last executing test programs:

4.419434762s ago: executing program 1 (id=2931):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0xfffffffffffffd31, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x48, 0x14, 0x509, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, r4}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x935}, @IFA_LOCAL={0x8, 0x2, @remote}, @IFA_LOCAL={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, @IFA_BROADCAST={0x8, 0x4, @local}, @IFA_BROADCAST={0x8, 0x4, @local}, @IFA_RT_PRIORITY={0x8}]}, 0x48}, 0x1, 0x0, 0x0, 0x24000004}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x200000000000013d, &(0x7f0000000080)=ANY=[@ANYRES64=r1, @ANYRESOCT=r0, @ANYRESDEC, @ANYRES32=r1, @ANYRESDEC=r1, @ANYRES32=0x0], &(0x7f0000000040)='syzkaller\x00', 0xd0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x2}, 0x90)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x3000517, &(0x7f0000000000), 0x1, 0x51f, &(0x7f0000000300)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r8, 0x4138ae84, &(0x7f0000000100)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xfdfdffcb, 0x0, 0x0, 0x200022, 0x0, 0xa501})
ioctl$KVM_TRANSLATE(r8, 0xc018ae85, &(0x7f0000000000))
r9 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000840)={0xec, 0x2, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0x1}, [@IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x4}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x7a}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfff}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, @IPSET_ATTR_DATA={0x60, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x6ce776ff}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x9d}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010102}}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x4}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0xabf1}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x7f}]}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x20}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x7}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x3}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x80000001}]}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}]}, 0xec}, 0x1, 0x0, 0x0, 0x80}, 0x4008000)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r9, 0x7, 0x0, 0x0, 0x0)

3.890876195s ago: executing program 1 (id=2935):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='f2fs_gc_begin\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x2006000, &(0x7f0000000180), 0x1, 0x520, &(0x7f0000000900)="$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")
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
r1 = creat(0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}, 0x1c)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x0, &(0x7f0000000040)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_emit_ethernet(0x2a8, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYRES64=r0], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRESDEC=r6, @ANYRES64=r1, @ANYBLOB="8af0c92500000000000003000000140001800d0001007564703a73797a3100000000"], 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()

3.666032153s ago: executing program 1 (id=2936):
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x10004, 0x0, 0x0, 0x2000, &(0x7f0000fe5000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000700)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
dup(r0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r4, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}}], 0x1, 0x0, 0x0)

2.698160872s ago: executing program 1 (id=2945):
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000006380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000180))
close(r0)
epoll_create(0x1ff)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
syz_io_uring_complete(0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000), 0x6e, &(0x7f0000000080)=[{&(0x7f00000002c0)=""/114, 0x72}, {&(0x7f0000000340)=""/227, 0xe3}], 0x2, &(0x7f00000005c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}, 0x40000011)
syslog(0x0, &(0x7f0000000000)=""/76, 0x4c)
syslog(0x0, 0x0, 0x0)
syslog(0x1, &(0x7f00000010c0)=""/46, 0x2e)
syslog(0xa, 0x0, 0x0)
syslog(0x4, &(0x7f0000001300)=""/161, 0xa1)
syslog(0x0, 0x0, 0x0)
syslog(0x0, &(0x7f0000000100)=""/88, 0x58)
syslog(0x2, &(0x7f0000001480)=""/25, 0x19)
syslog(0x0, &(0x7f0000000300)=""/5, 0x5)
syslog(0x0, 0x0, 0x0)
syslog(0x0, 0x0, 0x0)
syslog(0x2, &(0x7f0000000180)=""/90, 0x5a)
syslog(0xa, 0x0, 0x0)

2.293170894s ago: executing program 2 (id=2946):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0xf0, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

2.22563693s ago: executing program 2 (id=2947):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @private1, 0x4}}}, 0x88)
close(0xffffffffffffffff)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a000000"], 0x190)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000009d000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000800000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000100)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001602020000052406000005240000000d240f0100000000000000000009058103400000000009058202000000000009050302a6"], 0x0)

2.159326695s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.033044875s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.885826777s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.783037876s ago: executing program 1 (id=2949):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="05010000000000107d1e222e00000000000109022400010000000009040000020300020009210000000122020009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000003c0)={0x2c, &(0x7f0000000080)={0x20, 0x0, 0x2, {0x2, 0x22}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

1.684185954s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.443766353s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.241303029s ago: executing program 4 (id=2942):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000f5ffffff0000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800a59b73d78acaa4430000000000000c0003000c0005000600000003000000000000080000"], &(0x7f0000002200)=""/4110, 0x2a, 0x100e, 0x1}, 0x20)
setsockopt$WPAN_WANTACK(r6, 0x68, 0x0, &(0x7f0000000000), 0x4)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

954.802833ms ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

839.004852ms ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

707.388903ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="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"], 0x21c}}, 0x0)

