapped to illegal pblock 1 (length 1)
[  311.373806][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.380168][ T5650] Quota error (device loop7): write_blk: dquota write failed
[  311.387430][ T5650] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[  311.397125][ T5650] EXT4-fs error (device loop7): ext4_map_blocks:634: inode #3: block 48: comm syz.7.1631: lblock 0 mapped to illegal pblock 48 (length 1)
[  311.411369][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.417849][ T5650] Quota error (device loop7): v2_write_file_info: Can't write info structure
[  311.426520][ T5650] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.1631: Failed to acquire dquot type 0
[  311.437726][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.444134][ T5650] EXT4-fs error (device loop7): ext4_map_blocks:634: inode #3: block 49: comm syz.7.1631: lblock 1 mapped to illegal pblock 49 (length 1)
[  311.458395][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.468299][ T5650] Quota error (device loop7): do_insert_tree: Can't read tree quota block 1
[  311.476979][ T5650] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  311.486783][ T5650] EXT4-fs error (device loop7): ext4_acquire_dquot:6788: comm syz.7.1631: Failed to acquire dquot type 0
[  311.498093][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.504486][ T5650] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  311.513892][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.520302][ T5650] EXT4-fs error (device loop7): ext4_evict_inode:279: inode #15: comm syz.7.1631: mark_inode_dirty error
[  311.531315][   T60] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  311.542357][ T5650] EXT4-fs (loop7): Remounting filesystem read-only
[  311.558368][ T5650] EXT4-fs warning (device loop7): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  311.578607][ T5650] EXT4-fs (loop7): 1 orphan inode deleted
[  311.584343][ T5650] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  311.667536][ T5658] loop2: detected capacity change from 0 to 1024
[  311.704797][ T5658] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  311.719349][   T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.736241][   T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  311.748767][ T5658] EXT4-fs (loop2): orphan cleanup on readonly fs
[  311.761155][   T60] usb 10-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  311.769144][ T5658] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  311.779350][   T60] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.789572][   T60] usb 10-1: config 0 descriptor??
[  311.806046][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  311.812717][ T5658] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1633: mark_inode_dirty error
[  311.824518][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  311.831621][ T5658] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.1633: Invalid block bitmap block 3 in block_group 0
[  311.845947][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  311.853183][ T5658] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  311.863280][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  311.878347][ T5658] EXT4-fs error (device loop2): ext4_dirty_inode:6091: inode #3: comm syz.2.1633: mark_inode_dirty error
[  311.942427][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  311.958673][ T5658] Quota error (device loop2): write_blk: dquota write failed
[  311.980995][ T5658] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm syz.2.1633: lblock 6 mapped to illegal pblock 1 (length 1)
[  312.018943][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.025309][ T5658] Quota error (device loop2): write_blk: dquota write failed
[  312.033346][ T5658] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  312.043106][ T5658] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.1633: lblock 0 mapped to illegal pblock 48 (length 1)
[  312.083899][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.090774][ T5658] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  312.099790][ T5658] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1633: Failed to acquire dquot type 0
[  312.111101][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.117620][ T5658] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 49: comm syz.2.1633: lblock 1 mapped to illegal pblock 49 (length 1)
[  312.132643][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.139024][ T5658] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.1633: Failed to acquire dquot type 0
[  312.150355][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.156703][ T5658] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[  312.166376][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.172797][ T5658] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.1633: mark_inode_dirty error
[  312.184058][ T5658] EXT4-fs (loop2): Remounting filesystem read-only
[  312.195914][ T5658] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  312.226279][ T5658] EXT4-fs (loop2): 1 orphan inode deleted
[  312.237354][   T60] hid (null): bogus close delimiter
[  312.243844][ T5658] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  312.285070][ T5671] loop6: detected capacity change from 0 to 512
[  312.302112][ T5671] EXT4-fs: Ignoring removed i_version option
[  312.311247][ T5671] EXT4-fs: Ignoring removed mblk_io_submit option
[  312.323779][ T5671] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  312.348404][  T828] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  312.359347][ T5671] EXT4-fs (loop6): 1 truncate cleaned up
[  312.364812][ T5671] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  312.381956][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  312.433188][ T5675] loop6: detected capacity change from 0 to 512
[  312.443449][   T60] usb 10-1: string descriptor 0 read error: -22
[  312.498630][  T330] usb 7-1: USB disconnect, device number 16
[  312.505938][ T5675] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.538319][  T828] usb 1-1: Using ep0 maxpacket: 8
[  312.544279][  T828] usb 1-1: config index 0 descriptor too short (expected 30482, got 18)
[  312.558962][  T828] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32
[  312.568888][  T828] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101
[  312.618994][  T828] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00
[  312.627875][  T828] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0
[  312.697862][  T828] usb 1-1: Product: syz
[  312.701909][  T828] usb 1-1: Manufacturer: syz
[  312.707599][   T60] uclogic 0003:256C:006D.002A: failed retrieving string descriptor #200: -71
[  312.716892][  T828] usb 1-1: config 0 descriptor??
