last executing test programs:

3m21.981396567s ago: executing program 4 (id=136):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
read(r0, &(0x7f0000000700)=""/40, 0x28)

3m20.975103808s ago: executing program 4 (id=141):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x80800, 0x19f)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000080)=@v2={0x2, @aes128, 0x0, '\x00', @auto="25dc7eaa3d861f19173140e4e5445bd7"})

3m20.482831118s ago: executing program 4 (id=143):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x60088b0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000001a00), 0x802, 0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000001740)='9', 0x1}], 0x20)

3m19.96797278s ago: executing program 4 (id=146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYRES16, @ANYRES16=0x0, @ANYBLOB="010025bd70009f5c2b31e68c010008000300", @ANYRES32=0x0, @ANYRESDEC=r0], 0x1c}, 0x1, 0x0, 0x0, 0x4000015}, 0x80)
openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x502942, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r1, 0x0, 0x4004)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x324)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r4, 0x0, 0x11)

3m18.828957742s ago: executing program 4 (id=159):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000023000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ppoll(&(0x7f0000000140)=[{r2}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0e00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x50)
close(r0)

3m18.60008065s ago: executing program 4 (id=160):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000280)=0x1)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = inotify_init1(0x800)
inotify_add_watch(r2, &(0x7f0000000100)='./cgroup\x00', 0x24000042)

3m18.092593501s ago: executing program 32 (id=160):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000280)=0x1)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = inotify_init1(0x800)
inotify_add_watch(r2, &(0x7f0000000100)='./cgroup\x00', 0x24000042)

4.202001271s ago: executing program 3 (id=2313):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\n\x00\x00'], 0x50)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

3.395880326s ago: executing program 3 (id=2317):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)={0x1c, 0xb, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4800)

3.192800652s ago: executing program 3 (id=2320):
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
socket$nl_audit(0x10, 0x3, 0x9)

3.147830466s ago: executing program 3 (id=2323):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

3.147250326s ago: executing program 1 (id=2326):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0x310, 0x5002004a, 0xb, 0x0, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0x0, 0x36}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x61, 0x0, 0x0, 0x2900}, {0x16}, {}, {}, {}, {0x7, 0x10}, {}, {0x0, 0x0, 0x0, 0x10000000}, {}, {0x0, 0x0, 0x0, 0x10000}, {}, {}, {}, {0x0, 0x0, 0x2}, {0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0xfffe}, {0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x2da9}, {}, {}, {}, {0x1005}, {}, {0x0, 0x80}, {0x0, 0x0, 0x80}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x2}, {0x5}, {0x0, 0xd}, {0x0, 0x9}, {}, {0x0, 0x0, 0xc}, {}, {0x0, 0x0, 0x0, 0x8000}, {}, {0x0, 0x0, 0x80}]}}, @common=@ttl={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r8}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a", @ANYRESOCT, @ANYRES32=r7, @ANYRESDEC], 0x1, 0x150e, &(0x7f0000001580)="$eJzs3Qu4TtX2MPAx5pyLTeJNcp9jjsWbXCZJkkuSXJIkOZLklpAkSRISm9ySkITck9xDcgvJ/X7LPUmOJElCQpL5Pep0nHM6/6/z/875f87/7PF7nvW8czxzjbnGMuz9rrWed+/9dYdBVepVrViHmeGfgr+8pAJACgD0BYAsABABQMmsJbNems+gMfWfO4j413pg6pWuQFxJ0v+0Tfqftkn/0zbpf9om/U/bpP9pm/Q/bZP+C5GWbZ2W6xrZ0u72zz//T/nlRZ7//y8k7///4dT/fVr6/5/mdIb/zt7S//8kF0MI/70M6X/aJv1P26T/aZv0P22T/qdt0n8h0rIr89w5HQBc+WffsuW65kr//xNCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIkTacC5cZAPh1fKXrEkIIIYQQQgghxL9OSH+lKxBCCCGEEEIIIcT/PAQFGgxEkA7SQwpkgIxwFWSCqyEzZIEEXANZ4VrIBtdBdsgBOSEX5IY8kBcsEDhgiCEf5IckXA8F4AYoCIWgMBQBD0WhGNwIxeEmKAE3Q0m4BUrBrVAaykBZKAe3QXm4HSrAHVAR7oRKUBmqQFW4C6rB3VAd7oEacC/UhPugFtwPteEPUAcegLrwINSDh6A+PAwNoCE0gsbQ5P8p/3noAi9AV+gGqdAdesCL0BN6QW/oA33hJegHL0N/eAUGwEAYBK/CYHgNhsDrMBSGwXB4A0bASBgFo2EMjIVx8CaMh7dgArwNE2ESTIYpMBWmwXR4B2bATJgF78JseA/mwFyYB/NhAbwPC2ERLIYPYAl8CEthGSyHFfAjrILVsAbWwjpYDxtgI2yCzbAFtsJHsA22ww7YCbtgN+yBj2EvfAL74FPYD5/9OX/lP5R/9m/yOyIgoEKFBg2mw3SYgimYETNiJsyEmTEzJjCBWTErZsNsmB2zY07MibkxN+bFvEhIyMiYD/NhEpNYAAtgQSyIhbEwevRYDIthcbwJS2AJLIklsRSWwtJYBstgOSyH5bE8VsAKWBErYiWshFWwCt6Fd+HdWB2rYw2sgTWxJtbCWlgba2MdrIN1sS7Ww3pYH+tjA2yAjbARNsEm2BSbYjNshi2wBbbEltgKW2FrbI1tsA22xbbYDtthe2yPHbADdsRO2Amfx+fxBXwBu2El1R17YA/siT2xN/bBPvgS9sOX8WV8BQfgQByEr+Kr+BoOwTM4FIfhcByO5dVIHIWjkdVYHIfjcDyOxwk4ASfiJJyEU3AqTsPpOB1n4Eycie/ibHwP38O5OBfn4wJcgAtxES7GxbgEz+JSXIbLcQWuxFW4EtfgWlyD63EDrsdNuAm34Bb8CD/C7bgdd+JO3I278WP8GD/BT3AA7sf9eAAP4EE8iIfwEB7Gw3gEj+BRPIrH8Bgex+N4Ak/iKTyJp/E0nsGzeA7P4Xk8jxfwAl7Ei5e++NUlRhmVTqVTKSpFZVQZVSaVSWVWmVVCJVRWlVVlU9lUdpVd5VQ5VW6VW+VVeRUpUqxilU/lU0mVVAVUAVVQFVSFVWHllVfFVDFVXBVXJVQJVVLdokqpW1VpVUY19+VUOVVetfAV1B2qoqqoKqnKqoqqqqqqaqqaqq6qqxqqhqqpaqpa6n5VW3XH3viAutSZemog1leDsIFqqBqpxuo1fEQ1VUOwmWquWqjH1DAciq1UU99aPanaqFHYVj2tRuMzqr0aix3Uc6qj6qQ6q+dVF9XMd1Xd1ETsrnqoKdhT9VK9VR81AyurSx2rol5RA9RANUi9qubja2qIel0NVcPUcPWGGqFGqlFqtBqjxqpx6k01Xr2lJqi31UQ1SU1WU9RUNU1NV++oGWqmmqXeVbPVe2qOmqvmqflqgXpfLVSL1GL1gVqiPlRL1TK1XK1QK9UqtVqtUWvVOrVebVAb1Sa1WW1RW9VHapvarnaonWqX2q32qI/VXvWJ2qc+VfvVZ+qA+qM6qD5Xh9QX6rD6Uh1RX6mj6mt1TH2jjqtv1Ql1Up1S36nT6nt1Rp1V59QP6rz6UV1QP6mLKijQqJXW2uhIp9PpdYrOoDPqq3QmfbXOrLPohL5GZ9XX6mz6Op1d59A5dS6dW+fRebXVpJ1mHet8Or9O6ut1AX2DLqgL6cK6iPa6qC6mb9TF9U26hL5Zl9S36FL6Vl1al9FldTl9my6vb9cV9B26or5TV9KVdRVdVd+lq+m7dXV9j66h79U19X26lr5f19Z/0HX0A7quflDX0w/p+vph3UA31I10Y91EP6Kb6kd1M91ct9CP6Zb6cd1KP6Fb6yd1G/2Ubquf1u30M7q9flZ30M/pjrqT7qx/0hd10F11N52qu+se+kXdU/fSvXUf3Ve/pPvpl3V//YoeoAfqQfpVPVi/pofo1/VQPUwP12/oEXqkHqVH6zF6rB6n39Tj9Vt6gn5bT9ST9GQ9RU/V03TvP6006x/If+vv5Pf/+ehb9Fb9kd6mt+sdeqfepXfrPXqP3qv36n16n96v9+sD+oA+qA/qQ/qQPqwP6yP6iD6qj+pj+pg+ro/rE/qk/kF/p0/r7/UZfVaf1T/o8/q8vvCnfwMwaJTRxpjIpDPpTYrJYDKaq0wmc7XJbLKYhLnGZDXXmmzmOpPd5DA5TS6T2+QxeY01ZJxhE5t8Jr9JmutNAXODKWgKmcKmiPGmqClmbvyn83+vviamiWlqmppmpplpYVqYlqalaWVamdamtWlj2pi2pq1pZ9qZ9qa96WA6mI6mo+lsOpsuposJAJBqUk0P86LpaXqZ3qaP6WteMv1MP9Pf9DcDzAAzyAwyg81gM8QMMUPNUDPcDDcjzAgzyowyY8wYM86MM+PNeDPBTDATzUQz2Uw2U81UM91MNzPMDDPLzDKzzWwzx8wx88w8s8AsMAvNQrPYLDZLzBKz1Cwzy8wKs8KsMqvMGrPGrDPrzAazwWwym8xS8+sHNHeYHWaX2WX2mD1mr9lr9pl9Zr/Zbw6YA+agOWgOmUPmsDlsjpgj5qg5ao6ZY+a4OW5OmBPmlDllTpvT5ow5Y86Zc+a8OW8umAvmorl46bIvUpGKTGSidFG6KCVKiTJGGaNMUaYoc5Q5SkSJKGuUNcoWXRdlj3JEOaNcUe4oT5Q3shFFLuIojvJF+aNkdH1UILohKhgVigpHRSIfFY2KRTdGxaObohLRzVHJ6JaoVHRrVDoqE5WNykW3ReWj26MK0R1RxejOqFJUOaoSVY3uiqpFd0fVo3uiGtG9Uc3ovqhWdH9UO/pDVCd6IKobPRjVix6K6kcPRw2ihlGjqHHU5F+6fghncjzqu9puNtV2tz3si7an7WV72z62r33J9rMv2/72FTvADrSD7Kt2sH3NDrGv26F2mB1u37Aj7Eg7yo62Y+xYO86+acfbt+wE+7adaCfZyXaKnWqn2en2HTvDzrSz7Lt2tn3PzrFz7Tw73y6w79uFdpFdbD+wS+yHdimkAtgVdqVdZVfbNXatXWfX2w12o91kN9stdqv9yG6z2+0Ou9PusrvtHvux3Ws/sfvsp3a//cwesH+0B+3n9pD9wh62X9oj9it71H5tj9lv7HH7rT1hT9pT9jt72n5vz9iz9pz9wZ63P9oL9id70YZLF/eX3t7JkKF0lI5SKIUyUkbKRJkoM2WmBCUoK2WlbJSNslN2ykk5KTflpryUly5hYspH+ShJSSpABaggFaTCVJg8eSpGxag4FacSVIJKUkkqRaWoNJWmsnTpfuQ2up1upzvoDrqT7qTKVJmqUlWqRtWoOlWnGlSDalJNqkW1qDbVpjpUh+pSXapH9ag+1acG1IAaUSNqQk2oKTWlZtSMWlALakktqRW1otbUmtpQG2pLbakdtaP21J46UAfqSB2pM3WmLtSFulJXSqVU6kE9qCf1pN7Ue0Am6kv9qB/1p/40gAbQIBpEg2kwDaEhNJSG0XB6g0bQSBpFo2kMjaVxNI7G03iaQBNoIk2kyTSZptJUmk7TaQbNoFk0i2bTbJpDc2gezaMFtIAW0kJaTItpCS2hpbSUltNyWkkraTWtprW0ltbTetpIG2kzbaattJW20TbaQTtoF+2iPbSH9tJe2kf7aD/tpwN0gA7SQTpEh+gwHaYjdISO0lE6RsfoOB2nE3QCT9EpOk2n6QydoXN0js7Tj3SBfqKLFCjFZXAZ3VUuk7vaZXZZXIrL0A0A/hzndLlcbpfH5XXWZXc5/iom51xBV8gVdkWcd0VdMXfjb+LSrowr68q521x5d7ur8Ju4mrvbVXf3uBruXlfV3fVXcU13n6vlHnK13cOujmvo6rrGrp57yNV3D7sGrqFr5Bq7lu5x18o94Vq7J10b99Rv4oVukVvr1rn1boPb6z5x59wP7qj72p13P7qurpvr615y/dzLrr97xQ1wA38TD3dvuBFupBvlRrsxbuxv4sluipvqprnp7h03w838TbzAve9mu8Vujpvr5rn5P8eXalrsPnBL3IduqVvmlrsVbqVb5Va7NX+udYXb5Da7LW6P+9htc9vdDrfT7XK7f44vncc+96nb7z5zR9xX7qD73B1yx9xh9+XP8aXzO+a+ccfdt+6EO+lOue/cafe9O+PO/nz+l879O/eTu+iCA0ZWrNlwxOk4PadwBs7IV3EmvpozcxZO8DWcla/lbHwdZ+ccnJNzcW7Ow3nZMrFj5pjzcX5O8vVcgG/gglyIC3MR9lyUi/GNXJxv4hJ8M5fkW7gU38qluQyX5XJ8G5fn27kC38EV+U6uxJW5Clflu7ga383V+R6uwfdyTb6Pa/H9XJv/wHX4Aa7LD3I9fojr88PcgBtyI27MTfgRbsqPcjNuzi34MW7Jj3MrfoJb85Pchp/itvw0t+NnuD0/yx34Oe7InbgzP89d+AXuyt04lbtzD36Re3Iv7s19uC+/xP34Ze7Pr/AAHsiD+FUezK/xEH6dh/IwHs5v8AgeyaN4NI/hsTyO3+Tx/BZP4Ld5Ik/iyTyFp/I0ns7v8AyeybP4XZ7N7/EcnsvzeD4v4Pd5IS/ixfwBL+EPeSkv4+W8glfyKl7Na3gtr+P1vIE38ibezFt4K3/E23g77+CdvIt38x7+mPfyJ7yPP+X9/Bkf4D/yQf6cD/EXfJi/5CP8FR/lr/kYf8PH+Vs+wSf5FH/Hp/l7PsNn+Rz/wOf5R77AP/FFDgwxxirWsYmjOF2cPk6JM8QZ46viTPHVceY4S5yIr4mzxtfG2eLr4uxxjjhnnCvOHeeJ88Y2ptjFHMdxvjh/nIyvjwvEN8QF40Jx4bhI7OOicbH4xrh4fFNcIr45LhnfEpeKb41Lx2XisnG5+La4fHx7XCG+I64Y3xlXiivHVeKq8V1xtfjuuHp8T1wjvjcuEd8X14rvj2vHf4jrxA/EdeMH43rxQ3H9+OG4QdwwbhQ3jpvEj8RN40fjZnHzuEX8WNwyfjxuFT8Rt46fjNvET/3ufGrcPe4Rvxi/GIdwj56XnJ9ckHw/uTC5KLk4+UFySfLD5NLksuTy5IrkyuSq5OrkmuTa5Lrk+uSG5MbkpuTm5JZkCFXTg0evvPbGRz6dT+9TfAaf0V/lM/mrfWafxSf8NT6rv9Zn89f57D6Hz+lz+dw+j8/rrSfvPPvY5/P5fdJf7wv4G3xBX8gX9kW890V9Md/YN/FNfFP/qG/mm/sW/jH/mH/cP+6f8E/4J30b/5Rv65/27fwzvr1/1j/rn/MdfSff2T/vu/gXfFffzaf6VN/D9/A9fU/f2/f2fX1f38/38/19fz/AD/CD/CA/2A/2Q/wQP9QP9cP9cD/Cj/Cj/Cg/xo/x4/w4P96P9xP8BD/RT/ST/WQ/1U/10/10P8PP8LP8LD/bz/Zz/Bw/z8/zC/wCv9Av9Iv9Yr/EL/FL/VK/3C/3K/1Kv9qv9mv9Wr/er/cb/Ua/2W/2W/1Wv81v8zv8Dr/L7/J7/B6/1+/1+/w+v9/v9wf8AX/QH/SH/Bf+sP/SH/Ff+aP+a3/Mf+OP+2/9CX/Sn/Lf+dP+e3/Gn/Xn/A/+vP/RX/A/+Ys++HGJNxPjE28lJiTeTkxMTEpMTkxJTE1MS0xPvJOYkZiZmJV4NzE78V5iTmJuYl5ifmJB4v3EwsSixOLEB4kliQ8TSxPLEssTKxIrE6sSIeTZFod8IX9IhutDgXBDKBgKhcKhSPChaCgWbgzFw02hRLg5lAy3hFLh1lA6lAllw8OhQWgYGoXGoUl4JDQNj4ZmoXloER4LLcPjoVV4IrQOT4Y24anQNjwd2oVnQvvwbOgQngsdQ6fQOTwfuoQXQtfQLaSG7qFHeDH0DL1C79An9A0vhX7h5dA/vBIGhIFhUHg1DA6vhSHh9TA0DAvDwxthRBgZRoXRYUwYG8aFN8P48FaYEN4OE8OkMDlMCVPDtDA9vBNmhJlhVng3zA7vhTlhbpgX5ocF4f2wMCwKi8MHYUn4MCwNy8LysCKsDKvC6rAmrA3rwvqwIWwMm8LmsCVsDR+FbWF72BF2hl1hd9gTPg57wydhX/g07A+fhQPhj+Fg+DwcCl+Ew+HLcCR8FY6Gr8Ox8E04Hr4NJ8LJcCp8F06H78OZcDacCz+E8+HHcCH8FC7Kz6wJIYQQQvxD9O/Md/8vctSfxj0A4OrtuQ7/7fzG7L+Me6XP3TIBAE926/DAr1ulSqmpqX/ad6mGKP9cAEhczk8Hl+Nl0AIeh9bQHIr/eT7lL47VS3U6z7+zfvIWgIx/kXMp/9f48vo3/d3z76VGzv7d9ecCFMx/OScDXI4vr1/iv1g/R9PfWT/D5+MAmv1FTia4HF9evxg8Ck9B67/aUwghhBBCCCGE+EUvVbbd793fXro/z20u56SHy/Hfuz8XQgghhBBCCCHEv5dnOnV+4pHWrZu3+188+PWzCP8u9fzNIGT5pbx/l3pkIIN/YHAlvysJIYQQQggh/idcvui/0pUIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBp1/+PXyf267F+728NCiGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEP+p/k8AAAD//y9qNPA=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)