697.356134ms ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

585.767972ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$eJzs3cFvI1cZAPBvJnE2u5uSFBCCStCKttqtYO1NQ9sIISgXOFUCyn0JiTeKYser2CmbqGJTceJaIVGJEyeO/AFIVQ/ckBBCqgQXxAEVBEKwhQMSpYPGHjdZx068W8fe3fx+0qzfe55533tj5Xme/XYcwJn1RES8GBFTEfFMRMwX5WmxXcsz+5393r396mq+JZFlL/8jiaQo69aV56cj4mLnkJiNiG99PeK7ydG4zd29zZVarbpd5Cut+o1Kc3fvykZ9Zb26Xt1aWlp8fvmF5edmr2aFQ1Hu3kI38bOvffnNz3/vT9f+dvn7eU1f+kSUoqcfg+zfQ9xOa0vtc9GVn6Pte6jrfjXd7iEAAA+C/Br/oxHx2fb1/3xMta/mekxNomUAAADAqGRfmYv3kohsCG/EcPsBAAAA95c0IuYiScvFWoC5SNOZ4rOBj8eFtNZotj53vbGztZY/F7EQpfT6Rq16tVgrvBClJM8vFmtsu/lne/JLEfFoRPxo/nw7X15t1NYm/NkHAAAAnBUXe+b//55P2+mT9fl/AgAAAMD9a2FgBgAAAHhYmPIDAADAw69n/n9rUu0AAAAATsU3Xnop37Lu71+vvbK7s9l45cpatblZru+sllcb2zfK643GevueffWT6qs1Gje+EFs7NyutarNVae7uXas3drZa1zbu+AlsAAAAYIweffyt3ycRsf/F8+0tivsAAtzhz5NuADBKU93Eucm2Axg/d/GGs6t0NzvPnF47gMlJTnje4h0AAHjwXfrU0e//u9P8u/psAHjgHLvW54fvjK8hAMDYfKjv/00Q4IFWOlgBCJxBaUR8pJMcuAp44Pf/vxk2SpZF/Hb+cInLBwAAGK+59pak5WIeMBdpWi5HPBKRLkQpub5Rq14t5ge/my+dy/OL7SN/deKaYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyHr1Kern3HC7AQAAABMWkf41iWjfy//S/FNzB58MdO7uP5P8Zz7+UhT95OUf31xptbYX8/J/tn/LayYiWm8U5c8O/PkwAAAAYNSS/YFPdebpxePiWFsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBnw7u1XV7vbOOP+/asRsdAv/nTMth9noxQRF/6VxPSh45KImBpB/P3XIuKTb/aJn8T7WZYtFK3oF//8yOL363+Sn5YYFD+NiIsjiA9n2Vv5+PNiv7+/NJ5oP/b/+5sutg9r8PiXfjD+TQ0Yfx45Ulu9b4zH3v55ZWD81yIemz4UP6Y/GH+68ZMB8Z88Utt/syw7GuM7397bGxQ/+2nEpb7vP8kdsSqt+o1Kc3fvykZ9Zb26Xt1aWlp8fvmF5eeWr1aub9Sqxb99Y7z+6V+8f1z/L/SJ/8c/dMbf4/r/1KBKe/zv7Zu3P9ZJlvrFv/xk3/ff2TiInx2On4/9U9MRTxfpvC2Xuun9Tvqwz+TvM8f0f23A+T/p9b88ZP+f+eYP3hlyVwBgDJq7e5srtVp1+5jEbJ54LztU8ushjjqtxOtPR4ymwl/OTq4X957IbnVeuaF2zi8HT7c9pXs9PL9aPSjp9uqEo/LpxRhPeDaeWI/H5lTUiuv9nterWzpkhTMnn8MhEz0DRe8EIuu4daqjEwAAMEoHF/2TbgkAAAAAAAAAAAAAAAAAAACcXeO4vVlvzEH3IgYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmKT/BwAA//97dNgA")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="01000000000000000000010000001400020077673100000000000000000000000000f4010880700000804800098028a25880060001000a00000014000200fe8000000000000000000000000000aa05000300000000001c000080060001000200000008000200e0000001050003000000000024000100000000000000000000000000000000000000000000000000000000000000000080010080200004000a004e2000000005200100000000000000000000000000000800000006000500b01f00000800030006000000060005000500000008000a000100000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff200004000a004e200000040100000000000000000000ffffac14142a06000000240001000000000000000000000000000000000000000000000000000000000000000000d4000980"], 0x21c}}, 0x0)

568.439124ms ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

462.330723ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="01000000000000000000010000001400020077673100000000000000000000000000f4010880700000804800098028a25880060001000a00000014000200fe8000000000000000000000000000aa05000300000000001c000080060001000200000008000200e0000001050003000000000024000100000000000000000000000000000000000000000000000000000000000000000080010080200004000a004e2000000005200100000000000000000000000000000800000006000500b01f00000800030006000000060005000500000008000a000100000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff200004000a004e200000040100000000000000000000ffffac14142a06000000240001000000000000000000000000000000000000000000000000000000000000000000d4000980"], 0x21c}}, 0x0)

456.093673ms ago: executing program 2 (id=2952):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000e27b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0xf0, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r2}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

340.947203ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="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"], 0x21c}}, 0x0)

303.115366ms ago: executing program 2 (id=2953):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)

302.796236ms ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

228.018742ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="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"], 0x21c}}, 0x0)

157.409977ms ago: executing program 2 (id=2954):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
close(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r4)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x100, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc}]}}]}]}]}}]}, 0x6c}}, 0x0)