[  312.721751][   T60] uclogic 0003:256C:006D.002A: failed retrieving pen parameters: -71
[  312.733154][   T60] uclogic 0003:256C:006D.002A: failed probing pen v2 parameters: -71
[  312.741517][  T828] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  312.748969][   T60] uclogic 0003:256C:006D.002A: failed probing parameters: -71
[  312.756512][  T828] usb 1-1: Detected FT2232C/D
[  312.761177][   T60] uclogic: probe of 0003:256C:006D.002A failed with error -71
[  312.773362][   T60] usb 10-1: USB disconnect, device number 16
[  312.941905][  T828] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  312.958468][  T828] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  312.975742][  T828] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  312.984449][  T828] usb 1-1: USB disconnect, device number 35
[  313.008823][  T828] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  313.028290][  T828] ftdi_sio 1-1:0.0: device disconnected
[  313.121849][ T5683] loop7: detected capacity change from 0 to 512
[  313.149857][ T5683] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.958352][  T828] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  314.708210][ T5718] loop9: detected capacity change from 0 to 512
[  314.710254][  T828] usb 7-1: Using ep0 maxpacket: 16
[  314.760905][  T828] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  314.771016][  T828] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  314.781745][  T828] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 22
[  314.809797][ T5718] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  314.842012][  T828] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  314.853850][  T828] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  314.861765][  T828] usb 7-1: SerialNumber: syz
[  314.871974][  T828] cdc_acm 7-1:1.0: Control and data interfaces are not separated!
[  314.881329][  T828] cdc_acm 7-1:1.0: This needs exactly 3 endpoints
[  314.887689][  T828] cdc_acm: probe of 7-1:1.0 failed with error -22
[  314.961951][ T5729] fuse: Bad value for 'fd'
[  315.150470][  T828] usb 7-1: USB disconnect, device number 17
[  315.568307][  T316] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  315.772055][  T316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  315.785802][  T316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  315.795519][  T316] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  315.804500][  T316] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.048283][ T3074] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  316.150081][  T316] usb 3-1: config 0 descriptor??
[  316.229924][ T3074] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.232365][ T5760] loop9: detected capacity change from 0 to 512
[  316.240768][ T3074] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.257714][ T3074] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  316.262051][ T5760] EXT4-fs mount: 8 callbacks suppressed
[  316.262068][ T5760] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  316.270713][ T3074] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  316.275990][ T5760] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.284928][ T3074] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.316849][ T3074] usb 7-1: config 0 descriptor??
[  316.322571][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  316.477311][   T28] kauditd_printk_skb: 94 callbacks suppressed
[  316.477326][   T28] audit: type=1400 audit(1734781438.102:1353): avc:  denied  { unmount } for  pid=5166 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  316.530565][ T5750] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  316.540646][ T5750] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.556333][  T316] hid (null): bogus close delimiter
[  316.613923][ T2992] Bluetooth: hci0: Frame reassembly failed (-84)
[  316.647315][ T5787] loop7: detected capacity change from 0 to 512
[  316.662249][ T5787] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  316.671138][ T5787] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.698937][ T2524] EXT4-fs (loop7): unmounting filesystem.
[  316.762148][  T316] usb 3-1: string descriptor 0 read error: -22
[  316.769236][ T3074] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  316.778623][ T3074] plantronics 0003:047F:FFFF.002C: No inputs registered, leaving
[  316.787280][ T3074] plantronics 0003:047F:FFFF.002C: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  316.969874][  T316] uclogic 0003:256C:006D.002B: failed retrieving string descriptor #200: -71
[  316.980173][  T316] uclogic 0003:256C:006D.002B: failed retrieving pen parameters: -71
[  317.212819][  T316] uclogic 0003:256C:006D.002B: failed probing pen v2 parameters: -71
[  317.220898][  T316] uclogic 0003:256C:006D.002B: failed probing parameters: -71
[  317.228333][  T316] uclogic: probe of 0003:256C:006D.002B failed with error -71
[  317.238854][  T316] usb 3-1: USB disconnect, device number 39
[  317.738228][ T5818] loop2: detected capacity change from 0 to 512
[  317.757466][ T5818] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  317.766519][ T5818] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.795797][ T5824] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  317.811764][ T3684] EXT4-fs (loop2): unmounting filesystem.