2.043440635s ago: executing program 1 (id=2327):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x8002, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x22)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xc2300, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$netlink(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
syz_mount_image$erofs(&(0x7f00000001c0), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000001040)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES64, @ANYRESHEX, @ANYRES16, @ANYRES8, @ANYRES32], 0xfe, 0x1d1, &(0x7f0000000640)="$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")

1.970598751s ago: executing program 2 (id=2329):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000000001000000000000000500000000000000ff"], 0x5b0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1.6121185s ago: executing program 2 (id=2334):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x3008842, &(0x7f0000000000), 0x1, 0x571, &(0x7f0000000780)="$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")
mkdir(&(0x7f0000000080)='./bus\x00', 0x3)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x4)

1.551182245s ago: executing program 3 (id=2338):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f00000000c0)=<r3=>0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read$FUSE(r4, &(0x7f00000029c0)={0x2020}, 0x2020)

1.448357453s ago: executing program 2 (id=2342):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")

1.411321486s ago: executing program 5 (id=2344):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="666c7573682c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c756e695f786c6174653d302c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c00a56dc300a96c9b20f3fabdcb10cad696323259cc0500e5f91620d7b9aed9e1fa74020a4f00b8ff"], 0x1, 0x246, &(0x7f00000002c0)="$eJzs2s9rHGUYB/BnYqUxJd2Iv2hB+qIH9TI0OXkQSZAWxICijVAF6dRMdMm4G3aWwIrYeNGrf4Jn8ehNkIoXL7n4F3jwlkuOPYgj7aZtElbIInFD8/lc9mHf+cIzvMPLc3h3Xvv2s/W1Ol8r+jGVZTG1GFtxJ4u5mIr7tuKVl67/9vx71z94a2l5+cq7KV1duja/kFI6f+nnD7/44YXb/XPv/3j+p7OxPffRzu5Xf24/u31h5+9rn7br1K5Tp9tPRbrZ7faLm1WZVtv1ep7SO1VZ1GVqd+qyd2B9repubAxS0VmdndnolXWdis4grZeD1O+mfm+Qik+KdifleZ5mZ4L/YuX7O00Tu83jNyK7/9/sH9GK7MmUPbWYPXMje24ru7DbNK3JNsoxebD/TdM88V2cu23/T5V9h/p0RPXN5srmyvB3uL60Fu2ooozL0Yq/4u5nsmdYX31z+crldM9cfF3d2svf2lx57GB+PloxNzo/P8yng/mzMbM/vxCteHp0fmFkfjpefnFfPo9W/P5xdKOK1bibfZj/cj6lN95ePpS/eO85AIBHTZ4eGDm/5fm/rQ/zY8yHh+arM3HxzGTfnYh68Pl6UVVlTzFOcWnc1PTkez4FRZNFnIA2jlb8+svrr56ANvaKxcNHwaRPJv4PDzf9qInp420IAAAAAAAAAACAIznme4XZODfLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA0+mfAAAA//9X7c9V")
r2 = open(&(0x7f0000000340)='./file1\x00', 0x185102, 0x3c)
write$P9_RXATTRWALK(r2, &(0x7f0000000140)={0xf, 0x1f, 0x2, 0x100000000}, 0xf)
write$9p(r2, &(0x7f0000000000)='?', 0x1)

1.348804011s ago: executing program 0 (id=2346):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x801, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=tcp'])

1.348701931s ago: executing program 0 (id=2347):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv6={0x86dd, @generic={0x7, 0x6, "2d5115", 0x0, 0x0, 0xff, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast2}}}}, 0x0)

1.340207032s ago: executing program 2 (id=2348):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00'})
sendmsg$nl_route_sched(r0, 0x0, 0x0)

1.321734193s ago: executing program 0 (id=2349):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$eJzs3M1rXFUbAPDn3ny2zftO+vIi1k0jIi2o07SSYotgKxU3LgTdCg3ppIRMP0giNWkWE/0HRF0LbgS1KF3YdTcKbt1o3VpcCEVioyCikTsfSWxmkrSd5Ibk94Mz95w5d+Z5nrlM7j0wNwHsWgPZQxpxICLOJhGF+vNpRHRXe70Rldp+C/OzI7/Pz44ksbj42i9JJBFxd352pPFeSX27rz7ojYhvX0zif++sjjs5PTM+XC6XJurjI1MXLh+ZnJ55ZuzC8PnS+dLFo8efGzo2dHzwxFDbav3jx1M3fnv85Z8qf37617Vf3/84iVPRV59bWUe7DMTA0meyUmdEDLc7WE466vWsrDPpXOdF6SYnBQBAS+mKa7hHohAdsXzxVoivvss1OQAAAKAtFjsiFgEAAIAdLrH+BwAAgB2u8TuAu/OzI42W7y8Sttad0xHRX6t/od5qM51RqW57oysi9t5NYuVtrUntZQ9tICJu/3Dii6zFJt2HvJbKXEQ82uz4J9X6+6t3ca+uP42IwTbEH7hnvN3qf7q7df2n2hA/7/oB2J1unq6dyFaf/9Kl659ocv7rbHLuehB5n/8a138Lq67/luvvaHH99+oGY1z95MMrreay+p+/8dLnjZbFz7YPVdR9uDMX8Vhns/qTpfqTFvWf3WCMwt9XSq3m8q5/8aOIQ9G8/oZk7f9PdGR0rFwarD02jTH3zdBnreLnXX92/Pe2qH+94395gzHeOHPmequ59etPf+5OXq/2uuvPvDU8NTVxNKI7eWX188fqN7S30Nin8R5Z/YefWPv736z+LESl/jlka4G5+jYbv31PzBeuXf1yrfqztV+ex//cAx7/dzcY48mv3zvcam7l+jdrWfzbSW0tDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaUT0RZIWl/ppWixG7IuI/8fetHxpcuqp0UtvXjyXzUX0R1c6OlYuDUZEoTZOsvHRan95fOye8bMRsT8iPijsqY6LI5fK5/IuHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCX7IqIvkrQYEWlELBTStFjMOysAAACg7frzTgAAAADYdNb/AAAAsPNZ/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDJ9h+8eSuJiMrJPdWW6a7PdeWaGbDZ0rwTAHLTkXcCQG46804AyM19rvFdLsAOlKwz39typqftuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwfR06cPNWEhGVk3uqLdNdn+tq+oqDW5gdsJnSvBMActOx1mTn1uUBbD1fcdi9mq/xgd0kWWe+d3mfyr9nejYtJwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC2n75qS9JiRKTVfpoWixH/iYj+6EpGx8qlwYj4b0R8X+jqycY9eScNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA201Oz4wPl8ulCR0dnXw7yfZIo9bJ+y8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5mJyeGR8ul0sTk3lnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAORtcnpmfLhcLk1soHP9fnZe0cm7RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8vNPAAAA///5ZQ4Q")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

1.231139851s ago: executing program 2 (id=2350):
r0 = socket$packet(0x11, 0x3, 0x300)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0x7000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x60d, &(0x7f0000002200)="$eJzs3D9olHcYB/DvJbmcUTAdnFxqHDoJRXE0Q5XkqlgIp1IIDvYfIs0UIXDSw5Q4tBkUM0jHLlK4DhonYwYnRaFzEQeLkMGlYBepHXLl7l6SOyjF0oRS/HyGe353PDzf94F3/V34XxtIuTi1Kp3y/qd/298a3TzP50xzYvJ4q9VqnU5KOZtyxsq7l5MMpX9q9icZ7plz8/udq9/+9mG5+fTUq/fOPVgc2JhZyTtJdvU2Z+SvHqXyzzZlO9wafzi6cGW2erX9pdpYW/84uf1yorZycnFp+UT52Oft3y8nj4r+7osxkoup51K+zCdDbxz19eax1Jc/386vj194Um2sfdd8fnB9b3Xw7vkjr/etXrt/KJlrR0yl87JvGv6Xi/fkL/Tkz41dn15qHD1wZ8+Nw/V7j2svBn9vdRWR5a3JBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABge9xqf1yZrV6tj194Um2sffPzTx/dfjlRWzm5uLR8YvjYs6LvUVGHinox9VxKOclMZvJFZt88crrUmz/+cHRhI/+Pncnzg+t7q82754+8nly9dv9Qp6uUqXYZ2IqN+/XnN9bmxq5PLzWOHriz58bh+r3HtReD3b6ZSj7rrJuksvWPAQAAAAAAAAAAAAAAAAAAwFtuYvL4vqkPaqeTUs7uSPLrV51b9q3KyI/p3Lzv2l/UZ5Vkd5KbO7r/BdB8eurV8LkHi78Ul+LnU8l8kl0/rJxJ3t3IudwfW96czH/pzwAAAP//gTiR5w==")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000000)="f9b3b2e82c87f6b04f07a3c5478cd5a0c86e47fd40fba2ab6d4a09dd9fff44b628096ddf5ecae6929cab0d5430a8b37fe7dc44a357cea8aae2faf6dff8632d04bab5b6f4212f836cd4ce2c5becb944587b5ec82d5823b07443420caeed4e36572517a1100b66ac75f5b6455c30a9db840564b7b64948a5fe9f0ad41e5182c7e09ca81e690c333ad34f0c1873e855fd0a1c07e2dd6fae6ae1be4a35de7f29ff57711f5ebfae2695ae9d1a5153eb35ac2f89e5", 0x100000}], 0x13)