53.318466ms ago: executing program 0 (id=2961):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000001580), 0xfd, 0x573, &(0x7f0000000b40)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000040)=ANY=[], 0xff68, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000002180)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x32, 0x62, 0x0, 0x63, 0x66, 0x31, 0x39], 0x2d, [0x32, 0x64, 0x33, 0x33], 0x2d, [0xa, 0x34, 0x63, 0x36], 0x2d, [0x66, 0x34, 0x32, 0x36], 0x2d, [0x30, 0x61, 0x64, 0x69, 0x66, 0x34, 0x34, 0x3d]}}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, &(0x7f00000000c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000001140)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x200, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffff9c, 0x0, 0x20140, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="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"], 0x21c}}, 0x0)

957.51µs ago: executing program 1 (id=2955):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r5)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x100, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r7, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r8}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc}]}}]}]}]}}]}, 0x6c}}, 0x0)

214.8µs ago: executing program 2 (id=2956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x5, 0x2, 0x4}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x3, 0xc1, 0xc837, 0xc40, r0, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x3, 0x7}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000340)='virtio_transport_alloc_pkt\x00'}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r4, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
syz_emit_ethernet(0x3e, 0x0, 0x0)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCADDRT(r6, 0x890b, &(0x7f00000004c0)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}})
syz_emit_ethernet(0x3e, &(0x7f00000001c0)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb0800ffffffff07080565eb26f7274404000000000000040190780000a74e00ac1682"], 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='smaps\x00')
lseek(r7, 0x2000, 0x0)
read(r7, &(0x7f0000000580)=""/4096, 0x1000)

0s ago: executing program 3 (id=2940):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f000000e280)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000006112780000000000950000070000000073d690a543454790efccb67210f849a2f6db285035162e2afc6a1c14a57a23bc8e9f471ca1f1130b8b6042bf06f2458750ca686901c7d8c652aa3025f93caf693a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc}, 0x80)

kernel console output (not intermixed with test programs):