[  318.188321][ T3074] usb 8-1: new full-speed USB device number 31 using dummy_hcd
[  318.369406][ T3074] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  318.380556][ T3074] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  318.394521][ T3074] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  318.403743][ T3074] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  318.411794][ T3074] usb 8-1: SerialNumber: syz
[  318.483897][ T3074] cdc_ether 8-1:1.0: skipping garbage
[  318.489325][ T3074] cdc_ether: probe of 8-1:1.0 failed with error -22
[  318.495930][ T3074] usb-storage 8-1:1.0: USB Mass Storage device detected
[  318.503978][ T3074] usb-storage 8-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  318.531011][  T316] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  318.639485][ T5854] loop6: detected capacity change from 0 to 512
[  318.648306][ T3757] Bluetooth: hci0: command 0x1003 tx timeout
[  318.648316][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  318.660736][ T5783] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  318.664377][ T5854] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  318.675850][ T5854] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.686853][ T3074] usb 8-1: USB disconnect, device number 31
[  318.713233][ T3277] EXT4-fs (loop6): unmounting filesystem.
[  318.719945][  T316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  318.731326][  T316] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  318.743442][  T316] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  318.752331][  T316] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.761761][  T316] usb 3-1: config 0 descriptor??
[  318.952736][ T5868] loop9: detected capacity change from 0 to 512
[  318.970539][ T5868] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  318.979478][ T5868] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.002546][ T2983] EXT4-fs (loop9): unmounting filesystem.
[  319.200308][  T316] hid (null): bogus close delimiter
[  319.228325][    T6] usb 7-1: reset high-speed USB device number 18 using dummy_hcd
[  319.346011][ T3758] Bluetooth: hci0: sending frame failed (-49)
[  319.352631][ T5855] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  319.362288][ T5888] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  319.457952][  T316] usb 3-1: string descriptor 0 read error: -22
[  319.518300][    T6] usb 7-1: device descriptor read/64, error -71
[  319.638301][  T828] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  319.670520][  T316] uclogic 0003:256C:006D.002D: failed retrieving string descriptor #200: -71
[  319.679945][  T316] uclogic 0003:256C:006D.002D: failed retrieving pen parameters: -71
[  319.687832][  T316] uclogic 0003:256C:006D.002D: failed probing pen v2 parameters: -71
[  319.695828][  T316] uclogic 0003:256C:006D.002D: failed probing parameters: -71
[  319.703430][  T316] uclogic: probe of 0003:256C:006D.002D failed with error -71
[  319.711555][  T316] usb 3-1: USB disconnect, device number 40
[  319.718399][    T6] ==================================================================
[  319.726268][    T6] BUG: KASAN: use-after-free in enqueue_timer+0xa6/0x480
[  319.733122][    T6] Write of size 8 at addr ffff888115bc8a00 by task kworker/0:0/6
[  319.740675][    T6] 
[  319.742847][    T6] CPU: 0 PID: 6 Comm: kworker/0:0 Not tainted 6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  319.752305][    T6] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  319.762207][    T6] Workqueue: events __usb_queue_reset_device
[  319.768016][    T6] Call Trace:
[  319.771141][    T6]  <TASK>
[  319.773920][    T6]  dump_stack_lvl+0x151/0x1b7