1.194450833s ago: executing program 5 (id=2351):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, 0x0)

1.153100197s ago: executing program 2 (id=2352):
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, r0, 0x400000000000003, 0x4002)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000580)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
socket$inet6(0xa, 0x3, 0xff)

1.149235337s ago: executing program 5 (id=2353):
socket$packet(0x11, 0x3, 0x300)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
socket$packet(0x11, 0x3, 0x300)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1, 0x9, 0x2)

1.130383358s ago: executing program 1 (id=2354):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0x310, 0x5002004a, 0xb, 0x0, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0x0, 0x36}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x61, 0x0, 0x0, 0x2900}, {0x16}, {}, {}, {}, {0x7, 0x10}, {}, {0x0, 0x0, 0x0, 0x10000000}, {}, {0x0, 0x0, 0x0, 0x10000}, {}, {}, {}, {0x0, 0x0, 0x2}, {0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0xfffe}, {0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x2da9}, {}, {}, {}, {0x1005}, {}, {0x0, 0x80}, {0x0, 0x0, 0x80}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x2}, {0x5}, {0x0, 0xd}, {0x0, 0x9}, {}, {0x0, 0x0, 0xc}, {}, {0x0, 0x0, 0x0, 0x8000}, {}, {0x0, 0x0, 0x80}]}}, @common=@ttl={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r10}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a", @ANYRESOCT, @ANYRES32=r9, @ANYRESDEC], 0x1, 0x150e, &(0x7f0000001580)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)

628.132709ms ago: executing program 5 (id=2355):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)

429.873245ms ago: executing program 3 (id=2356):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000000)={[{@noquota}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@nolazytime}]}, 0xfe, 0x264, &(0x7f0000000700)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0xfc, 0x0, &(0x7f0000000140))
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r0, 0x0, 0x0)

347.430732ms ago: executing program 0 (id=2357):
r0 = memfd_create(&(0x7f0000000a80)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="02000000040000000700000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
fsetxattr$security_selinux(r0, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)

155.356127ms ago: executing program 0 (id=2358):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x640ca0b72053fe29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r0}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000180)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x34, 0x2c, 0xe31, 0x40000, 0x2000, {0x0, 0x0, 0x0, r6, {}, {0xfff2, 0xffff}, {0x6, 0x1}}, [@filter_kind_options=@f_flow={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008844}, 0x4010)

124.18879ms ago: executing program 5 (id=2359):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000005c0)=ANY=[], 0x1, 0x246, &(0x7f00000002c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x401}, 0x18)
stat(&(0x7f0000000100)='./file1\x00', &(0x7f0000000540))

102.933632ms ago: executing program 1 (id=2360):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f00000001c0), &(0x7f00000004c0)={'syz', 0x1}, 0x0, 0x0, r1)

54.036056ms ago: executing program 1 (id=2361):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000cc0)=@newtaction={0x84, 0x30, 0x12f, 0x0, 0x0, {0x0, 0x0, 0x1be}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x4, 0x0, 0x0, 0x60}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x0, 0x3f}}}}]}]}, 0x84}}, 0x0)

53.893726ms ago: executing program 0 (id=2362):
chmod(&(0x7f0000000100)='./file0\x00', 0x35b)

53.611356ms ago: executing program 1 (id=2363):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, 0x0)

0s ago: executing program 5 (id=2364):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x5d6c}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x84, 0x2c, 0xd27, 0x30b529, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0x0, 0x4}, {}, {0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x2, 0xfffffffffffffffd, 0xa, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

kernel console output (not intermixed with test programs):