62][ T9752] F2FS-fs (loop4): Unrecognized mount option "backgvo�ndA" or missing value
[  441.137933][ T3579] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  441.166322][ T3579] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  441.203643][ T3579] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 166, setting to 64
[  441.246341][ T3579] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  441.377909][ T3579] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  441.392453][ T3579] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  441.398735][ T9731] loop1: detected capacity change from 0 to 131072
[  441.418758][ T3579] usb 4-1: SerialNumber: syz
[  441.422262][ T9731] F2FS-fs (loop1): invalid crc value
[  441.436496][ T9731] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  441.447965][ T9734] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  441.468328][ T3579] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[  441.477744][ T9731] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[  441.480673][ T3579] cdc_acm: probe of 4-1:1.0 failed with error -12
[  441.502703][   T30] audit: type=1400 audit(1722211447.150:3837): avc:  denied  { create } for  pid=9730 comm="syz.1.2642" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  441.680222][    T6] usb 4-1: USB disconnect, device number 56
[  443.060765][ T9794] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  443.279993][ T9797] loop0: detected capacity change from 0 to 512
[  443.311027][ T9797] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  443.327841][ T9797] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.2661: casefold flag without casefold feature
[  443.340659][ T9797] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.2661: missing EA_INODE flag
[  443.353512][ T9797] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.2661: error while reading EA inode 12 err=-117
[  443.365957][ T9797] EXT4-fs (loop0): 1 orphan inode deleted
[  443.371561][ T9797] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,auto_da_alloc,errors=continue,errors=continue,errors=remount-ro,delalloc,quota,norecovery,errors=continue,journal_ioprio=0x0000000000000001,. Quota mode: writeback.
[  443.506181][ T9807] FAULT_INJECTION: forcing a failure.
[  443.506181][ T9807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  443.521509][ T9807] CPU: 0 PID: 9807 Comm: syz.4.2663 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  443.531246][ T9807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  443.541160][ T9807] Call Trace:
[  443.544272][ T9807]  <TASK>
[  443.547489][ T9807]  dump_stack_lvl+0x151/0x1b7
[  443.552095][ T9807]  ? io_uring_drop_tctx_refs+0x190/0x190
[  443.557566][ T9807]  dump_stack+0x15/0x17
[  443.561558][ T9807]  should_fail+0x3c6/0x510
[  443.565809][ T9807]  should_fail_usercopy+0x1a/0x20
[  443.571100][ T9807]  strncpy_from_user+0x24/0x2d0
[  443.575786][ T9807]  ? kmem_cache_alloc+0xf5/0x200
[  443.580652][ T9807]  getname_flags+0xf2/0x520
[  443.584986][ T9807]  user_path_at_empty+0x2d/0x1a0
[  443.589856][ T9807]  __se_sys_mount+0x285/0x3b0
[  443.594368][ T9807]  ? exc_page_fault+0x47a/0x830
[  443.599053][ T9807]  ? __x64_sys_mount+0xd0/0xd0
[  443.603655][ T9807]  __x64_sys_mount+0xbf/0xd0
[  443.608075][ T9807]  do_syscall_64+0x3d/0xb0
[  443.612322][ T9807]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  443.618137][ T9807] RIP: 0033:0x7fbdd436299a
[  443.622394][ T9807] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.642012][ T9807] RSP: 002b:00007fbdd2fe0e78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[  443.650258][ T9807] RAX: ffffffffffffffda RBX: 00007fbdd2fe0f00 RCX: 00007fbdd436299a
[  443.658067][ T9807] RDX: 0000000020002040 RSI: 0000000020002080 RDI: 0000000000000000
[  443.665879][ T9807] RBP: 0000000020002040 R08: 00007fbdd2fe0f00 R09: 0000000000000000
[  443.673689][ T9807] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002080
[  443.681501][ T9807] R13: 00007fbdd2fe0ec0 R14: 0000000000000000 R15: 0000000020000240
[  443.689401][ T9807]  </TASK>
[  443.771052][ T9810] loop3: detected capacity change from 0 to 512
[  443.781280][ T9813] loop1: detected capacity change from 0 to 512
[  443.801427][ T9810] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2666: corrupted inode contents
[  443.813404][ T9810] EXT4-fs error (device loop3): ext4_dirty_inode:6024: inode #16: comm syz.3.2666: mark_inode_dirty error
[  443.825023][ T9810] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2666: corrupted inode contents
[  443.837074][ T9810] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.2666: mark_inode_dirty error
[  443.848796][ T9810] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2666: corrupted inode contents
[  443.858406][ T9813] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  443.867771][ T9813] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  443.877538][ T9810] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  443.887084][ T9813] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002]
[  443.895340][ T9810] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2666: corrupted inode contents
[  443.907381][ T9813] System zones: 1-12
[  443.908399][ T9810] EXT4-fs error (device loop3): ext4_truncate:4292: inode #16: comm syz.3.2666: mark_inode_dirty error
[  443.922195][ T9813] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.2664: corrupted in-inode xattr
[  443.922422][ T9810] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  443.942939][ T9813] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2664: couldn't read orphan inode 15 (err -117)
[  443.943876][ T9810] EXT4-fs (loop3): 1 truncate cleaned up
[  443.960656][ T9813] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none.
[  443.982045][ T9810] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  443.993230][ T9810] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038 (0x7fffffff)
[  444.035826][   T30] audit: type=1400 audit(1722211449.680:3838): avc:  denied  { getopt } for  pid=9811 comm="syz.1.2664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  444.077846][ T3579] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  444.215083][ T9824] UDC core: couldn't find an available UDC or it's busy: -16
[  444.227675][ T9824] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  444.314194][ T9822] loop1: detected capacity change from 0 to 40427