[  319.778436][    T6]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  319.783724][    T6]  ? _printk+0xd1/0x111
[  319.787718][    T6]  ? __virt_addr_valid+0x242/0x2f0
[  319.792665][    T6]  print_report+0x158/0x4e0
[  319.797006][    T6]  ? __virt_addr_valid+0x242/0x2f0
[  319.801953][    T6]  ? kasan_complete_mode_report_info+0x90/0x1b0
[  319.808026][    T6]  ? enqueue_timer+0xa6/0x480
[  319.812542][    T6]  kasan_report+0x13c/0x170
[  319.816881][    T6]  ? enqueue_timer+0xa6/0x480
[  319.818291][  T828] usb 8-1: Using ep0 maxpacket: 8
[  319.821396][    T6]  __asan_report_store8_noabort+0x17/0x20
[  319.827551][  T828] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[  319.831812][    T6]  enqueue_timer+0xa6/0x480
[  319.831840][    T6]  __mod_timer+0x8d3/0xcf0
[  319.831861][    T6]  ? mod_timer_pending+0x30/0x30
[  319.840001][  T828] usb 8-1: config 179 has no interface number 0
[  319.844221][    T6]  ? __tasklet_schedule+0x20/0x20
[  319.848597][  T828] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  319.853247][    T6]  ? _raw_spin_lock+0xa4/0x1b0
[  319.853271][    T6]  ? _raw_spin_trylock_bh+0x190/0x190
[  319.859550][  T828] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  319.864188][    T6]  schedule_timeout+0x187/0x380
[  319.864211][    T6]  ? console_conditional_schedule+0x10/0x10
[  319.875237][  T828] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  319.879636][    T6]  ? update_process_times+0x1b0/0x1b0
[  319.879665][    T6]  ? usb_submit_urb+0x1421/0x1840
[  319.884892][  T828] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  319.895899][    T6]  wait_for_common+0x39a/0x640
[  319.895924][    T6]  ? kthread+0x26d/0x300
[  319.895948][    T6]  ? ret_from_fork+0x1f/0x30
[  319.900630][  T828] usb 8-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  319.906281][    T6]  ? wait_for_completion+0x20/0x20
[  319.919422][  T828] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  319.922423][    T6]  ? usb_submit_urb+0x118c/0x1840
[  319.927314][  T828] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.938482][    T6]  wait_for_completion_timeout+0xe/0x10
[  319.938507][    T6]  usb_start_wait_urb+0x177/0x350
[  319.938523][    T6]  ? usb_api_blocking_completion+0xb0/0xb0
[  319.938540][    T6]  ? __kasan_check_write+0x14/0x20
[  319.938557][    T6]  usb_control_msg+0x2ad/0x4c0
[  319.938571][    T6]  ? usb_anchor_empty+0x40/0x40
[  319.943391][  T344] usb 1-1: new full-speed USB device number 36 using dummy_hcd
[  319.947161][    T6]  ? console_conditional_schedule+0x10/0x10
[  319.947185][    T6]  ? kfree+0x7a/0xf0
[  320.038063][    T6]  ? update_process_times+0x1b0/0x1b0
[  320.043240][    T6]  hub_ext_port_status+0xfe/0x6b0
[  320.048103][    T6]  hub_port_reset+0x8ed/0x1c10
[  320.052703][    T6]  ? hub_power_on+0x2d0/0x2d0
[  320.057213][    T6]  ? update_process_times+0x1b0/0x1b0
[  320.062423][    T6]  ? get_bMaxPacketSize0+0x441/0x620
[  320.067543][    T6]  ? __kasan_kmalloc+0x9c/0xb0
[  320.072145][    T6]  hub_port_init+0x98e/0x2830
[  320.076658][    T6]  ? _raw_spin_unlock_irq+0x4d/0x70
[  320.081691][    T6]  usb_reset_and_verify_device+0x44b/0x1180
[  320.087420][    T6]  ? mutex_lock+0xb1/0x1e0
[  320.091671][    T6]  ? usb_reset_device+0xa90/0xa90
[  320.096533][    T6]  ? alloc_page_ext+0x3a/0x50
[  320.101047][    T6]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  320.106688][    T6]  usb_reset_device+0x558/0xa90
[  320.111375][    T6]  __usb_queue_reset_device+0x75/0xa0
[  320.116584][    T6]  process_one_work+0x73d/0xcb0
[  320.121271][    T6]  worker_thread+0xa60/0x1260
[  320.125786][    T6]  kthread+0x26d/0x300