ff)
[  167.902315][ T3460] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  167.919398][ T3460] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  167.928274][   T24] audit: type=1326 audit(1755229752.820:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3483 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  167.983937][   T24] audit: type=1326 audit(1755229752.850:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3483 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  168.008093][   T24] audit: type=1326 audit(1755229752.850:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3483 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  168.032203][   T24] audit: type=1326 audit(1755229752.850:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3483 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  168.058484][   T24] audit: type=1326 audit(1755229752.850:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3483 comm="syz.0.1066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  168.060579][ T3487] binder: BINDER_SET_CONTEXT_MGR already set
[  168.089808][ T3487] binder: 3486:3487 ioctl 4018620d 200000000040 returned -16
[  168.216702][ T3487] binder: 3486:3487 ioctl c0306201 200000000240 returned -11
[  168.425595][ T3492] SELinux: ebitmap: truncated map
[  168.466816][ T3492] SELinux: failed to load policy
[  168.752519][ T3499] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  168.761852][ T3499] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  168.780013][ T3504] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1073'.
[  168.861834][ T3512] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1075'.
[  168.917296][ T3522] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1074'.
[  169.067928][ T3535] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1086'.
[  169.104579][ T3539] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  169.121317][ T3539] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  169.230208][ T3546] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  169.352484][ T3555] xt_bpf: check failed: parse error
[  169.462264][ T3555] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  169.599680][ T3570] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1098'.
[  169.641919][ T3571] erofs: (device loop5): mounted with root inode @ nid 36.
[  169.812509][ T3580] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1102'.
[  170.147188][ T3594] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  170.154929][ T3594] EXT4-fs (loop2): Test dummy encryption mode enabled
[  170.163768][ T3594] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpid,mblk_io_submit,nodioread_nolock,test_dummy_encryption,inode_readahead_blks=0x0000000000000000,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  170.238155][ T3603] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1110'.
[  170.414566][ T3610] netlink: 'syz.3.1112': attribute type 13 has an invalid length.
[  170.523551][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  170.541368][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  170.592316][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  170.611553][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  170.619926][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  170.641723][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  170.650040][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  170.670004][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  170.680108][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  170.688558][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  170.708271][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  170.716968][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  170.766988][ T3626] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d)
[  170.845116][ T3629] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1121'.
[  170.950647][ T3637] syz.3.1120[3637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.950728][ T3637] syz.3.1120[3637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.354858][ T3644] erofs: (device loop0): mounted with root inode @ nid 36.
[  171.774341][ T3653] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  171.791879][ T3653] EXT4-fs (loop2): 1 truncate cleaned up
[  171.800539][ T3653] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[  172.421077][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  172.592790][ T3680] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  172.761330][   T24] kauditd_printk_skb: 18 callbacks suppressed
[  172.761341][   T24] audit: type=1326 audit(1755229757.660:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3683 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a5b4dbe9 code=0x7ffc0000
[  172.793368][   T24] audit: type=1326 audit(1755229757.660:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3683 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a5b4dbe9 code=0x7ffc0000
[  172.821321][   T24] audit: type=1326 audit(1755229757.660:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3683 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f40a5b4dbe9 code=0x7ffc0000
[  172.854958][   T24] audit: type=1326 audit(1755229757.660:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3683 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a5b4dbe9 code=0x7ffc0000
[  172.879366][   T24] audit: type=1326 audit(1755229757.660:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3683 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a5b4dbe9 code=0x7ffc0000
[  173.125648][ T3696] xt_bpf: check failed: parse error
[  173.184872][ T3698] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  173.201208][ T3698] SELinux: failed to load policy
[  173.279690][   T24] audit: type=1326 audit(1755229758.170:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3704 comm="syz.5.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  173.325053][   T24] audit: type=1326 audit(1755229758.200:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3704 comm="syz.5.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  173.350071][   T24] audit: type=1326 audit(1755229758.200:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3704 comm="syz.5.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  173.674991][ T3703]  loop0: p1 p2[DM] p4
[  173.685519][ T3703] loop0: p1 size 196608 extends beyond EOD, truncated
[  173.704097][ T3703] loop0: p2 start 4292936063 is beyond EOD, truncated
[  173.723441][ T3703] loop0: p4 size 50331648 extends beyond EOD, truncated
[  173.733160][ T3717] __nla_validate_parse: 2 callbacks suppressed
[  173.733169][ T3717] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1150'.
[  174.030312][  T316] udevd[316]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  174.044676][  T464] udevd[464]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  174.060996][ T3719] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  174.081295][ T3719] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.408062][    T7] EXT4-fs error (device loop3): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  174.428033][    T7] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1029 with error 28
[  174.446046][    T7] EXT4-fs (loop3): This should not happen!! Data will be lost
[  174.446046][    T7] 
[  174.456800][    T7] EXT4-fs (loop3): Total free blocks count 0
[  174.503726][    T7] EXT4-fs (loop3): Free/Dirty block details
[  174.512319][    T7] EXT4-fs (loop3): free_blocks=65280
[  174.517853][    T7] EXT4-fs (loop3): dirty_blocks=1029
[  174.523400][    T7] EXT4-fs (loop3): Block reservation details
[  174.529556][    T7] EXT4-fs (loop3): i_reserved_data_blocks=1029
[  174.597238][   T24] audit: type=1326 audit(1755229759.490:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3757 comm="syz.3.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  174.628239][   T24] audit: type=1326 audit(1755229759.490:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3757 comm="syz.3.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  174.653164][ T3755] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  174.676478][ T3755] EXT4-fs (loop5): 1 orphan inode deleted
[  174.682473][ T3755] EXT4-fs (loop5): 1 truncate cleaned up
[  174.688186][ T3755] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,block_validity,grpjquota=,
[  175.042073][ T3778] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  175.050426][ T3778] EXT4-fs (loop0): orphan cleanup on readonly fs
[  175.057486][ T3778] EXT4-fs error (device loop0): ext4_acquire_dquot:6226: comm syz.0.1170: Failed to acquire dquot type 1
[  175.069399][ T3778] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1170: bg 0: block 40: padding at end of block bitmap is not set
[  175.084146][ T3778] EXT4-fs error (device loop0) in ext4_mb_clear_bb:5645: Corrupt filesystem
[  175.093483][ T3778] EXT4-fs (loop0): 1 truncate cleaned up
[  175.099296][ T3778] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  175.449000][ T3794] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  175.506013][  T288] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  175.564442][ T3791] EXT4-fs (loop2): Ignoring removed nobh option
[  175.574879][ T3791] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue
[  175.585402][ T3791] ext4 filesystem being mounted at /229/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  175.751427][  T288] usb 1-1: Using ep0 maxpacket: 32
[  175.871634][  T288] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  175.895925][  T288] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  175.930867][  T288] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  175.970658][  T288] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  175.981299][  T288] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  175.992517][  T288] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  176.006520][  T288] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  176.016678][  T288] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.041413][  T288] usb 1-1: config 0 descriptor??
[  176.292428][  T288] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  176.304135][ T3829] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  176.325174][  T288] usb 1-1: USB disconnect, device number 10
[  176.344595][  T288] usblp0: removed
[  176.911280][  T288] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  177.171157][  T288] usb 1-1: Using ep0 maxpacket: 32
[  177.291244][  T288] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  177.302937][  T288] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  177.321359][  T288] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  177.333154][  T288] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  177.348842][  T288] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  177.358917][  T288] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  177.372578][  T288] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  177.381892][  T288] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.391634][  T288] usb 1-1: config 0 descriptor??
[  177.653345][  T288] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  177.725260][ T3882] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  177.745875][ T3882] ext4 filesystem being mounted at /236/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  177.782065][   T24] kauditd_printk_skb: 58 callbacks suppressed
[  177.782076][   T24] audit: type=1400 audit(1755229762.680:1282): avc:  denied  { write } for  pid=3880 comm="syz.2.1210" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  177.810291][   T24] audit: type=1400 audit(1755229762.680:1283): avc:  denied  { add_name } for  pid=3880 comm="syz.2.1210" name="blkio.bfq.io_service_bytes_recursive" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  177.837990][   T24] audit: type=1400 audit(1755229762.680:1284): avc:  denied  { create } for  pid=3880 comm="syz.2.1210" name="blkio.bfq.io_service_bytes_recursive" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  177.863777][   T24] audit: type=1400 audit(1755229762.680:1285): avc:  denied  { read append open } for  pid=3880 comm="syz.2.1210" path="/236/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/blkio.bfq.io_service_bytes_recursive" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  177.913047][ T2155] usb 1-1: USB disconnect, device number 11
[  177.923018][ T2155] usblp0: removed
[  177.933308][   T24] audit: type=1400 audit(1755229762.680:1286): avc:  denied  { write } for  pid=3880 comm="syz.2.1210" path="/236/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  177.981753][   T24] audit: type=1400 audit(1755229762.680:1287): avc:  denied  { ioctl } for  pid=3880 comm="syz.2.1210" path="/236/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/blkio.bfq.io_service_bytes_recursive" dev="loop2" ino=12 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  178.031298][   T24] audit: type=1400 audit(1755229762.740:1288): avc:  denied  { unmount } for  pid=281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  178.053136][   T24] audit: type=1400 audit(1755229762.760:1289): avc:  denied  { read write } for  pid=3784 comm="syz.0.1172" name="lp0" dev="devtmpfs" ino=809 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  178.087501][   T24] audit: type=1400 audit(1755229762.760:1290): avc:  denied  { open } for  pid=3784 comm="syz.0.1172" path="/dev/usb/lp0" dev="devtmpfs" ino=809 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  178.117993][   T24] audit: type=1400 audit(1755229762.930:1291): avc:  denied  { create } for  pid=3893 comm="syz.3.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  178.403281][ T3906] binder: 3905:3906 ioctl c0306201 0 returned -14
[  178.410110][ T3906] binder: 3905:3906 ioctl c0306201 200000000240 returned -11
[  178.439048][ T3910] EXT4-fs (loop0): Unrecognized mount option "mb_optimize_scan=0x0000000000000001" or missing value
[  178.592601][ T3921] EXT4-fs error (device loop0): ext4_free_branches:1026: inode #11: comm syz.0.1225: invalid indirect mapped block 4294967295 (level 1)
[  178.607091][ T3921] EXT4-fs error (device loop0): ext4_free_branches:1026: inode #11: comm syz.0.1225: invalid indirect mapped block 4294967295 (level 1)
[  178.621638][ T3921] EXT4-fs (loop0): 2 truncates cleaned up
[  178.627437][ T3921] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  178.664795][ T3925] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  178.673998][ T3925] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.834999][ T3937] binder: 3936:3937 ioctl c0306201 200000000240 returned -11
[  179.108233][ T3964] SELinux: failed to load policy
[  179.126612][ T3969] xt_bpf: check failed: parse error
[  179.219649][ T3975] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1245'.
[  179.247685][ T3975] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1245'.
[  179.351491][ T3960]  loop2: p1 p2[DM] p4
[  179.403659][ T3960] loop2: p1 size 196608 extends beyond EOD, truncated
[  179.433246][ T3960] loop2: p2 start 4292936063 is beyond EOD, truncated
[  179.442323][ T3960] loop2: p4 size 50331648 extends beyond EOD, truncated
[  179.542635][ T4002] xt_bpf: check failed: parse error
[  179.602359][ T4008] syz.0.1261[4008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  179.602415][ T4008] syz.0.1261[4008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  179.615754][ T4008] netlink: 'syz.0.1261': attribute type 12 has an invalid length.
[  179.630198][  T281] __loop_clr_fd: partition scan of loop2 failed (rc=-16)
[  179.643571][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  179.645076][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  179.657952][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  179.668791][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  179.682417][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  179.707862][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  179.759554][ T4002] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  179.799910][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  179.820713][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  179.833336][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  179.846968][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  179.865087][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  179.876769][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  180.353684][ T4045] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d)
[  180.420672][ T4052] syz.5.1274[4052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  180.420724][ T4052] syz.5.1274[4052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  180.646049][ T4064] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  180.784246][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  180.797499][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  180.800138][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  180.825868][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  180.863918][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  180.864126][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  180.884419][ T4076] SELinux: ebitmap: truncated map
[  180.894231][ T4076] SELinux: failed to load policy
[  180.976819][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  180.990274][ T4087] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  180.999755][ T4087] EXT4-fs (loop2): orphan cleanup on readonly fs
[  181.010455][ T4087] EXT4-fs error (device loop2): __ext4_get_inode_loc:4438: comm syz.2.1291: Invalid inode table block 0 in block_group 0
[  181.025692][ T4087] EXT4-fs (loop2): Remounting filesystem read-only
[  181.032324][ T4087] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  181.043424][ T4087] EXT4-fs error (device loop2): ext4_quota_write:6651: inode #3: comm syz.2.1291: mark_inode_dirty error
[  181.060284][ T4087] EXT4-fs error (device loop2): ext4_acquire_dquot:6226: comm syz.2.1291: Failed to acquire dquot type 0
[  181.072599][ T4087] EXT4-fs (loop2): 1 truncate cleaned up
[  181.078449][ T4087] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodiscard,init_itable=0x0000000000000004,max_dir_size_kb=0x0000000000000200,errors=remount-ro,data_err=ignore,noblock_validity,minixdf,min_batch_time=0x0000000000000013,
[  181.132535][ T4091] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  181.164423][ T4087] EXT4-fs error (device loop2): __ext4_get_inode_loc:4438: comm syz.2.1291: Invalid inode table block 0 in block_group 0
[  181.180621][ T4091] EXT4-fs (loop3): 1 orphan inode deleted
[  181.186690][ T4091] EXT4-fs (loop3): 1 truncate cleaned up
[  181.192767][ T4091] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,block_validity,grpjquota=,
[  181.543634][ T4099] xt_bpf: check failed: parse error
[  181.733865][ T4117] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  182.325606][ T4157] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  182.348491][ T4157] EXT4-fs (loop3): 1 orphan inode deleted
[  182.354797][ T4157] EXT4-fs (loop3): 1 truncate cleaned up
[  182.360508][ T4157] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,block_validity,grpjquota=,
[  182.584741][ T4158] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  182.613370][ T4158] EXT4-fs (loop5): 1 truncate cleaned up
[  182.623119][ T4158] EXT4-fs (loop5): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[  182.630329][ T4174] xt_bpf: check failed: parse error
[  182.736937][ T4180] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  182.977968][   T24] kauditd_printk_skb: 209 callbacks suppressed
[  182.977977][   T24] audit: type=1400 audit(1755229767.870:1499): avc:  denied  { unmount } for  pid=282 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  183.030551][ T4188] xt_bpf: check failed: parse error
[  183.158342][ T4191] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  183.667283][   T24] audit: type=1326 audit(1755229768.560:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.691507][   T24] audit: type=1326 audit(1755229768.560:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.718479][   T24] audit: type=1326 audit(1755229768.590:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.744213][   T24] audit: type=1326 audit(1755229768.590:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.768466][   T24] audit: type=1326 audit(1755229768.590:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.792728][   T24] audit: type=1326 audit(1755229768.600:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.816577][   T24] audit: type=1326 audit(1755229768.600:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.840246][   T24] audit: type=1326 audit(1755229768.600:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  183.864307][   T24] audit: type=1326 audit(1755229768.600:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4203 comm="syz.0.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  184.012856][ T4217] EXT4-fs (loop5): Ignoring removed nobh option