[  444.447936][ T3579] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  444.455986][ T3579] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  444.467828][ T3579] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  444.478944][ T3579] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  444.491914][ T3579] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  444.500851][ T3588] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[  444.509372][ T3579] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.520679][ T3579] usb 5-1: config 0 descriptor??
[  444.557941][ T9814] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  444.797972][ T3588] usb 1-1: Using ep0 maxpacket: 8
[  444.996711][ T9836] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.003799][ T9836] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.012539][ T9836] device bridge_slave_0 entered promiscuous mode
[  445.020797][ T9841] loop1: detected capacity change from 0 to 256
[  445.032667][ T9836] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.039665][ T9836] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.046929][ T9836] device bridge_slave_1 entered promiscuous mode
[  445.058431][ T9841] exfat: Unknown parameter '0177777777777777777777701777777777777777777777���18446744073709551615����00000000000000000000'
[  445.069262][ T3579] plantronics 0003:047F:FFFF.005B: unknown main item tag 0xd
[  445.080811][ T3579] plantronics 0003:047F:FFFF.005B: No inputs registered, leaving
[  445.090512][ T3579] plantronics 0003:047F:FFFF.005B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  445.102842][ T3588] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=73.60
[  445.113187][ T3588] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.121109][ T3588] usb 1-1: Product: syz
[  445.125047][ T3588] usb 1-1: Manufacturer: syz
[  445.127503][   T30] audit: type=1400 audit(1722211450.770:3839): avc:  denied  { mounton } for  pid=9840 comm="syz.1.2674" path="/162/file0" dev="incremental-fs" ino=914 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  445.129475][ T3588] usb 1-1: SerialNumber: syz
[  445.158650][ T3588] r8152-cfgselector 1-1: config 0 descriptor??
[  445.202141][ T9836] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.209018][ T9836] bridge0: port 2(bridge_slave_1) entered forwarding state
[  445.216118][ T9836] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.223045][ T9836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  445.248075][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  445.255476][  T314] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.263672][  T314] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.271052][ T3590] usb 5-1: USB disconnect, device number 56
[  445.285345][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  445.293636][ T3591] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.300499][ T3591] bridge0: port 1(bridge_slave_0) entered forwarding state
[  445.316654][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  445.324867][ T3579] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.331723][ T3579] bridge0: port 2(bridge_slave_1) entered forwarding state
[  445.339094][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  445.346908][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  445.367560][ T9836] device veth0_vlan entered promiscuous mode
[  445.381513][ T9836] device veth1_macvtap entered promiscuous mode
[  445.418166][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  445.426584][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  445.435094][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  445.445572][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  445.447986][ T3588] r8152-cfgselector 1-1: Unknown version 0x0000
[  445.453654][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  445.466948][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  445.474568][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  445.477979][ T3591] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[  445.491972][   T45] device bridge_slave_1 left promiscuous mode
[  445.498115][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.510103][   T45] device bridge_slave_0 left promiscuous mode
[  445.516190][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.537652][   T45] device veth1_macvtap left promiscuous mode
[  445.543835][   T45] device veth0_vlan left promiscuous mode
[  445.583574][ T9850] loop3: detected capacity change from 0 to 256
[  445.596061][ T9850] exfat: Deprecated parameter 'namecase'
[  445.606728][ T9850] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  445.629137][   T30] audit: type=1400 audit(1722211451.280:3840): avc:  denied  { append } for  pid=9848 comm="syz.3.2676" path="/1/file0/memory.events" dev="loop3" ino=1048782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  445.656227][ T9824] loop0: detected capacity change from 0 to 256
[  445.662565][   T30] audit: type=1400 audit(1722211451.310:3841): avc:  denied  { map } for  pid=9848 comm="syz.3.2676" path="/1/file0/memory.events" dev="loop3" ino=1048782 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  445.742959][ T9859] loop3: detected capacity change from 0 to 512
[  445.749149][ T3591] usb 2-1: Using ep0 maxpacket: 32
[  445.822686][ T9859] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  445.841525][ T9859] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.2678: casefold flag without casefold feature
[  445.854703][ T9859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.2678: missing EA_INODE flag
[  445.866349][ T9859] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.2678: error while reading EA inode 12 err=-117
[  445.879748][ T9859] EXT4-fs (loop3): 1 orphan inode deleted
[  445.885311][ T9859] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,auto_da_alloc,errors=continue,errors=continue,errors=remount-ro,delalloc,quota,norecovery,errors=continue,journal_ioprio=0x0000000000000001,. Quota mode: writeback.
[  446.097923][ T3591] usb 2-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  446.106818][ T3591] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.115022][ T3591] usb 2-1: Product: syz
[  446.119106][ T3591] usb 2-1: Manufacturer: syz
[  446.123465][ T3591] usb 2-1: SerialNumber: syz
[  446.132377][ T3591] usb 2-1: config 0 descriptor??
[  446.237984][ T3588] r8152-cfgselector 1-1: Unknown version 0x0000
[  446.247305][ T3588] r8152-cfgselector 1-1: bad CDC descriptors
[  446.267948][ T3588] r8152-cfgselector 1-1: Unknown version 0x0000
[  446.284185][ T3588] r8152-cfgselector 1-1: USB disconnect, device number 59
[  446.297623][ T9872] loop0: detected capacity change from 0 to 1024
[  446.333651][ T9874] loop2: detected capacity change from 0 to 512