[  320.129687][    T6]  ? worker_clr_flags+0x1a0/0x1a0
[  320.134548][    T6]  ? kthread_blkcg+0xd0/0xd0
[  320.138975][    T6]  ret_from_fork+0x1f/0x30
[  320.143229][    T6]  </TASK>
[  320.146100][    T6] 
[  320.148261][    T6] Allocated by task 5783:
[  320.152430][    T6]  kasan_set_track+0x4b/0x70
[  320.156855][    T6]  kasan_save_alloc_info+0x1f/0x30
[  320.161803][    T6]  __kasan_kmalloc+0x9c/0xb0
[  320.166231][    T6]  __kmalloc+0xb4/0x1e0
[  320.170221][    T6]  hci_alloc_dev_priv+0x27/0x1c00
[  320.175083][    T6]  hci_uart_tty_ioctl+0x401/0xa70
[  320.179942][    T6]  tty_ioctl+0x903/0xc50
[  320.184021][    T6]  __se_sys_ioctl+0x114/0x190
[  320.188533][    T6]  __x64_sys_ioctl+0x7b/0x90
[  320.192960][    T6]  x64_sys_call+0x98/0x9a0
[  320.197213][    T6]  do_syscall_64+0x3b/0xb0
[  320.201467][    T6]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.207195][    T6] 
[  320.209365][    T6] Freed by task 5783:
[  320.213186][    T6]  kasan_set_track+0x4b/0x70
[  320.217609][    T6]  kasan_save_free_info+0x2b/0x40
[  320.222471][    T6]  ____kasan_slab_free+0x131/0x180
[  320.227421][    T6]  __kasan_slab_free+0x11/0x20
[  320.232021][    T6]  __kmem_cache_free+0x21d/0x410
[  320.236793][    T6]  kfree+0x7a/0xf0
[  320.240353][    T6]  hci_release_dev+0x14d3/0x1640
[  320.245126][    T6]  bt_host_release+0x83/0xa0
[  320.249560][    T6]  device_release+0x95/0x1c0
[  320.253978][    T6]  kobject_put+0x178/0x260
[  320.258231][    T6]  put_device+0x1f/0x30
[  320.262245][    T6]  hci_dev_cmd+0x2be/0x9b0
[  320.266478][    T6]  hci_sock_ioctl+0x415/0x7f0
[  320.270991][    T6]  sock_do_ioctl+0x152/0x450
[  320.275416][    T6]  sock_ioctl+0x455/0x740
[  320.279582][    T6]  __se_sys_ioctl+0x114/0x190
[  320.284096][    T6]  __x64_sys_ioctl+0x7b/0x90
[  320.288522][    T6]  x64_sys_call+0x98/0x9a0
[  320.292776][    T6]  do_syscall_64+0x3b/0xb0
[  320.297028][    T6]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.302759][    T6] 
[  320.304927][    T6] Last potentially related work creation:
[  320.310484][    T6]  kasan_save_stack+0x3b/0x60
[  320.314998][    T6]  __kasan_record_aux_stack+0xb4/0xc0
[  320.320203][    T6]  kasan_record_aux_stack_noalloc+0xb/0x10
[  320.325844][    T6]  insert_work+0x56/0x310
[  320.330011][    T6]  __queue_work+0x9b6/0xd70
[  320.334349][    T6]  queue_work_on+0x105/0x170
[  320.338776][    T6]  __hci_cmd_sync_sk+0xc2a/0xf70
[  320.343550][    T6]  hci_cmd_sync_status+0x52/0x130
[  320.348416][    T6]  hci_dev_cmd+0x39e/0x9b0
[  320.352665][    T6]  hci_sock_ioctl+0x415/0x7f0
[  320.357179][    T6]  sock_do_ioctl+0x152/0x450
[  320.361604][    T6]  sock_ioctl+0x455/0x740
[  320.365772][    T6]  __se_sys_ioctl+0x114/0x190
[  320.370284][    T6]  __x64_sys_ioctl+0x7b/0x90
[  320.374713][    T6]  x64_sys_call+0x98/0x9a0
[  320.378964][    T6]  do_syscall_64+0x3b/0xb0
[  320.383218][    T6]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.388945][    T6] 
[  320.391116][    T6] Second to last potentially related work creation:
[  320.397543][    T6]  kasan_save_stack+0x3b/0x60
[  320.402051][    T6]  __kasan_record_aux_stack+0xb4/0xc0
[  320.407260][    T6]  kasan_record_aux_stack_noalloc+0xb/0x10
[  320.413036][    T6]  insert_work+0x56/0x310
[  320.417199][    T6]  __queue_work+0x9b6/0xd70
[  320.421539][    T6]  queue_work_on+0x105/0x170
[  320.425966][    T6]  hci_cmd_timeout+0x199/0x200
[  320.430566][    T6]  process_one_work+0x73d/0xcb0
[  320.435253][    T6]  worker_thread+0xa60/0x1260
[  320.439771][    T6]  kthread+0x26d/0x300
[  320.443671][    T6]  ret_from_fork+0x1f/0x30
[  320.447926][    T6] 
[  320.450098][    T6] The buggy address belongs to the object at ffff888115bc8000