[  184.023114][ T4217] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue
[  184.033851][ T4217] ext4 filesystem being mounted at /220/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.245952][ T4222] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  184.266008][ T4222] EXT4-fs (loop3): 1 orphan inode deleted
[  184.271967][ T4222] EXT4-fs (loop3): 1 truncate cleaned up
[  184.277631][ T4222] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,block_validity,grpjquota=,
[  184.352159][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  184.389116][ T4227] xt_bpf: check failed: parse error
[  184.526174][ T4228] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  185.149655][ T4245] fuse: Unknown parameter 'group_id00000000000000000000'
[  185.158057][ T4242] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  185.170600][ T4242] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1347'.
[  185.625720][ T4276] device syzkaller0 entered promiscuous mode
[  185.633796][ T4276] device syzkaller0 left promiscuous mode
[  186.087468][ T4293] netlink: 'syz.1.1367': attribute type 3 has an invalid length.
[  186.114214][  T316] print_req_error: 12 callbacks suppressed
[  186.114228][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.132885][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.172419][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  186.183800][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  186.201275][  T464] buffer_io_error: 1 callbacks suppressed
[  186.201284][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  186.217469][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  186.257145][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.258895][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.280522][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  186.294020][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  186.343530][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  186.355511][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  186.370177][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.385367][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  186.396944][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  186.405390][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  186.463557][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  186.551757][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  186.643553][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  186.681982][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  186.729278][ T4333] EXT4-fs error (device loop3): ext4_orphan_get:1395: inode #15: comm syz.3.1385: casefold flag without casefold feature
[  186.752058][ T4333] EXT4-fs error (device loop3): ext4_orphan_get:1400: comm syz.3.1385: couldn't read orphan inode 15 (err -117)
[  186.793733][ T4333] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  187.709351][ T4385] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  187.996324][ T4394] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1408: bg 0: block 248: padding at end of block bitmap is not set
[  188.011960][ T4394] EXT4-fs error (device loop3): ext4_acquire_dquot:6226: comm syz.3.1408: Failed to acquire dquot type 1
[  188.024773][ T4394] EXT4-fs (loop3): 1 truncate cleaned up
[  188.030739][ T4394] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  188.043245][ T4394] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.258088][ T4394] EXT4-fs (loop3): shut down requested (2)
[  188.293580][ T4394] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  188.305587][   T24] kauditd_printk_skb: 75 callbacks suppressed
[  188.305606][   T24] audit: type=1400 audit(1755229773.104:1582): avc:  denied  { read } for  pid=76 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  188.375557][ T4394] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  188.422662][ T4394] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=15
[  188.480896][   T24] audit: type=1400 audit(1755229773.132:1583): avc:  denied  { search } for  pid=76 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  188.790087][ T4413] xt_bpf: check failed: parse error
[  188.893393][   T24] audit: type=1400 audit(1755229773.132:1584): avc:  denied  { write } for  pid=76 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  188.916219][   T24] audit: type=1400 audit(1755229773.132:1585): avc:  denied  { add_name } for  pid=76 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  188.937411][   T24] audit: type=1400 audit(1755229773.132:1586): avc:  denied  { create } for  pid=76 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  188.958029][   T24] audit: type=1400 audit(1755229773.132:1587): avc:  denied  { append open } for  pid=76 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  188.982616][   T24] audit: type=1400 audit(1755229773.132:1588): avc:  denied  { getattr } for  pid=76 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  189.013020][   T24] audit: type=1400 audit(1755229773.769:1589): avc:  denied  { create } for  pid=4415 comm="syz.1.1418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  189.084452][   T24] audit: type=1400 audit(1755229773.834:1590): avc:  denied  { write } for  pid=4424 comm="syz.5.1420" name="001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  189.134877][ T4421] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  189.140745][   T24] audit: type=1400 audit(1755229773.890:1591): avc:  denied  { setopt } for  pid=4433 comm="syz.5.1422" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  189.688172][ T4459] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  189.861571][ T4466] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  189.880998][ T4466] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x00000000000003fe,user_xattr,noinit_itable,,errors=continue
[  190.076408][ T4466] EXT4-fs (loop3): re-mounted. Opts: (null)
[  190.881999][ T4485] EXT4-fs (loop5): Unrecognized mount option "mb_optimize_scan=0x0000000000000000" or missing value
[  191.092202][ T4498] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  191.165332][ T4498] EXT4-fs (loop3): orphan cleanup on readonly fs
[  191.172787][ T4498] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1447: bg 0: block 248: padding at end of block bitmap is not set
[  191.187550][ T4498] EXT4-fs error (device loop3): ext4_acquire_dquot:6226: comm syz.3.1447: Failed to acquire dquot type 1
[  191.199363][ T4498] EXT4-fs (loop3): 1 truncate cleaned up
[  191.205340][ T4498] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsdgroups,resgid=0x0000000000000000,noblock_validity,grpjquota=,grpjquota=,resuid=0x0000000000000000,auto_da_alloc,noload,jqfmt=vfsv1,,errors=continue
[  191.262481][ T4508] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1450'.
[  191.478418][ T4514] EXT4-fs (loop2): mounted filesystem without journal. Opts: noquota,noquota,grpjquota=,noauto_da_alloc,dioread_lock,,errors=continue
[  191.496743][ T4514] ext4 filesystem being mounted at /266/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.511839][ T4527] xt_bpf: check failed: parse error
[  191.681664][  T464] print_req_error: 50 callbacks suppressed
[  191.681680][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  191.708964][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  191.911540][ T4536] attempt to access beyond end of device
[  191.911540][ T4536] loop2: rw=0, want=1041, limit=128
[  192.188343][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  192.201044][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  192.212908][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  192.213635][  T464] buffer_io_error: 20 callbacks suppressed
[  192.213670][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  192.232187][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  192.310514][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  193.058169][ T4573] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  193.813696][ T4584] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  193.821008][ T4584] EXT4-fs (loop3): Test dummy encryption mode enabled
[  193.880745][ T4584] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpid,mblk_io_submit,nodioread_nolock,test_dummy_encryption,inode_readahead_blks=0x0000000000000000,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  194.167084][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  194.181546][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  194.236558][  T316] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  194.377098][  T464] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  194.437830][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  194.749554][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  194.792832][  T464] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  194.809770][  T316] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  195.377602][ T4623] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1493'.
[  195.480082][ T4626] xt_bpf: check failed: parse error
[  195.489836][ T4627] xt_bpf: check failed: parse error
[  200.924703][ T4630] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  200.991259][ T4636] print_req_error: 4 callbacks suppressed
[  200.991275][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  201.027023][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  201.038425][ T4636] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  201.085374][ T4658] device bridge_slave_1 left promiscuous mode
[  201.097798][ T4658] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.111089][ T4658] device bridge_slave_0 left promiscuous mode
[  201.116724][ T4647] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  201.117351][ T4658] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.318559][ T4666] erofs: (device loop2): mounted with root inode @ nid 36.
[  201.592012][ T4669] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1504'.
[  202.448256][   T24] kauditd_printk_skb: 101 callbacks suppressed
[  202.448266][   T24] audit: type=1400 audit(1755229786.340:1691): avc:  denied  { setopt } for  pid=4679 comm="syz.1.1508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  202.481941][   T24] audit: type=1326 audit(1755229786.368:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  202.521490][   T24] audit: type=1326 audit(1755229786.368:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  202.563824][   T24] audit: type=1326 audit(1755229786.368:1694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  202.596377][   T24] audit: type=1326 audit(1755229786.368:1695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  202.622522][ T4647] EXT4-fs error (device loop3): mb_free_blocks:1524: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[  202.644844][   T24] audit: type=1326 audit(1755229786.368:1696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  202.773828][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  202.786458][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  202.815603][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.877935][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  202.889998][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.927803][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  202.982787][ T4699] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1515'.
[  203.000912][   T24] audit: type=1326 audit(1755229786.368:1697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  203.196233][   T24] audit: type=1326 audit(1755229786.368:1698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  203.201833][ T4696] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  203.232870][   T24] audit: type=1326 audit(1755229786.368:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  203.445828][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  203.502287][   T24] audit: type=1326 audit(1755229786.368:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4681 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  203.590564][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.603899][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  203.614520][ T4644] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  203.626365][ T4644] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.639446][ T4644] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  203.699666][ T4716] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[  203.748889][ T4636] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  203.758923][ T4644] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  203.782032][ T4706] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  203.870693][ T4726] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  203.986342][ T4735] syz.0.1527[4735] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.986388][ T4735] syz.0.1527[4735] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.013152][ T4737] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1528'.
[  204.081924][ T4739] syz.5.1525[4739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.082443][ T4739] syz.5.1525[4739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.285158][ T4739] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  204.384530][ T4739] EXT4-fs (loop5): 1 truncate cleaned up
[  204.390312][ T4739] EXT4-fs (loop5): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[  204.879390][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  204.891281][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  204.915047][ T4751] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4751 comm=syz.0.1534
[  205.610174][ T4759] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  205.617479][ T4748] EXT4-fs (loop2): Ignoring removed orlov option
[  205.617582][ T4759] EXT4-fs (loop3): Test dummy encryption mode enabled
[  205.659081][ T4759] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpid,mblk_io_submit,nodioread_nolock,test_dummy_encryption,inode_readahead_blks=0x0000000000000000,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  205.661576][ T4748] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,min_batch_time=0x0000000000000004,,errors=continue
[  205.696589][ T4756] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  205.713068][ T4756] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.765635][ T4756] EXT4-fs (loop5): Ignoring removed orlov option
[  205.802615][ T4756] EXT4-fs (loop5): can't enable nombcache during remount
[  206.135102][ T4786] tipc: Started in network mode
[  206.150149][ T4786] tipc: Own node identity b6c306ee0cd4, cluster identity 4711
[  206.158050][ T4786] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  206.177194][ T4786] tipc: Disabling bearer <eth:syzkaller0>
[  206.632488][ T4636] print_req_error: 8 callbacks suppressed
[  206.632527][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  206.649687][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  206.662698][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  206.671345][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  206.691043][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  206.709342][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  207.152379][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  207.177785][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  207.222884][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  207.235418][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  207.836630][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  207.856818][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  207.955026][ T4806] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  208.063160][   T24] kauditd_printk_skb: 66 callbacks suppressed
[  208.063220][   T24] audit: type=1326 audit(1755229791.569:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4807 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  208.180332][   T24] audit: type=1326 audit(1755229791.569:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4807 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  208.210587][   T24] audit: type=1400 audit(1755229791.728:1769): avc:  denied  { mounton } for  pid=4811 comm="syz.3.1551" path="/proc/714/task" dev="proc" ino=28046 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  208.237157][   T24] audit: type=1400 audit(1755229791.728:1770): avc:  denied  { mount } for  pid=4811 comm="syz.3.1551" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  208.259561][ T4810] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  208.282777][   T24] audit: type=1400 audit(1755229791.784:1771): avc:  denied  { read write } for  pid=4802 comm="syz.5.1549" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  208.305518][   T24] audit: type=1400 audit(1755229791.784:1772): avc:  denied  { open } for  pid=4802 comm="syz.5.1549" path="/257/file0/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  208.334726][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  208.335087][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  208.346577][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  208.358599][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  208.418621][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  208.418627][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  208.524711][ T4829] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  208.556989][ T4829] EXT4-fs (loop2): 1 orphan inode deleted
[  208.562766][ T4829] EXT4-fs (loop2): 1 truncate cleaned up
[  208.568505][ T4829] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,noinit_itable,debug_want_extra_isize=0x000000000000002a,errors=remount-ro,block_validity,grpjquota=,
[  208.611277][   T24] audit: type=1400 audit(1755229792.102:1773): avc:  denied  { create } for  pid=4837 comm="syz.5.1557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  209.672231][ T4849] xt_bpf: check failed: parse error
[  209.702510][   T24] audit: type=1400 audit(1755229793.113:1774): avc:  denied  { create } for  pid=4850 comm="syz.3.1562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  209.728296][   T24] audit: type=1400 audit(1755229793.113:1775): avc:  denied  { write } for  pid=4850 comm="syz.3.1562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  209.849100][   T24] audit: type=1400 audit(1755229793.253:1776): avc:  denied  { read } for  pid=4862 comm="syz.5.1566" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  210.291092][ T4856] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  210.368781][ T4874] 9pnet: Insufficient options for proto=fd
[  210.420521][ T4874]  loop3: p1 < > p3 p4
[  210.426072][ T4874] loop3: p3 size 54016 extends beyond EOD, truncated
[  210.434762][ T4874] loop3: p4 start 4294967295 is beyond EOD, truncated
[  210.601058][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  210.613486][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  210.890539][ T4887] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  211.320421][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  211.342854][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  211.669160][ T4900] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  211.850140][ T4927] syz.2.1581[4927] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  211.850550][ T4927] syz.2.1581[4927] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  212.381837][ T4927] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  212.430279][ T4927] EXT4-fs (loop2): 1 truncate cleaned up
[  212.436008][ T4927] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[  212.814895][ T4654] print_req_error: 18 callbacks suppressed
[  212.814911][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  212.835028][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  212.859183][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  212.874555][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  212.890259][ T4636] buffer_io_error: 4 callbacks suppressed
[  212.890269][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  212.916783][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  213.018139][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  213.035736][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  213.089364][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  213.105167][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  213.119191][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  213.144623][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  213.168943][ T4977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1609'.
[  213.181073][ T4969] erofs: (device loop5): mounted with root inode @ nid 36.