[  446.340822][ T9872] EXT4-fs (loop0): Ignoring removed orlov option
[  446.346998][ T9872] EXT4-fs (loop0): Ignoring removed nobh option
[  446.353681][ T9872] EXT4-fs (loop0): Couldn't mount because of unsupported optional features (28)
[  446.410152][ T9874] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #16: comm syz.2.2682: iget: bad extended attribute block 128
[  446.423052][ T9874] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.2682: couldn't read orphan inode 16 (err -117)
[  446.435256][ T9874] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  446.446680][ T9874] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038 (0x7fffffff)
[  446.461712][ T9874] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2682: bg 0: block 352: padding at end of block bitmap is not set
[  446.465982][ T9872] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2681'.
[  446.480291][ T9874] EXT4-fs error (device loop2): ext4_xattr_block_set:2191: inode #12: comm syz.2.2682: bad block 0
[  446.514076][ T9874] Quota error (device loop2): write_blk: dquota write failed
[  446.514817][ T9879] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2683'.
[  446.530208][ T9874] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  447.141595][   T30] audit: type=1400 audit(1722211452.770:3842): avc:  denied  { unmount } for  pid=9892 comm="syz.3.2688" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  447.356028][   T30] audit: type=1400 audit(1722211453.000:3843): avc:  denied  { remount } for  pid=9896 comm="syz.3.2689" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  447.408628][ T9899] loop0: detected capacity change from 0 to 512
[  447.478389][ T9899] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  447.494856][ T9899] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  447.691189][ T9899] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  447.754521][ T9899] EXT4-fs (loop0): 1 truncate cleaned up
[  447.784877][ T9899] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodelalloc,usrquota,grpjquota=./file0,,errors=continue. Quota mode: writeback.
[  448.231815][ T9915] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2694'.
[  448.263603][   T30] audit: type=1400 audit(1722211453.910:3844): avc:  denied  { bind } for  pid=9916 comm="syz.3.2695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  448.539995][ T9930] xt_bpf: check failed: parse error
[  449.392434][   T30] audit: type=1400 audit(1722211455.040:3845): avc:  denied  { set_context_mgr } for  pid=9954 comm="syz.3.2707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  449.738100][ T3591] rtl8150 2-1:0.0: couldn't reset the device
[  449.745021][ T3591] rtl8150: probe of 2-1:0.0 failed with error -5
[  449.770423][ T3591] usb 2-1: USB disconnect, device number 59
[  449.830834][ T9973] loop4: detected capacity change from 0 to 512
[  449.903651][ T9973] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  449.915189][ T9973] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038 (0x7fffffff)
[  450.137884][ T3591] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[  450.407835][ T3591] usb 2-1: Using ep0 maxpacket: 16
[  450.417732][T10004] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  450.498071][T10010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2722'.
[  450.507314][T10010] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2722'.
[  450.518407][ T3591] usb 2-1: unable to read config index 0 descriptor/start: -71
[  450.525927][ T3591] usb 2-1: can't read configurations, error -71
[  450.584947][T10015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2725'.
[  450.595155][   T30] audit: type=1400 audit(1722211456.240:3846): avc:  denied  { write } for  pid=10014 comm="syz.0.2725" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  450.690933][T10017] loop1: detected capacity change from 0 to 256
[  451.005517][T10033] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  451.074183][T10038] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2734'.
[  451.097690][T10038] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2734'.
[  451.208188][ T3591] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[  451.260821][T10046] syz.4.2736 uses obsolete (PF_INET,SOCK_PACKET)
[  451.507911][ T3591] usb 2-1: too many configurations: 149, using maximum allowed: 8
[  451.531041][T10053] loop4: detected capacity change from 0 to 1024
[  451.548836][T10053] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  451.555888][T10053] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  451.563445][T10053] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  451.589763][T10053] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,resuid=0x0000000000000000,sysvgroups,norecovery,mblk_io_submit,nomblk_io_submit,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  451.618086][ T3591] usb 2-1: invalid descriptor for config index 0: type = 0x2, length = 4
[  451.626701][ T3591] usb 2-1: can't read configurations, error -22
[  451.633088][ T3591] usb usb2-port1: attempt power cycle
[  451.888078][  T314] usb 5-1: new full-speed USB device number 57 using dummy_hcd
[  452.067872][ T3591] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[  452.197930][ T3591] usb 2-1: too many configurations: 149, using maximum allowed: 8
[  452.247924][  T314] usb 5-1: config 4 has an invalid interface number: 74 but max is 0
[  452.255853][  T314] usb 5-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  452.264542][  T314] usb 5-1: config 4 has no interface number 0
[  452.270407][  T314] usb 5-1: config 4 interface 74 altsetting 6 has an invalid endpoint with address 0x80, skipping
[  452.280806][  T314] usb 5-1: config 4 interface 74 altsetting 6 has a duplicate endpoint with address 0x1, skipping
[  452.291315][  T314] usb 5-1: config 4 interface 74 altsetting 6 endpoint 0xD has invalid maxpacket 1024, setting to 64
[  452.298354][ T3591] usb 2-1: invalid descriptor for config index 0: type = 0x2, length = 4
[  452.302030][  T314] usb 5-1: config 4 interface 74 altsetting 6 endpoint 0x5 has invalid maxpacket 1023, setting to 64
[  452.310488][ T3591] usb 2-1: can't read configurations, error -22
[  452.321454][  T314] usb 5-1: config 4 interface 74 altsetting 6 has a duplicate endpoint with address 0x5, skipping
[  452.337686][  T314] usb 5-1: config 4 interface 74 has no altsetting 0
[  452.468111][ T3591] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[  452.497969][  T314] usb 5-1: Dual-Role OTG device on HNP port
[  452.517892][  T314] usb 5-1: New USB device found, idVendor=0df6, idProduct=0060, bcdDevice=27.6c