[  320.450098][    T6]  which belongs to the cache kmalloc-8k of size 8192
[  320.463984][    T6] The buggy address is located 2560 bytes inside of
[  320.463984][    T6]  8192-byte region [ffff888115bc8000, ffff888115bca000)
[  320.477261][    T6] 
[  320.479431][    T6] The buggy address belongs to the physical page:
[  320.485683][    T6] page:ffffea000456f200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x115bc8
[  320.495748][    T6] head:ffffea000456f200 order:3 compound_mapcount:0 compound_pincount:0
[  320.503918][    T6] flags: 0x4000000000010200(slab|head|zone=1)
[  320.509827][    T6] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100043500
[  320.518238][    T6] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  320.526653][    T6] page dumped because: kasan: bad access detected
[  320.532907][    T6] page_owner tracks the page as allocated
[  320.538452][    T6] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 3503, tgid 3503 (syz-executor), ts 206157774608, free_ts 205570235703
[  320.561201][    T6]  post_alloc_hook+0x213/0x220
[  320.565793][    T6]  prep_new_page+0x1b/0x110
[  320.570138][    T6]  get_page_from_freelist+0x2f41/0x2fc0
[  320.575512][    T6]  __alloc_pages+0x234/0x610
[  320.579940][    T6]  alloc_slab_page+0x6c/0xf0
[  320.584366][    T6]  new_slab+0x90/0x3e0
[  320.588271][    T6]  ___slab_alloc+0x6f9/0xb80
[  320.592699][    T6]  __slab_alloc+0x5d/0xa0
[  320.596863][    T6]  __kmem_cache_alloc_node+0x207/0x2a0
[  320.602159][    T6]  __kmalloc_node+0xa3/0x1e0
[  320.606585][    T6]  kvmalloc_node+0x221/0x640
[  320.611011][    T6]  wg_packet_queue_init+0x94/0x330
[  320.615958][    T6]  wg_newlink+0x47c/0x7d0
[  320.620126][    T6]  rtnl_newlink+0x14c6/0x2030
[  320.624640][    T6]  rtnetlink_rcv_msg+0x9a5/0xca0
[  320.629411][    T6]  netlink_rcv_skb+0x1cd/0x410
[  320.634011][    T6] page last free stack trace:
[  320.638527][    T6]  free_unref_page_prepare+0x83d/0x850
[  320.643821][    T6]  free_unref_page+0xb2/0x5c0
[  320.648351][    T6]  __free_pages+0x61/0xf0
[  320.652500][    T6]  __free_slab+0xce/0x1a0
[  320.656671][    T6]  __unfreeze_partials+0x165/0x1a0
[  320.661614][    T6]  put_cpu_partial+0xa9/0x100
[  320.666131][    T6]  __slab_free+0x1c8/0x280
[  320.670380][    T6]  ___cache_free+0xc6/0xd0
[  320.674634][    T6]  qlist_free_all+0xc5/0x140
[  320.679060][    T6]  kasan_quarantine_reduce+0x15a/0x180
[  320.684354][    T6]  __kasan_slab_alloc+0x24/0x80
[  320.689042][    T6]  slab_post_alloc_hook+0x53/0x2c0
[  320.693988][    T6]  __kmem_cache_alloc_node+0x193/0x2a0
[  320.699281][    T6]  __kmalloc_node+0xa3/0x1e0
[  320.703708][    T6]  kvmalloc_node+0x221/0x640
[  320.708135][    T6]  __nf_hook_entries_try_shrink+0x33b/0x720
[  320.713869][    T6] 
[  320.716048][    T6] Memory state around the buggy address:
[  320.721505][    T6]  ffff888115bc8900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  320.729402][    T6]  ffff888115bc8980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  320.737301][    T6] >ffff888115bc8a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  320.745195][    T6]                    ^
[  320.749105][    T6]  ffff888115bc8a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  320.757004][    T6]  ffff888115bc8b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  320.764996][    T6] ==================================================================
[  320.772923][    T6] Disabling lock debugging due to kernel taint
[  320.779341][    C0] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  320.790866][    C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  320.799113][    C0] CPU: 0 PID: 6 Comm: kworker/0:0 Tainted: G    B              6.1.118-syzkaller-00074-g3e3f2b9e9fca #0