[  213.202614][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  213.203034][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  213.215538][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  213.454232][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  213.812381][ T4993] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  213.915129][ T4995] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  214.013143][   T24] kauditd_printk_skb: 25 callbacks suppressed
[  214.013154][   T24] audit: type=1326 audit(1755229797.154:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5002 comm="syz.0.1620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  214.046127][ T4648] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  214.046545][ T4644] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  214.063806][   T24] audit: type=1326 audit(1755229797.163:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5002 comm="syz.0.1620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  214.092753][   T24] audit: type=1326 audit(1755229797.210:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5002 comm="syz.0.1620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  214.146704][   T24] audit: type=1326 audit(1755229797.266:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5002 comm="syz.0.1620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  214.170808][   T24] audit: type=1326 audit(1755229797.266:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5002 comm="syz.0.1620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  214.282570][ T5016] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1624: inode #1: comm syz.2.1624: iget: illegal inode #
[  214.302564][ T5016] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1624: error while reading EA inode 1 err=-117
[  214.315855][ T5016] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1624: inode #1: comm syz.2.1624: iget: illegal inode #
[  214.330939][ T5016] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1624: error while reading EA inode 1 err=-117
[  214.378072][ T5016] EXT4-fs (loop2): 1 orphan inode deleted
[  214.384023][ T5016] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue
[  214.454112][ T5037] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1633'.
[  214.470662][ T5037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1633'.
[  214.582150][ T5039] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  214.636786][ T5035] erofs: (device loop5): mounted with root inode @ nid 36.
[  214.699278][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  214.709724][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  215.121361][   T24] audit: type=1400 audit(1755229798.192:1807): avc:  denied  { write } for  pid=5047 comm="syz.3.1635" name="ppp" dev="devtmpfs" ino=153 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  215.627223][   T24] audit: type=1400 audit(1755229798.669:1808): avc:  denied  { read } for  pid=5066 comm="syz.5.1643" name="loop-control" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  215.652657][   T24] audit: type=1400 audit(1755229798.697:1809): avc:  denied  { open } for  pid=5066 comm="syz.5.1643" path="/dev/loop-control" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  215.680533][   T24] audit: type=1400 audit(1755229798.697:1810): avc:  denied  { ioctl } for  pid=5066 comm="syz.5.1643" path="/dev/loop-control" dev="devtmpfs" ino=114 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  215.769211][ T5063] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  216.186018][ T5080] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  216.537454][   T24] audit: type=1326 audit(1755229799.520:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5086 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  216.973651][ T5063] EXT4-fs error (device loop2): mb_free_blocks:1524: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[  217.017431][ T5098] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  217.026553][ T5098] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.081724][ T5113] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d)
[  217.334020][ T5124] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  218.284029][ T5136] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  218.846713][ T5149] syz.5.1659[5149] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.846793][ T5149] syz.5.1659[5149] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  219.198098][ T5152] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  219.218658][ T5152] ext4 filesystem being mounted at /296/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.333973][ T5167] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  219.412642][   T24] kauditd_printk_skb: 32 callbacks suppressed
[  219.412652][   T24] audit: type=1400 audit(1755229802.205:1844): avc:  denied  { ioctl } for  pid=5172 comm="syz.1.1683" path="socket:[28835]" dev="sockfs" ino=28835 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  219.454325][ T5175] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1677'.
[  219.478610][   T24] audit: type=1326 audit(1755229802.261:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.508666][   T24] audit: type=1326 audit(1755229802.261:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.534256][   T24] audit: type=1326 audit(1755229802.261:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.575432][ T4644] print_req_error: 14 callbacks suppressed
[  219.575447][ T4644] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  219.595074][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  219.606656][   T24] audit: type=1326 audit(1755229802.261:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.633238][   T24] audit: type=1326 audit(1755229802.261:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.660422][   T24] audit: type=1326 audit(1755229802.261:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.670407][ T5186] attempt to access beyond end of device
[  219.670407][ T5186] loop3: rw=2049, want=1041, limit=128
[  219.684378][   T24] audit: type=1326 audit(1755229802.261:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.721156][   T24] audit: type=1326 audit(1755229802.261:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5176 comm="syz.3.1682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  219.728617][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  219.745366][ T4644] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  219.767643][ T4644] buffer_io_error: 2 callbacks suppressed
[  219.767651][ T4644] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  219.811709][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  219.825597][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  219.837401][ T4654] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  219.842659][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  219.855128][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  219.871769][    T7] attempt to access beyond end of device
[  219.871769][    T7] loop3: rw=1, want=169, limit=128
[  219.878114][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  219.893635][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  219.919375][ T5201] syz.3.1692[5201] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  219.919420][ T5201] syz.3.1692[5201] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.153773][ T5206] syz.0.1688[5206] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.165209][ T5206] syz.0.1688[5206] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.194372][ T5208] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  220.240460][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  220.253226][ T4636] blk_update_request: I/O error, dev loop2, sector 8064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  220.253515][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  220.264654][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  220.323883][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  220.324394][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  220.349659][ T5212] attempt to access beyond end of device
[  220.349659][ T5212] loop5: rw=0, want=1041, limit=128
[  220.472126][ T5219] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  220.569486][   T24] audit: type=1400 audit(1755229803.290:1853): avc:  denied  { mounton } for  pid=5217 comm="syz.3.1698" path="/301/file1/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  220.597099][ T5219] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz.3.1698: Allocating blocks 385-513 which overlap fs metadata
[  220.619184][ T5217] EXT4-fs (loop3): pa ffff88811cb2a3f0: logic 16, phys. 129, len 24
[  220.627302][ T5217] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 8
[  220.646676][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.654415][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.665731][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.674630][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.682386][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.689940][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.697417][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.705289][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.712856][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.720285][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.730106][ T5229] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  220.749776][  T282] Trying to write to read-only block-device loop3 (partno 0)
[  220.758548][ T5221] Trying to write to read-only block-device loop3 (partno 0)
[  221.327371][ T4654] Buffer I/O error on dev loop2p1, logical block 1008, async page read
[  221.327379][ T4636] Buffer I/O error on dev loop2p4, logical block 1008, async page read
[  221.393521][ T5263] EXT4-fs (loop2): orphan cleanup on readonly fs
[  221.455216][ T5263] EXT4-fs error (device loop2): ext4_acquire_dquot:6226: comm syz.2.1716: Failed to acquire dquot type 1
[  221.526331][ T5263] EXT4-fs (loop2): 1 truncate cleaned up
[  221.566163][ T5263] EXT4-fs (loop2): mounted filesystem without journal. Opts: barrier,,errors=continue
[  221.693285][ T5263] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  221.782930][ T5263] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 8
[  221.827697][ T5275] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  221.868104][ T5275] EXT4-fs (loop3): orphan cleanup on readonly fs
[  221.878275][ T5275] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1720: bg 0: block 248: padding at end of block bitmap is not set
[  221.908515][ T5275] EXT4-fs error (device loop3): ext4_acquire_dquot:6226: comm syz.3.1720: Failed to acquire dquot type 1
[  221.922321][ T5275] EXT4-fs (loop3): 1 truncate cleaned up
[  221.930258][ T5275] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsdgroups,resgid=0x0000000000000000,noblock_validity,grpjquota=,grpjquota=,resuid=0x0000000000000000,auto_da_alloc,noload,jqfmt=vfsv1,,errors=continue
[  222.243886][ T5305] EXT4-fs (loop3): Ignoring removed oldalloc option
[  222.258653][ T5305] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  222.276664][ T5305] EXT4-fs (loop3): 1 truncate cleaned up
[  222.288176][ T5305] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000040,oldalloc,errors=remount-ro,minixdf,
[  222.488978][ T5318] 9pnet: Insufficient options for proto=fd
[  222.595213][ T5320] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  222.602604][ T5320] EXT4-fs (loop3): Test dummy encryption mode enabled
[  222.672596][ T5320] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpid,mblk_io_submit,nodioread_nolock,test_dummy_encryption,inode_readahead_blks=0x0000000000000000,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  222.768160][ T5331] tipc: Started in network mode
[  222.785375][ T5331] tipc: Own node identity 069ceafe726b, cluster identity 4711
[  222.798210][ T5331] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  222.805027][ T5335] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  222.822608][ T5331] tipc: Disabling bearer <eth:syzkaller0>
[  222.980585][ T5341] EXT4-fs (loop5): Ignoring removed nobh option
[  222.987218][ T5341] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled
[  223.001890][ T5341] EXT4-fs error (device loop5): ext4_orphan_get:1395: inode #15: comm syz.5.1745: iget: bad i_size value: 38620345925642
[  223.086425][ T5341] EXT4-fs error (device loop5): ext4_orphan_get:1400: comm syz.5.1745: couldn't read orphan inode 15 (err -117)
[  223.106278][ T5341] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,jqfmt=vfsv0,data_err=ignore,,errors=continue
[  223.241996][ T5355] 9pnet: Insufficient options for proto=fd
[  223.397087][ T5355]  loop2: p1 < > p3 p4
[  223.406601][ T5355] loop2: p3 size 54016 extends beyond EOD, truncated
[  223.417205][ T5355] loop2: p4 start 4294967295 is beyond EOD, truncated
[  223.602297][ T5359] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  223.622196][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  223.654217][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  223.668543][ T5359] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz.3.1750: Allocating blocks 449-513 which overlap fs metadata
[  223.692940][ T5358] EXT4-fs (loop3): pa ffff88811c879738: logic 48, phys. 177, len 21
[  223.701061][ T5358] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 4
[  223.852387][ T5387] device veth0 entered promiscuous mode
[  223.880059][ T5372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5372 comm=syz.1.1755
[  223.895403][ T5387] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1763'.
[  224.399166][ T5409] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  225.187282][   T24] kauditd_printk_skb: 57 callbacks suppressed
[  225.187293][   T24] audit: type=1326 audit(1755229807.602:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.279321][   T24] audit: type=1326 audit(1755229807.649:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.329632][ T5438] EXT4-fs (loop5): dax option not supported
[  225.491157][   T24] audit: type=1326 audit(1755229807.649:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.572522][   T24] audit: type=1326 audit(1755229807.649:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.660736][   T24] audit: type=1326 audit(1755229807.649:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.692642][   T20] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  225.694726][   T24] audit: type=1326 audit(1755229807.649:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.779189][ T5479] xt_bpf: check failed: parse error
[  225.790882][   T24] audit: type=1326 audit(1755229807.649:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.814625][   T24] audit: type=1326 audit(1755229807.649:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.867603][   T24] audit: type=1326 audit(1755229807.649:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.915886][   T24] audit: type=1326 audit(1755229807.649:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5434 comm="syz.5.1779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f92624d6be9 code=0x7ffc0000
[  225.941664][ T5484]  loop3: p1 < > p3 p4
[  225.946800][ T5484] loop3: p3 size 54016 extends beyond EOD, truncated
[  225.954992][ T5484] loop3: p4 start 4294967295 is beyond EOD, truncated
[  225.983282][ T5488] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  226.083881][ T5493] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1805'.
[  226.093966][ T5493] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1805'.
[  226.106515][  T282] __loop_clr_fd: partition scan of loop3 failed (rc=-16)
[  226.111556][ T4636] print_req_error: 18 callbacks suppressed
[  226.111572][ T4636] blk_update_request: I/O error, dev loop3, sector 23 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  226.115929][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  226.120472][ T4636] blk_update_request: I/O error, dev loop3, sector 23 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.154779][   T20] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.165786][   T20] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.176090][   T20] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  226.179054][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.189443][   T20] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  226.209502][   T20] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.218007][ T4636] buffer_io_error: 4 callbacks suppressed
[  226.218016][ T4636] Buffer I/O error on dev loop3p3, logical block 8, async page read
[  226.233637][   T20] usb 6-1: config 0 descriptor??
[  226.248456][ T4636] blk_update_request: I/O error, dev loop3, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.259730][ T4636] Buffer I/O error on dev loop3p3, logical block 9, async page read
[  226.267779][ T4636] blk_update_request: I/O error, dev loop3, sector 25 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.278856][ T4636] Buffer I/O error on dev loop3p3, logical block 10, async page read
[  226.287935][ T4636] blk_update_request: I/O error, dev loop3, sector 26 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.294359][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  226.298920][ T4636] Buffer I/O error on dev loop3p3, logical block 11, async page read
[  226.316655][ T4636] blk_update_request: I/O error, dev loop3, sector 27 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.327645][ T4636] Buffer I/O error on dev loop3p3, logical block 12, async page read
[  226.335841][ T4636] blk_update_request: I/O error, dev loop3, sector 28 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.346825][ T4636] Buffer I/O error on dev loop3p3, logical block 13, async page read
[  226.354971][ T4636] blk_update_request: I/O error, dev loop3, sector 29 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.370404][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  226.379019][ T4636] Buffer I/O error on dev loop3p3, logical block 14, async page read
[  226.387797][ T4636] Buffer I/O error on dev loop3p3, logical block 15, async page read
[  226.484638][ T5512] EXT4-fs (loop3): Unrecognized mount option "mb_optimize_scan=0x0000000000000000" or missing value
[  226.665937][ T5527] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  226.715033][ T5527] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz.3.1813: Allocating blocks 385-513 which overlap fs metadata
[  226.844074][   T20] acrux 0003:1A34:0802.0005: unknown main item tag 0x0
[  226.852368][ T5527] EXT4-fs (loop3): pa ffff88811c879dc8: logic 16, phys. 129, len 24
[  226.860565][ T5527] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 8
[  226.866979][   T20] acrux 0003:1A34:0802.0005: unknown main item tag 0x0
[  226.901001][   T20] acrux 0003:1A34:0802.0005: unknown main item tag 0x0
[  226.908436][   T20] acrux 0003:1A34:0802.0005: unknown main item tag 0x0
[  226.915719][   T20] acrux 0003:1A34:0802.0005: unknown main item tag 0x0
[  226.929622][   T20] acrux 0003:1A34:0802.0005: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.5-1/input0
[  226.940979][   T20] acrux 0003:1A34:0802.0005: no inputs found
[  226.947367][   T20] acrux 0003:1A34:0802.0005: Failed to enable force feedback support, error: -19
[  227.043305][   T20] usb 6-1: USB disconnect, device number 8
[  227.198490][ T5543] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  227.207259][ T5542] fido_id[5542]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  227.242741][ T5543] SELinux: failed to load policy
[  227.294388][ T5438] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5438 comm=syz.5.1781
[  227.514072][ T5553] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrquota,acl,,errors=continue
[  227.540357][ T5553] ext4 filesystem being mounted at /336/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.579053][ T5562] xt_bpf: check failed: parse error
[  228.163688][ T5572] syz.3.1829[5572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.164478][ T5572] syz.3.1829[5572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.359486][ T5572] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1829'.
[  228.693346][  T368] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  228.705633][  T368] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  228.723341][ T5592] mmap: syz.1.1836 (5592) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  228.756460][ T5588] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  228.771686][ T5588] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  228.782214][ T5588] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  228.815288][ T5588] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodioread_nolock,nolazytime,abort,errors=continue,dioread_nolock,jqfmt=vfsv0,nomblk_io_submit,nobarrier,,errors=continue
[  228.911646][ T5620] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  229.136492][ T5640] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  229.325145][ T5616] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  229.348863][ T5616] FAT-fs (loop5): Filesystem has been set read-only