[  452.526976][  T314] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  452.534797][  T314] usb 5-1: Product: 竤㏕齸즰봢쿩怢쇰뙿寡燪툪ｂ䍣╣뵧쟁䑮䪵圊᠈魥駋
[  452.545007][  T314] usb 5-1: Manufacturer: ᰌ
[  452.549410][  T314] usb 5-1: SerialNumber: Е
[  452.568011][T10053] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  452.607986][ T3591] usb 2-1: too many configurations: 149, using maximum allowed: 8
[  452.636162][T10075] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2747'.
[  452.647671][T10075] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2747'.
[  452.687993][ T3591] usb 2-1: invalid descriptor for config index 0: type = 0x2, length = 4
[  452.741114][ T3591] usb 2-1: can't read configurations, error -22
[  452.777286][ T3591] usb usb2-port1: unable to enumerate USB device
[  452.845107][T10053] EXT4-fs (loop4): shut down requested (0)
[  452.882837][T10053] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  452.941663][T10053] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[  452.957127][T10081] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[  452.968008][T10081] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=15
[  453.052124][  T314] usb 5-1: USB disconnect, device number 57
[  453.637857][    T6] usb 3-1: new full-speed USB device number 41 using dummy_hcd
[  453.857719][T10103] loop1: detected capacity change from 0 to 1024
[  453.938336][T10103] EXT4-fs (loop1): Ignoring removed orlov option
[  453.945201][T10103] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  453.959739][T10103] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  453.991024][   T30] audit: type=1400 audit(1722211459.640:3847): avc:  denied  { remount } for  pid=10102 comm="syz.1.2755" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  454.010793][    T6] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  454.017868][   T30] audit: type=1400 audit(1722211459.640:3848): avc:  denied  { mounton } for  pid=10102 comm="syz.1.2755" path="/168/file1/file0/file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  454.021720][    T6] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  454.055321][    T6] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 166, setting to 64
[  454.066105][    T6] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  454.157981][    T6] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  454.170454][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  454.184983][    T6] usb 3-1: SerialNumber: syz
[  454.200092][T10111] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  454.284271][T10118] loop1: detected capacity change from 0 to 512
[  454.292673][T10117] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2760'.
[  454.306598][T10114] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.313558][T10087] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  454.313706][T10114] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.328391][    T6] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  454.337044][T10117] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2760'.
[  454.350745][    T6] cdc_acm: probe of 3-1:1.0 failed with error -12
[  454.360881][T10114] bridge0: port 2(bridge_slave_1) entered blocking state
[  454.368021][T10114] bridge0: port 2(bridge_slave_1) entered forwarding state
[  454.375164][T10114] bridge0: port 1(bridge_slave_0) entered blocking state
[  454.382039][T10114] bridge0: port 1(bridge_slave_0) entered forwarding state
[  454.389476][T10114] device bridge0 entered promiscuous mode
[  454.395920][T10118] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #16: comm syz.1.2759: iget: bad extended attribute block 128
[  454.418194][T10118] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2759: couldn't read orphan inode 16 (err -117)
[  454.438420][T10118] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  454.455918][T10118] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038 (0x7fffffff)
[  454.476445][T10118] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2759: bg 0: block 352: padding at end of block bitmap is not set
[  454.499629][T10118] EXT4-fs error (device loop1): ext4_xattr_block_set:2191: inode #12: comm syz.1.2759: bad block 0
[  454.532307][    T6] usb 3-1: USB disconnect, device number 41
[  454.625382][T10118] Quota error (device loop1): write_blk: dquota write failed
[  454.637923][T10118] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  454.781980][T10133] loop1: detected capacity change from 0 to 1024
[  454.853459][T10123] loop3: detected capacity change from 0 to 40427
[  454.872255][T10133] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  454.883781][T10133] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  454.905812][T10133] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  454.914930][T10123] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  454.935089][T10123] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  454.949607][T10133] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,resuid=0x0000000000000000,sysvgroups,norecovery,mblk_io_submit,nomblk_io_submit,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  454.997753][T10123] F2FS-fs (loop3): Found nat_bits in checkpoint
[  455.064273][T10123] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  455.086863][T10123] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  455.229840][T10151] FAULT_INJECTION: forcing a failure.
[  455.229840][T10151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  455.242811][T10151] CPU: 1 PID: 10151 Comm: syz.0.2767 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  455.252610][T10151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  455.262587][T10151] Call Trace:
[  455.265716][T10151]  <TASK>
[  455.268498][T10151]  dump_stack_lvl+0x151/0x1b7
[  455.273009][T10151]  ? io_uring_drop_tctx_refs+0x190/0x190
[  455.277831][  T314] usb 2-1: new full-speed USB device number 64 using dummy_hcd
[  455.278466][T10151]  ? arch_stack_walk+0xf3/0x140
[  455.290539][T10151]  ? __kasan_check_read+0x11/0x20
[  455.295398][T10151]  dump_stack+0x15/0x17
[  455.295585][T10152] syz.3.2761[10152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  455.299389][T10151]  should_fail+0x3c6/0x510
[  455.299422][T10151]  should_fail_usercopy+0x1a/0x20
[  455.299450][T10151]  copy_page_from_iter_atomic+0x423/0x10e0
[  455.299483][T10151]  ? pipe_zero+0x4e0/0x4e0
[  455.310787][T10152] syz.3.2761[10152] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  455.314846][T10151]  generic_perform_write+0x337/0x5a0
[  455.345918][T10151]  ? grab_cache_page_write_begin+0xa0/0xa0
[  455.351546][T10151]  ? file_remove_privs+0x610/0x610