[  320.810047][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  320.819947][    C0] Workqueue: events __usb_queue_reset_device
[  320.825755][    C0] RIP: 0010:__queue_work+0x4f1/0xd70
[  320.830879][    C0] Code: 39 03 0f 84 40 01 00 00 e8 fc 6b 2a 00 4c 89 e7 e8 e4 d3 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 30 df 71 00 49 8b 3e e8 98 cc d6
[  320.850320][    C0] RSP: 0018:ffffc90000007c78 EFLAGS: 00010046
[  320.856222][    C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888100385100
[  320.864032][    C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  320.871843][    C0] RBP: ffffc90000007d00 R08: ffffffff814b186b R09: 0000000000000007
[  320.879656][    C0] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff888115bc89c8
[  320.887467][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888115bc89e0
[  320.895278][    C0] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  320.904044][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  320.910468][    C0] CR2: 00007fe361039f84 CR3: 0000000110820000 CR4: 00000000003526b0
[  320.918283][    C0] DR0: 0000000000002800 DR1: 0000000000000000 DR2: 0000000000000000
[  320.926090][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  320.933903][    C0] Call Trace:
[  320.937027][    C0]  <IRQ>
[  320.939718][    C0]  ? __die_body+0x62/0xb0
[  320.943890][    C0]  ? die_addr+0x9f/0xd0
[  320.947878][    C0]  ? exc_general_protection+0x317/0x4c0
[  320.953266][    C0]  ? asm_exc_general_protection+0x27/0x30
[  320.958816][    C0]  ? __queue_work+0x28b/0xd70
[  320.963328][    C0]  ? __queue_work+0x4f1/0xd70
[  320.967842][    C0]  ? __queue_work+0x29c/0xd70
[  320.972355][    C0]  delayed_work_timer_fn+0x61/0x80
[  320.977299][    C0]  ? queue_work_node+0x1d0/0x1d0
[  320.982072][    C0]  call_timer_fn+0x3b/0x2d0
[  320.986418][    C0]  ? queue_work_node+0x1d0/0x1d0
[  320.991187][    C0]  __run_timers+0x756/0xa10
[  320.995531][    C0]  ? calc_index+0x270/0x270
[  320.999868][    C0]  ? usb_mon_deregister+0x40/0x40
[  321.004742][    C0]  ? tasklet_action_common+0x3ed/0x610
[  321.010023][    C0]  run_timer_softirq+0x69/0xf0
[  321.014622][    C0]  handle_softirqs+0x1db/0x650
[  321.019225][    C0]  ? irqtime_account_irq+0xdc/0x260
[  321.024257][    C0]  __irq_exit_rcu+0x52/0xf0
[  321.028596][    C0]  irq_exit_rcu+0x9/0x10
[  321.032673][    C0]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  321.038145][    C0]  </IRQ>
[  321.040919][    C0]  <TASK>
[  321.043698][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  321.049513][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x56/0x80
[  321.055761][    C0] Code: f5 0d 87 e8 cc 0a 9b fc 48 83 3d d4 05 ec 01 00 74 34 48 89 df e8 6e 0f 00 00 90 41 f7 c6 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 95 ae 2d fc 65 8b 05 56 7e e0 7a 85 c0 74 05 5b 41 5e 5d c3 e8
[  321.075205][    C0] RSP: 0018:ffffc900000671c0 EFLAGS: 00000206
[  321.081105][    C0] RAX: 0000000000000000 RBX: ffff8881f6e27b80 RCX: dffffc0000000000
[  321.088923][    C0] RDX: 0000000000000000 RSI: 0000000000000246 RDI: 0000000000000001
[  321.096731][    C0] RBP: ffffc900000671d0 R08: ffffffff8166c2c6 R09: ffffed103edc4f77
[  321.104543][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881f6e27b80
[  321.112354][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: ffffc900000672a0
[  321.120173][    C0]  ? enqueue_timer+0x1a6/0x480
[  321.124768][    C0]  __mod_timer+0x903/0xcf0
[  321.129019][    C0]  ? mod_timer_pending+0x30/0x30
[  321.133792][    C0]  ? __tasklet_schedule+0x20/0x20