[  230.345171][ T5658] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  230.384213][ T5660] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  230.615105][ T5658] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3342: comm syz.5.1861: Allocating blocks 385-513 which overlap fs metadata
[  230.765952][ T5658] EXT4-fs (loop5): pa ffff88811c879930: logic 16, phys. 129, len 24
[  230.774141][ T5658] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 8
[  230.939483][   T24] kauditd_printk_skb: 75 callbacks suppressed
[  230.939494][   T24] audit: type=1400 audit(1755229812.990:1992): avc:  denied  { write } for  pid=5679 comm="syz.0.1871" path="socket:[29570]" dev="sockfs" ino=29570 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  231.243191][   T24] audit: type=1326 audit(1755229813.280:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.268303][   T24] audit: type=1326 audit(1755229813.280:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.296211][   T24] audit: type=1326 audit(1755229813.280:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.321320][   T24] audit: type=1326 audit(1755229813.280:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.348763][ T5696] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  231.396611][   T24] audit: type=1326 audit(1755229813.280:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.445062][   T24] audit: type=1326 audit(1755229813.280:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.486543][   T24] audit: type=1326 audit(1755229813.280:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.510528][   T24] audit: type=1326 audit(1755229813.280:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5703 comm="syz.3.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  231.580921][ T5709] device wireguard0 entered promiscuous mode
[  231.602199][ T4654] print_req_error: 198 callbacks suppressed
[  231.602271][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  231.626817][ T5713] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5713 comm=syz.3.1883
[  231.633769][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.650937][ T4654] buffer_io_error: 172 callbacks suppressed
[  231.650968][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  231.652028][ T4636] blk_update_request: I/O error, dev loop3, sector 23 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  231.678806][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.691874][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  231.702758][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.706408][ T4636] blk_update_request: I/O error, dev loop3, sector 23 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.725510][ T4636] Buffer I/O error on dev loop3p3, logical block 8, async page read
[  231.738627][   T24] audit: type=1400 audit(1755229813.738:2001): avc:  denied  { mount } for  pid=5714 comm="syz.2.1884" name="/" dev="ramfs" ino=30203 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  231.761768][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  231.762183][ T4636] blk_update_request: I/O error, dev loop3, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.783420][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.783754][ T4636] Buffer I/O error on dev loop3p3, logical block 9, async page read
[  231.803750][ T4636] blk_update_request: I/O error, dev loop3, sector 25 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.807533][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  231.824448][ T4654] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  231.838880][ T4654] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  231.848730][ T4636] Buffer I/O error on dev loop3p3, logical block 10, async page read
[  231.878291][ T4636] Buffer I/O error on dev loop3p3, logical block 11, async page read
[  231.905225][ T4636] Buffer I/O error on dev loop3p3, logical block 12, async page read
[  232.159305][ T5719] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  232.185773][ T5719] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz.2.1886: Allocating blocks 385-513 which overlap fs metadata
[  232.201885][ T5719] EXT4-fs (loop2): pa ffff88811c879bd0: logic 16, phys. 129, len 24
[  232.210193][ T5719] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 8
[  232.290920][ T5734] device wireguard0 entered promiscuous mode
[  232.344058][ T5744] 9pnet: Could not find request transport: fd0x0000000000000003
[  232.388339][ T5752] netlink: 'syz.1.1900': attribute type 13 has an invalid length.
[  232.397337][ T5752] gretap0: refused to change device tx_queue_len
[  232.403977][ T5752] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  232.456937][ T5747] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  232.467258][ T5747] EXT4-fs (loop5): orphan cleanup on readonly fs
[  232.477572][ T5747] EXT4-fs error (device loop5): ext4_acquire_dquot:6226: comm syz.5.1898: Failed to acquire dquot type 1
[  232.523082][ T5766] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1905'.
[  232.696321][ T5747] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1898: bg 0: block 40: padding at end of block bitmap is not set
[  232.716613][ T5766] sch_tbf: burst 88 is lower than device veth7 mtu (1514) !
[  232.731332][ T5747] EXT4-fs error (device loop5) in ext4_mb_clear_bb:5645: Corrupt filesystem
[  232.759855][ T5747] EXT4-fs (loop5): 1 truncate cleaned up
[  232.765613][ T5747] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  233.046182][ T5800] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  233.873060][ T5814] SELinux:  policydb version 0 does not match my version range 15-33
[  233.887834][ T5814] SELinux: failed to load policy
[  233.972392][ T5825] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1928'.
[  234.034824][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x1
[  234.042703][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.050261][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.105789][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.113880][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.121410][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.129186][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.136887][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x2
[  234.153383][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.166639][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.220415][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x4
[  234.270642][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.291788][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.325756][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.340135][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.371845][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x2
[  234.387726][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.408101][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.429403][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.508689][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.542358][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.561181][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.594388][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.620123][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.644863][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.676908][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.702667][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.728434][ T5855] 9pnet: p9_errstr2errno: server reported unknown error 
[  234.735883][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.751312][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.773548][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.795224][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.816482][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.836926][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.858322][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.890699][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.917431][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  234.940971][  T585] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  235.065410][  T585] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  235.119435][ T5869] syz.2.1944[5869] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.119497][ T5869] syz.2.1944[5869] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.329004][ T5893] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1956'.
[  235.357625][ T5871]  loop3: p1 p2[DM] p4
[  235.363275][ T5871] loop3: p1 size 196608 extends beyond EOD, truncated
[  235.394267][ T5871] loop3: p2 start 4292936063 is beyond EOD, truncated
[  235.437207][ T5871] loop3: p4 size 50331648 extends beyond EOD, truncated
[  235.493592][   T94]  loop3: p1 p2[DM] p4
[  235.501143][   T94] loop3: p1 size 196608 extends beyond EOD, truncated
[  235.505215][ T5907] syz.0.1960[5907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.508690][ T5907] syz.0.1960[5907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.535209][   T94] loop3: p2 start 4292936063 is beyond EOD, truncated
[  235.568533][   T94] loop3: p4 size 50331648 extends beyond EOD, truncated
[  235.748304][ T5909] syz.2.1961[5909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.749233][ T5909] syz.2.1961[5909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.071240][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  236.071810][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  236.199575][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  236.258794][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  236.324768][ T5919] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  236.390106][   T24] kauditd_printk_skb: 67 callbacks suppressed
[  236.390117][   T24] audit: type=1326 audit(1755229819.088:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.422278][   T24] audit: type=1326 audit(1755229819.098:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.453920][ T5935] xt_bpf: check failed: parse error
[  236.510642][   T24] audit: type=1326 audit(1755229819.098:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.535035][   T24] audit: type=1326 audit(1755229819.098:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.617864][ T5955] syz.0.1981[5955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.618650][ T5955] syz.0.1981[5955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.631346][   T24] audit: type=1326 audit(1755229819.098:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.727395][ T5948]  loop2: p1 < > p4
[  236.734246][ T5948] loop2: p4 size 8388608 extends beyond EOD, truncated
[  236.820268][   T24] audit: type=1326 audit(1755229819.098:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  236.864746][ T5956] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  237.400693][ T5963] syz.1.1976[5963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  237.400774][ T5963] syz.1.1976[5963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  237.434039][   T24] audit: type=1326 audit(1755229819.098:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  237.469679][   T24] audit: type=1326 audit(1755229819.098:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  237.497039][   T24] audit: type=1326 audit(1755229819.098:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  237.533516][   T24] audit: type=1326 audit(1755229819.098:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5928 comm="syz.3.1967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b16358be9 code=0x7ffc0000
[  237.816367][ T5982] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 2074)
[  237.825151][ T5982] FAT-fs (loop5): Filesystem has been set read-only
[  237.917653][ T5984] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  237.937967][ T5984] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  238.002498][ T5984] EXT4-fs error (device loop3): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  238.019162][ T5984] EXT4-fs (loop3): Remounting filesystem read-only
[  238.028197][ T5984] EXT4-fs (loop3): 1 truncate cleaned up
[  238.034788][ T5984] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,usrjquota="errors=continue,errors=remount-ro,nomblk_io_submit,
[  238.405174][ T6009] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1998: bg 0: block 248: padding at end of block bitmap is not set
[  238.420210][ T6009] EXT4-fs error (device loop3): ext4_acquire_dquot:6226: comm syz.3.1998: Failed to acquire dquot type 1
[  238.432595][ T6009] EXT4-fs (loop3): 1 truncate cleaned up
[  238.438579][ T6009] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  238.447975][ T6009] ext4 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.652738][ T6031] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  238.704139][ T6033] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  238.734193][ T6033] EXT4-fs (loop5): mounted filesystem without journal. Opts: user_xattr,noquota,dioread_nolock,jqfmt=vfsv1,debug_want_extra_isize=0x0000000000000070,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000020,bsdgroups,max_batch_time=0x00000000000003fe,user_xattr,noinit_itable,,errors=continue
[  238.797291][ T6033] EXT4-fs error (device loop5): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  238.813955][ T6033] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[  238.841082][ T6033] EXT4-fs (loop5): This should not happen!! Data will be lost
[  238.841082][ T6033] 
[  238.862521][ T6033] EXT4-fs (loop5): Total free blocks count 0
[  238.868949][ T6033] EXT4-fs (loop5): Free/Dirty block details
[  238.882929][ T6033] EXT4-fs (loop5): free_blocks=20480
[  238.888477][ T6033] EXT4-fs (loop5): dirty_blocks=96
[  238.893970][ T6033] EXT4-fs (loop5): Block reservation details
[  238.900555][ T6033] EXT4-fs (loop5): i_reserved_data_blocks=6
[  238.911557][  T441] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  238.923937][  T441] EXT4-fs (loop5): This should not happen!! Data will be lost
[  238.923937][  T441] 
[  238.975025][ T6053] xt_bpf: check failed: parse error
[  239.153857][ T6066] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 !
[  239.154683][ T6063] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e64, utbl_chksum : 0xe619d30d)
[  239.324825][ T6078] EXT4-fs (loop2): mounted filesystem without journal. Opts: nouid32,acl,,errors=continue
[  239.421829][ T6090] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2029'.
[  239.927313][ T6153] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  239.937200][ T6153] ext4 filesystem being mounted at /374/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.972908][ T6160] tmpfs: Unsupported parameter 'mpol'
[  240.088782][ T6174] device veth0 entered promiscuous mode
[  240.094949][ T6174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2068'.
[  240.254550][ T6183] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  240.263663][ T6183] ext4 filesystem being mounted at /383/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.489809][ T6201] syz.3.2073[6201] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  240.489888][ T6201] syz.3.2073[6201] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  240.666314][ T6201] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  240.707938][ T6201] EXT4-fs (loop3): 1 truncate cleaned up
[  240.713685][ T6201] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[  241.321191][ T6240] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2093'.
[  241.330229][ T6240] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2093'.
[  241.359802][ T6244] 9pnet: Insufficient options for proto=fd
[  241.444892][ T6255] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2102'.
[  241.531604][ T6267] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2105'.
[  242.485617][ T6291] syz.3.2117[6291] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  242.485678][ T6291] syz.3.2117[6291] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  242.500558][   T24] kauditd_printk_skb: 99 callbacks suppressed
[  242.500568][   T24] audit: type=1400 audit(1755229824.804:2174): avc:  denied  { setopt } for  pid=6290 comm="syz.3.2117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  242.554522][   T24] audit: type=1400 audit(1755229824.860:2175): avc:  denied  { bind } for  pid=6290 comm="syz.3.2117" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  242.591187][   T24] audit: type=1400 audit(1755229824.860:2176): avc:  denied  { ioctl } for  pid=6290 comm="syz.3.2117" path="socket:[31392]" dev="sockfs" ino=31392 ioctlcmd=0x48e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  242.663027][ T6306] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2122'.
[  242.683190][   T24] audit: type=1326 audit(1755229824.972:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.716578][   T24] audit: type=1326 audit(1755229824.972:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.741452][ T6315] netlink: 'syz.0.2127': attribute type 7 has an invalid length.
[  242.749463][ T6315] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2127'.
[  242.761246][   T24] audit: type=1326 audit(1755229824.972:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.785715][   T24] audit: type=1326 audit(1755229824.972:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.811137][   T24] audit: type=1326 audit(1755229824.972:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.836824][   T24] audit: type=1326 audit(1755229824.972:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  242.860585][   T24] audit: type=1326 audit(1755229824.972:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6311 comm="syz.0.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd59ecf0be9 code=0x7ffc0000
[  243.020954][ T6347] syz.3.2139[6347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.021021][ T6347] syz.3.2139[6347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.261168][ T6370] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2149'.
[  243.477731][ T6381] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  243.490480][ T6381] ext4 filesystem being mounted at /349/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  243.516491][ T6381] EXT4-fs error (device loop5): ext4_validate_block_bitmap:420: comm syz.5.2153: bg 0: bad block bitmap checksum
[  244.150863][ T6392] EXT4-fs (loop5): dax option not supported
[  244.169685][ T6401] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2161'.
[  244.318631][ T6413] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[  244.419101][ T6417] syz.0.2166[6417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  244.419140][ T6417] syz.0.2166[6417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  244.535006][ T6425]  loop2: p1 < > p4
[  244.557423][ T6425] loop2: p4 size 8388608 extends beyond EOD, truncated
[  244.907431][ T6436] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  244.936154][ T6436] EXT4-fs error (device loop5): ext4_get_journal_inode:5243: comm syz.5.2174: inode #1661: comm syz.5.2174: iget: illegal inode #
[  244.951357][ T6436] EXT4-fs (loop5): no journal found
[  244.956646][ T6436] EXT4-fs (loop5): can't get journal size
[  244.986286][ T6436] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  244.996543][ T6436] [EXT4 FS bs=1024, gc=1, bpg=4096, ipg=32, mo=8016c118, mo2=0000]
[  245.008044][ T6436] EXT4-fs (loop5): Errors on filesystem, clearing orphan list.
[  245.008044][ T6436] 
[  245.018990][ T6442] EXT4-fs (loop3): Ignoring removed nobh option
[  245.027792][ T6436] EXT4-fs (loop5): mounted filesystem without journal. Opts: jqfmt=vfsold,grpjquota=,debug,noload,jqfmt=vfsv1,noblock_validity,grpquota,max_dir_size_kb=0x0000000000000002,usrjquota=,,errors=continue
[  245.052109][ T6442] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue
[  245.063155][ T6442] ext4 filesystem being mounted at /405/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  245.209693][ T6443] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  245.219057][ T6443] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.305701][ T6457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2181'.
[  245.334364][ T6459] SELinux:  Context Ü is not valid (left unmapped).
[  245.751562][ T6467] syz.1.2184[6467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  245.751790][ T6467] syz.1.2184[6467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  245.826858][ T6471] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  245.934305][ T6471] EXT4-fs (loop2): 1 truncate cleaned up
[  245.945355][ T6471] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006e,user_xattr,errors=remount-ro,quota,
[  246.343391][ T6499] 9pnet: Could not find request transport: 44073709551615
[  246.355093][ T6497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2195'.
[  246.722168][ T6517] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  246.786341][ T6534] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2213'.