[  321.138649][    C0]  ? _raw_spin_lock+0xa4/0x1b0
[  321.143253][    C0]  ? _raw_spin_trylock_bh+0x190/0x190
[  321.148463][    C0]  schedule_timeout+0x187/0x380
[  321.153148][    C0]  ? console_conditional_schedule+0x10/0x10
[  321.158876][    C0]  ? update_process_times+0x1b0/0x1b0
[  321.164084][    C0]  ? usb_submit_urb+0x1421/0x1840
[  321.168945][    C0]  wait_for_common+0x39a/0x640
[  321.173544][    C0]  ? kthread+0x26d/0x300
[  321.177623][    C0]  ? ret_from_fork+0x1f/0x30
[  321.182064][    C0]  ? wait_for_completion+0x20/0x20
[  321.186997][    C0]  ? usb_submit_urb+0x118c/0x1840
[  321.191859][    C0]  wait_for_completion_timeout+0xe/0x10
[  321.197240][    C0]  usb_start_wait_urb+0x177/0x350
[  321.202102][    C0]  ? usb_api_blocking_completion+0xb0/0xb0
[  321.207743][    C0]  ? __kasan_check_write+0x14/0x20
[  321.212688][    C0]  usb_control_msg+0x2ad/0x4c0
[  321.217377][    C0]  ? usb_anchor_empty+0x40/0x40
[  321.222063][    C0]  ? console_conditional_schedule+0x10/0x10
[  321.227791][    C0]  ? kfree+0x7a/0xf0
[  321.231524][    C0]  ? update_process_times+0x1b0/0x1b0
[  321.236729][    C0]  hub_ext_port_status+0xfe/0x6b0
[  321.241593][    C0]  hub_port_reset+0x8ed/0x1c10
[  321.246194][    C0]  ? hub_power_on+0x2d0/0x2d0
[  321.250703][    C0]  ? update_process_times+0x1b0/0x1b0
[  321.255912][    C0]  ? get_bMaxPacketSize0+0x441/0x620
[  321.261037][    C0]  ? __kasan_kmalloc+0x9c/0xb0
[  321.265634][    C0]  hub_port_init+0x98e/0x2830
[  321.270161][    C0]  ? _raw_spin_unlock_irq+0x4d/0x70
[  321.275185][    C0]  usb_reset_and_verify_device+0x44b/0x1180
[  321.280915][    C0]  ? mutex_lock+0xb1/0x1e0
[  321.285169][    C0]  ? usb_reset_device+0xa90/0xa90
[  321.290025][    C0]  ? alloc_page_ext+0x3a/0x50
[  321.294538][    C0]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  321.300181][    C0]  usb_reset_device+0x558/0xa90
[  321.304871][    C0]  __usb_queue_reset_device+0x75/0xa0
[  321.310073][    C0]  process_one_work+0x73d/0xcb0
[  321.314764][    C0]  worker_thread+0xa60/0x1260
[  321.319278][    C0]  kthread+0x26d/0x300
[  321.323177][    C0]  ? worker_clr_flags+0x1a0/0x1a0
[  321.328039][    C0]  ? kthread_blkcg+0xd0/0xd0
[  321.332464][    C0]  ret_from_fork+0x1f/0x30
[  321.336722][    C0]  </TASK>
[  321.339582][    C0] Modules linked in:
[  321.343321][    C0] ---[ end trace 0000000000000000 ]---
[  321.348608][    C0] RIP: 0010:__queue_work+0x4f1/0xd70
[  321.353760][    C0] Code: 39 03 0f 84 40 01 00 00 e8 fc 6b 2a 00 4c 89 e7 e8 e4 d3 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 30 df 71 00 49 8b 3e e8 98 cc d6
[  321.373172][    C0] RSP: 0018:ffffc90000007c78 EFLAGS: 00010046
[  321.379079][    C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888100385100
[  321.386886][    C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  321.394696][    C0] RBP: ffffc90000007d00 R08: ffffffff814b186b R09: 0000000000000007
[  321.402515][    C0] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff888115bc89c8
[  321.410460][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888115bc89e0
[  321.418273][    C0] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  321.427124][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  321.433543][    C0] CR2: 00007fe361039f84 CR3: 0000000110820000 CR4: 00000000003526b0
[  321.441355][    C0] DR0: 0000000000002800 DR1: 0000000000000000 DR2: 0000000000000000
[  321.449180][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  321.456979][    C0] Kernel panic - not syncing: Fatal exception in interrupt
[  321.464256][    C0] Kernel Offset: disabled
[  321.468375][    C0] Rebooting in 86400 seconds..