[  246.853194][ T6536] EXT4-fs (loop5): Ignoring removed orlov option
[  246.883407][ T6536] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,noauto_da_alloc,inlinecrypt,dioread_lock,data_err=ignore,barrier=0x0000000000000007,data_err=ignore,grpquota,noblock_validity,user_xattr,resuid=0x0000000000000000,errors=remount-ro,
[  247.043357][ T6549] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  247.054539][ T6549] ext4 filesystem being mounted at /360/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.179218][ T6562] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2224'.
[  247.530164][ T6583] tmpfs: Unsupported parameter 'mpol'
[  247.555253][ T6585] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2234'.
[  247.638765][ T6591] EXT4-fs (loop2): Ignoring removed nobh option
[  247.661324][ T6591] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue
[  247.671849][ T6591] ext4 filesystem being mounted at /387/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  247.993395][   T24] kauditd_printk_skb: 213 callbacks suppressed
[  247.993557][   T24] audit: type=1400 audit(1755229829.808:2397): avc:  denied  { read } for  pid=6588 comm="syz.2.2236" dev="nsfs" ino=4026532558 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  248.055425][   T24] audit: type=1400 audit(1755229829.808:2398): avc:  denied  { open } for  pid=6588 comm="syz.2.2236" path="net:[4026532558]" dev="nsfs" ino=4026532558 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  248.080100][   T24] audit: type=1400 audit(1755229829.817:2399): avc:  denied  { create } for  pid=6588 comm="syz.2.2236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  248.101606][   T24] audit: type=1400 audit(1755229829.817:2400): avc:  denied  { append } for  pid=6588 comm="syz.2.2236" path="/387/mnt/memory.events.local" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  248.154560][   T24] audit: type=1326 audit(1755229830.098:2401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.191220][   T24] audit: type=1326 audit(1755229830.117:2402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.244128][   T15] kernel write not supported for file /1027/attr/exec (pid: 15 comm: kworker/0:1)
[  248.271108][   T24] audit: type=1326 audit(1755229830.117:2403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.295113][   T24] audit: type=1326 audit(1755229830.117:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.318818][   T24] audit: type=1326 audit(1755229830.117:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.343376][   T24] audit: type=1326 audit(1755229830.117:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6615 comm="syz.1.2247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  248.383098][ T6629] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  248.398466][ T6633] syz.1.2249[6633] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  248.398874][ T6633] syz.1.2249[6633] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  248.468577][ T6629] EXT4-fs (loop3): 1 truncate cleaned up
[  248.486388][ T6629] EXT4-fs (loop3): mounted filesystem without journal. Opts: barrier=0x0000000000000101,errors=remount-ro,
[  248.563046][  T368] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  248.998791][  T368] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.009364][  T368] usb 6-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  249.018593][  T368] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.084799][  T368] usb 6-1: config 0 descriptor??
[  249.543654][ T6644] device wg2 entered promiscuous mode
[  249.883539][  T368] hid-generic 0003:04F3:0755.0008: failed to start in urb: -90
[  249.900922][  T368] hid-generic 0003:04F3:0755.0008: hidraw0: USB HID v0.00 Device [HID 04f3:0755] on usb-dummy_hcd.5-1/input0
[  250.943734][ T6672] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  251.136874][ T6679] erofs: (device loop2): mounted with root inode @ nid 36.
[  251.411971][  T585] usb 6-1: USB disconnect, device number 9
[  251.503226][ T6687] attempt to access beyond end of device
[  251.503226][ T6687] loop5: rw=0, want=1041, limit=128
[  252.110294][ T6701]  loop3: p1 p2[DM] p4
[  252.116815][ T6701] loop3: p1 size 196608 extends beyond EOD, truncated
[  252.124800][ T6701] loop3: p2 start 4292936063 is beyond EOD, truncated
[  252.132362][ T6701] loop3: p4 size 50331648 extends beyond EOD, truncated
[  252.633578][ T6718] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  252.669083][ T6727] EXT4-fs warning (device loop5): ext4_enable_quotas:6491: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  252.693082][ T6718] EXT4-fs (loop3): 1 truncate cleaned up
[  252.695473][ T6727] EXT4-fs (loop5): mount failed
[  252.704930][ T6718] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006e,user_xattr,errors=remount-ro,quota,
[  252.750640][ T6736] syz.0.2290[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  252.750702][ T6736] syz.0.2290[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  252.805358][ T6740] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  252.826172][ T6740] SELinux: failed to load policy
[  253.034204][ T6775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2309'.
[  253.056602][ T6779] syz.5.2296[6779] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  253.056677][ T6779] syz.5.2296[6779] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.023880][   T24] kauditd_printk_skb: 59 callbacks suppressed
[  254.023892][   T24] audit: type=1326 audit(1755229835.589:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6793 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  254.183056][   T24] audit: type=1326 audit(1755229835.626:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6793 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  254.218620][ T6798]  loop2: p1 < > p3 p4
[  254.226363][ T6798] loop2: p3 size 54016 extends beyond EOD, truncated
[  254.227073][ T6813] xt_bpf: check failed: parse error
[  254.241052][ T6798] loop2: p4 start 4294967295 is beyond EOD, truncated
[  254.243383][   T24] audit: type=1326 audit(1755229835.626:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6793 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  254.271953][   T24] audit: type=1326 audit(1755229835.636:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6793 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  255.306447][   T24] audit: type=1326 audit(1755229835.636:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6793 comm="syz.1.2316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf2af65be9 code=0x7ffc0000
[  255.365079][   T24] audit: type=1400 audit(1755229835.710:2470): avc:  denied  { write } for  pid=6804 comm="syz.1.2322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  255.385507][   T24] audit: type=1400 audit(1755229835.710:2471): avc:  denied  { create } for  pid=6806 comm="syz.3.2320" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_audit_socket permissive=1
[  255.406887][   T24] audit: type=1400 audit(1755229835.795:2472): avc:  denied  { write } for  pid=6797 comm="syz.2.2318" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  255.428847][   T24] audit: type=1400 audit(1755229835.795:2473): avc:  denied  { add_name } for  pid=6797 comm="syz.2.2318" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  255.488589][   T24] audit: type=1400 audit(1755229835.795:2474): avc:  denied  { create } for  pid=6797 comm="syz.2.2318" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  255.519831][ T6817] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  255.527186][ T6817] EXT4-fs (loop3): Test dummy encryption mode enabled
[  255.550655][ T6817] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpid,mblk_io_submit,nodioread_nolock,test_dummy_encryption,inode_readahead_blks=0x0000000000000000,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue
[  255.630718][ T4644] print_req_error: 169 callbacks suppressed
[  255.630733][ T4644] blk_update_request: I/O error, dev loop2, sector 23 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  255.632547][  T281] __loop_clr_fd: partition scan of loop2 failed (rc=-16)
[  255.636784][ T4654] blk_update_request: I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  255.681386][ T4644] blk_update_request: I/O error, dev loop2, sector 23 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  255.695032][ T4644] buffer_io_error: 146 callbacks suppressed
[  255.695042][ T4644] Buffer I/O error on dev loop2p3, logical block 8, async page read
[  255.732933][ T6839] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  255.784033][ T6839] ext4 filesystem being mounted at /397/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  255.813597][ T6839] EXT4-fs error (device loop2) in ext4_do_update_inode:5336: error 27
[  255.836260][ T6839] EXT4-fs error (device loop2): ext4_dirty_inode:6143: inode #2: comm syz.2.2334: mark_inode_dirty error
[  255.848777][ T6839] EXT4-fs error (device loop2) in ext4_do_update_inode:5336: error 27
[  255.860308][ T6839] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.2334: mark_inode_dirty error
[  255.928034][ T6864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2345'.
[  255.960845][ T6861] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  255.973397][ T6861] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.981557][ T6868] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 52)
[  255.999439][ T6868] FAT-fs (loop5): Filesystem has been set read-only
[  256.019938][ T4636] blk_update_request: I/O error, dev loop2, sector 23 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  256.021763][ T4654] blk_update_request: I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  256.031764][ T4636] blk_update_request: I/O error, dev loop2, sector 23 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  256.053727][ T4636] Buffer I/O error on dev loop2p3, logical block 8, async page read
[  256.062999][ T4636] blk_update_request: I/O error, dev loop2, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  256.069045][ T4654] blk_update_request: I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  256.074842][ T4636] Buffer I/O error on dev loop2p3, logical block 9, async page read
[  256.086077][ T4654] Buffer I/O error on dev loop2p1, logical block 0, async page read
[  256.129649][ T6878] loop_reread_partitions: partition scan of loop2 () failed (rc=-16)
[  256.208327][ T6885] xt_bpf: check failed: parse error
[  256.271184][ T4654] udevd[4654]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  256.297487][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  256.526892][ T4644] udevd[4644]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  256.608560][ T4636] udevd[4636]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  257.185408][ T6900] EXT4-fs (loop3): mounted filesystem without journal. Opts: noquota,errors=remount-ro,barrier=0x0000000000000003,nolazytime,
[  257.208576][ T6900] ext4 filesystem being mounted at /432/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  257.249103][ T6906] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6906 comm=syz.0.2358
[  257.310460][ T6919] ==================================================================
[  257.318572][ T6919] BUG: KASAN: slab-out-of-bounds in tc_setup_flow_action+0x842/0x3280
[  257.326719][ T6919] Read of size 8 at addr ffff888116c86ec0 by task syz.5.2364/6919
[  257.334510][ T6919] 
[  257.337013][ T6919] CPU: 1 PID: 6919 Comm: syz.5.2364 Not tainted 5.10.240-syzkaller #0
[  257.345172][ T6919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  257.355345][ T6919] Call Trace:
[  257.358637][ T6919]  __dump_stack+0x21/0x24
[  257.362962][ T6919]  dump_stack_lvl+0x169/0x1d8
[  257.367630][ T6919]  ? show_regs_print_info+0x18/0x18
[  257.372817][ T6919]  ? thaw_kernel_threads+0x220/0x220
[  257.378099][ T6919]  print_address_description+0x7f/0x2c0
[  257.383637][ T6919]  ? tc_setup_flow_action+0x842/0x3280
[  257.389089][ T6919]  kasan_report+0xe2/0x130
[  257.393521][ T6919]  ? flow_action_cookie_create+0x28/0x90
[  257.399156][ T6919]  ? tc_setup_flow_action+0x842/0x3280
[  257.404617][ T6919]  __asan_report_load8_noabort+0x14/0x20
[  257.410287][ T6919]  tc_setup_flow_action+0x842/0x3280
[  257.415578][ T6919]  ? __kmalloc+0x1a7/0x330
[  257.420016][ T6919]  ? flow_rule_alloc+0x32/0x2c0
[  257.425046][ T6919]  mall_replace_hw_filter+0x293/0x810
[  257.430657][ T6919]  ? pcpu_block_update_hint_alloc+0x8bc/0xc50
[  257.436718][ T6919]  ? mall_set_parms+0x410/0x410
[  257.441561][ T6919]  ? tcf_exts_destroy+0xb0/0xb0
[  257.446411][ T6919]  ? pcpu_alloc+0xf8a/0x16b0
[  257.451097][ T6919]  ? mall_set_parms+0x19d/0x410
[  257.455952][ T6919]  mall_change+0x528/0x750
[  257.460374][ T6919]  ? __kasan_check_write+0x14/0x20
[  257.465494][ T6919]  ? mall_get+0xa0/0xa0
[  257.469753][ T6919]  ? tcf_chain_tp_insert_unique+0xac1/0xc10
[  257.475749][ T6919]  ? nla_strcmp+0xf4/0x140
[  257.480261][ T6919]  tc_new_tfilter+0x13f6/0x1a10
[  257.485121][ T6919]  ? mall_get+0xa0/0xa0
[  257.489272][ T6919]  ? tcf_gate_entry_destructor+0x20/0x20
[  257.494932][ T6919]  ? security_capable+0x87/0xb0
[  257.499774][ T6919]  ? ns_capable+0x8c/0xf0
[  257.504095][ T6919]  ? netlink_net_capable+0x125/0x160
[  257.509372][ T6919]  ? tcf_gate_entry_destructor+0x20/0x20
[  257.515001][ T6919]  rtnetlink_rcv_msg+0x800/0xb90
[  257.519946][ T6919]  ? rtnetlink_bind+0x80/0x80
[  257.524628][ T6919]  ? arch_stack_walk+0xee/0x140
[  257.529480][ T6919]  ? stack_trace_save+0x98/0xe0
[  257.534352][ T6919]  ? stack_trace_snprint+0xf0/0xf0
[  257.539455][ T6919]  ? memcpy+0x56/0x70
[  257.543434][ T6919]  ? avc_has_perm+0x234/0x360
[  257.548100][ T6919]  ? __kasan_slab_alloc+0xbd/0xf0
[  257.553115][ T6919]  ? slab_post_alloc_hook+0x5d/0x2f0
[  257.558483][ T6919]  ? ___sys_sendmsg+0x1f0/0x260
[  257.563329][ T6919]  ? avc_has_perm_noaudit+0x240/0x240
[  257.568705][ T6919]  ? selinux_nlmsg_lookup+0x3fb/0x4a0
[  257.574075][ T6919]  netlink_rcv_skb+0x1e0/0x430
[  257.578832][ T6919]  ? rtnetlink_bind+0x80/0x80
[  257.583509][ T6919]  ? netlink_ack+0xb80/0xb80
[  257.588106][ T6919]  ? __netlink_lookup+0x387/0x3b0
[  257.593131][ T6919]  rtnetlink_rcv+0x1c/0x20
[  257.597541][ T6919]  netlink_unicast+0x876/0xa40
[  257.602303][ T6919]  netlink_sendmsg+0x88d/0xb30
[  257.607064][ T6919]  ? netlink_getsockopt+0x530/0x530
[  257.612341][ T6919]  ? security_socket_sendmsg+0x82/0xa0
[  257.617795][ T6919]  ? netlink_getsockopt+0x530/0x530
[  257.623002][ T6919]  ____sys_sendmsg+0x5a2/0x8c0
[  257.626534][ T6900] EXT4-fs error (device loop3): dx_make_map:1303: inode #2: block 63: comm syz.3.2356: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  257.627764][ T6919]  ? __sys_sendmsg_sock+0x40/0x40
[  257.627786][ T6919]  ? import_iovec+0x7c/0xb0
[  257.655506][ T6919]  ___sys_sendmsg+0x1f0/0x260
[  257.660181][ T6919]  ? __sys_sendmsg+0x250/0x250
[  257.664947][ T6919]  ? __fdget+0x1a1/0x230
[  257.669191][ T6919]  __x64_sys_sendmsg+0x1e2/0x2a0
[  257.674138][ T6919]  ? ___sys_sendmsg+0x260/0x260
[  257.678980][ T6919]  ? switch_fpu_return+0x197/0x340
[  257.684179][ T6919]  do_syscall_64+0x31/0x40
[  257.688595][ T6919]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  257.694483][ T6919] RIP: 0033:0x7f92624d6be9
[  257.698895][ T6919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.718934][ T6919] RSP: 002b:00007f9260f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  257.727340][ T6919] RAX: ffffffffffffffda RBX: 00007f92626fdfa0 RCX: 00007f92624d6be9
[  257.735310][ T6919] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000005
[  257.743287][ T6919] RBP: 00007f9262559e19 R08: 0000000000000000 R09: 0000000000000000
[  257.751253][ T6919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.759391][ T6919] R13: 00007f92626fe038 R14: 00007f92626fdfa0 R15: 00007fff41598488
[  257.767352][ T6919] 
[  257.769672][ T6919] Allocated by task 6919:
[  257.774003][ T6919]  __kasan_kmalloc+0xda/0x110
[  257.777855][ T6900] EXT4-fs (loop3): Remounting filesystem read-only
[  257.778678][ T6919]  __kmalloc+0x1a7/0x330
[  257.778698][ T6919]  tcf_idr_create+0x5f/0x790
[  257.785345][ T6900] EXT4-fs error (device loop3) in do_split:2059: Corrupt filesystem
[  257.789484][ T6919]  tcf_idr_create_from_flags+0x61/0x70
[  257.789492][ T6919]  tcf_gact_init+0x2b4/0x520
[  257.789500][ T6919]  tcf_action_init_1+0x3e1/0x670
[  257.789507][ T6919]  tcf_action_init+0x1e6/0x700
[  257.789516][ T6919]  tcf_exts_validate+0x215/0x510
[  257.789525][ T6919]  mall_set_parms+0x4b/0x410
[  257.789537][ T6919]  mall_change+0x45c/0x750
[  257.789546][ T6919]  tc_new_tfilter+0x13f6/0x1a10
[  257.789557][ T6919]  rtnetlink_rcv_msg+0x800/0xb90
[  257.789567][ T6919]  netlink_rcv_skb+0x1e0/0x430
[  257.789575][ T6919]  rtnetlink_rcv+0x1c/0x20
[  257.789585][ T6919]  netlink_unicast+0x876/0xa40
[  257.789595][ T6919]  netlink_sendmsg+0x88d/0xb30
[  257.789606][ T6919]  ____sys_sendmsg+0x5a2/0x8c0
[  257.789614][ T6919]  ___sys_sendmsg+0x1f0/0x260
[  257.789622][ T6919]  __x64_sys_sendmsg+0x1e2/0x2a0
[  257.789639][ T6919]  do_syscall_64+0x31/0x40
[  257.796259][ T6921] EXT4-fs error (device loop3): htree_dirblock_to_tree:1092: inode #2: block 63: comm syz.3.2356: bad entry in directory: inode out of bounds - offset=2012, inode=128, rec_len=36, size=1024 fake=1
[  257.802516][ T6919]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  257.802519][ T6919] 
[  257.802523][ T6919] Last potentially related work creation:
[  257.802540][ T6919]  kasan_save_stack+0x3a/0x60
[  257.802549][ T6919]  __kasan_record_aux_stack+0xd2/0x100
[  257.802567][ T6919]  kasan_record_aux_stack_noalloc+0xb/0x10
[  257.932862][ T6919]  call_rcu+0x10e/0x1050
[  257.937090][ T6919]  neigh_parms_release+0x1cb/0x200
[  257.942186][ T6919]  addrconf_ifdown+0x15bb/0x1800
[  257.947105][ T6919]  addrconf_notify+0x3bd/0xe90
[  257.951850][ T6919]  raw_notifier_call_chain+0x90/0x100
[  257.957231][ T6919]  unregister_netdevice_many+0xf8b/0x1980
[  257.962925][ T6919]  vti6_exit_batch_net+0x26a/0x2b0
[  257.968013][ T6919]  cleanup_net+0x5fb/0xb70
[  257.972402][ T6919]  process_one_work+0x6e1/0xba0
[  257.977222][ T6919]  worker_thread+0xa6a/0x13b0
[  257.981874][ T6919]  kthread+0x346/0x3d0
[  257.985914][ T6919]  ret_from_fork+0x1f/0x30
[  257.990334][ T6919] 
[  257.992639][ T6919] The buggy address belongs to the object at ffff888116c86e00
[  257.992639][ T6919]  which belongs to the cache kmalloc-192 of size 192
[  258.006671][ T6919] The buggy address is located 0 bytes to the right of
[  258.006671][ T6919]  192-byte region [ffff888116c86e00, ffff888116c86ec0)
[  258.020258][ T6919] The buggy address belongs to the page:
[  258.025884][ T6919] page:ffffea00045b2180 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x116c86
[  258.036102][ T6919] flags: 0x4000000000000200(slab)
[  258.041103][ T6919] raw: 4000000000000200 0000000000000000 0000000100000001 ffff888100043380
[  258.049662][ T6919] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  258.058220][ T6919] page dumped because: kasan: bad access detected
[  258.064631][ T6919] page_owner tracks the page as allocated
[  258.070324][ T6919] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 98, ts 5122685454, free_ts 0
[  258.085227][ T6919]  prep_new_page+0x179/0x180
[  258.089814][ T6919]  get_page_from_freelist+0x2235/0x23d0
[  258.095352][ T6919]  __alloc_pages_nodemask+0x268/0x5f0
[  258.100708][ T6919]  new_slab+0x84/0x3f0
[  258.104899][ T6919]  ___slab_alloc+0x2a6/0x450
[  258.109472][ T6919]  __slab_alloc+0x63/0xa0
[  258.113781][ T6919]  kmem_cache_alloc_trace+0x1b3/0x2e0
[  258.119130][ T6919]  kernfs_fop_open+0x343/0xb30
[  258.123873][ T6919]  do_dentry_open+0x793/0x1090
[  258.128623][ T6919]  vfs_open+0x73/0x80
[  258.132581][ T6919]  path_openat+0x27ad/0x3160
[  258.137145][ T6919]  do_filp_open+0x1b3/0x3e0
[  258.141631][ T6919]  do_sys_openat2+0x14c/0x6d0
[  258.146287][ T6919]  __x64_sys_openat+0x136/0x160
[  258.151111][ T6919]  do_syscall_64+0x31/0x40
[  258.155503][ T6919]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  258.161369][ T6919] page_owner free stack trace missing
[  258.166708][ T6919] 
[  258.169091][ T6919] Memory state around the buggy address:
[  258.174692][ T6919]  ffff888116c86d80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  258.182725][ T6919]  ffff888116c86e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  258.190874][ T6919] >ffff888116c86e80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  258.198920][ T6919]                                            ^
[  258.205054][ T6919]  ffff888116c86f00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  258.213093][ T6919]  ffff888116c86f80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  258.221136][ T6919] ==================================================================
[  258.229190][ T6919] Disabling lock debugging due to kernel taint