[  455.356497][T10151]  ? rwsem_write_trylock+0x153/0x340
[  455.361618][T10151]  ? rwsem_mark_wake+0x770/0x770
[  455.366402][T10151]  __generic_file_write_iter+0x25b/0x4b0
[  455.371867][T10151]  generic_file_write_iter+0xaf/0x1c0
[  455.377066][T10151]  vfs_write+0xd5d/0x1110
[  455.381229][T10151]  ? kmem_cache_free+0x116/0x2e0
[  455.386006][T10151]  ? file_end_write+0x1c0/0x1c0
[  455.390692][T10151]  ? mutex_lock+0xb6/0x1e0
[  455.394943][T10151]  ? wait_for_completion_killable_timeout+0x10/0x10
[  455.401367][T10151]  ? __fdget_pos+0x2e7/0x3a0
[  455.405793][T10151]  ? ksys_write+0x77/0x2c0
[  455.410062][T10151]  ksys_write+0x199/0x2c0
[  455.414249][T10151]  ? __ia32_sys_read+0x90/0x90
[  455.418812][T10151]  ? debug_smp_processor_id+0x17/0x20
[  455.424016][T10151]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  455.429924][T10151]  __x64_sys_write+0x7b/0x90
[  455.434346][T10151]  do_syscall_64+0x3d/0xb0
[  455.438598][T10151]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  455.444329][T10151] RIP: 0033:0x7fd2ad5ab299
[  455.448582][T10151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.468021][T10151] RSP: 002b:00007fd2ac22b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  455.476266][T10151] RAX: ffffffffffffffda RBX: 00007fd2ad739f80 RCX: 00007fd2ad5ab299
[  455.484163][T10151] RDX: 0000000000043451 RSI: 0000000020000200 RDI: 0000000000000008
[  455.491974][T10151] RBP: 00007fd2ac22b0a0 R08: 0000000000000000 R09: 0000000000000000
[  455.499785][T10151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  455.507599][T10151] R13: 000000000000000b R14: 00007fd2ad739f80 R15: 00007ffdf8eb92a8
[  455.515416][T10151]  </TASK>
[  455.594731][T10156] incfs: Error accessing: ./file0.
[  455.600968][T10156] incfs: mount failed -20
[  455.647932][T10159] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2770'.
[  455.668497][T10159] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2770'.
[  456.174942][  T314] usb 2-1: config 4 has an invalid interface number: 74 but max is 0
[  456.183089][  T314] usb 2-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  456.191632][  T314] usb 2-1: config 4 has no interface number 0
[  456.197504][  T314] usb 2-1: config 4 interface 74 altsetting 6 has an invalid endpoint with address 0x80, skipping
[  456.207937][  T314] usb 2-1: config 4 interface 74 altsetting 6 has a duplicate endpoint with address 0x1, skipping
[  456.218341][  T314] usb 2-1: config 4 interface 74 altsetting 6 endpoint 0xD has invalid maxpacket 1024, setting to 64
[  456.229372][  T314] usb 2-1: config 4 interface 74 altsetting 6 endpoint 0x5 has invalid maxpacket 1023, setting to 64
[  456.240085][  T314] usb 2-1: config 4 interface 74 altsetting 6 has a duplicate endpoint with address 0x5, skipping
[  456.247828][ T3591] usb 3-1: new full-speed USB device number 42 using dummy_hcd
[  456.250500][ T2711] usb 1-1: new high-speed USB device number 60 using dummy_hcd
[  456.265235][  T314] usb 2-1: config 4 interface 74 has no altsetting 0
[  456.427923][  T314] usb 2-1: Dual-Role OTG device on HNP port
[  456.448028][  T314] usb 2-1: New USB device found, idVendor=0df6, idProduct=0060, bcdDevice=27.6c
[  456.456886][  T314] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.465298][  T314] usb 2-1: Product: 竤㏕齸즰봢쿩怢쇰뙿寡燪툪ｂ䍣╣뵧쟁䑮䪵圊᠈魥駋
[  456.475761][  T314] usb 2-1: Manufacturer: ᰌ
[  456.480369][  T314] usb 2-1: SerialNumber: Е
[  456.507984][T10133] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  456.514824][ T2711] usb 1-1: Using ep0 maxpacket: 16
[  456.638007][ T2711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  456.648980][ T2711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  456.658717][ T2711] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  456.676439][ T2711] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  456.685777][ T2711] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.703330][ T2711] usb 1-1: config 0 descriptor??
[  456.727913][ T3591] usb 3-1: not running at top speed; connect to a high speed hub
[  456.730363][T10133] EXT4-fs (loop1): shut down requested (0)
[  456.752789][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.763089][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.776991][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.785827][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.794893][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=14
[  456.805128][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.813798][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  456.822511][T10133] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=14
[  456.833681][   T30] audit: type=1400 audit(1722211462.480:3849): avc:  denied  { unlink } for  pid=10132 comm="syz.1.2763" name="file1" dev="loop1" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  456.857222][ T3591] usb 3-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  456.868183][ T3591] usb 3-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  456.881208][ T3591] usb 3-1: config 1 interface 0 has no altsetting 0
[  456.909555][  T314] usb 2-1: USB disconnect, device number 64
[  457.030187][T10185] fuse: Unknown parameter '00000000000000000000'
[  457.047979][ T3591] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  457.056960][ T3591] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.064821][ T3591] usb 3-1: Product: ᙞ嗭吔䣼Ὑ
[  457.068370][  T529] usb 4-1: new full-speed USB device number 57 using dummy_hcd
[  457.069978][ T3591] usb 3-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  457.110409][ T3591] usb 3-1: SerialNumber: Ї
[  457.128048][T10174] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  457.189137][ T2711] koneplus 0003:1E7D:2E22.005C: item fetching failed at offset 0/2
[  457.197204][ T2711] koneplus 0003:1E7D:2E22.005C: parse failed
[  457.203098][ T2711] koneplus: probe of 0003:1E7D:2E22.005C failed with error -22
[  457.391850][ T3588] usb 1-1: USB disconnect, device number 60
[  457.467923][  T529] usb 4-1: not running at top speed; connect to a high speed hub
[  457.510471][T10188] loop1: detected capacity change from 0 to 40427
[  457.547983][  T529] usb 4-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  457.558838][  T529] usb 4-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  457.571889][  T529] usb 4-1: config 1 interface 0 has no altsetting 0
[  457.580228][T10188] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  457.588295][T10188] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  457.599124][T10188] F2FS-fs (loop1): Found nat_bits in checkpoint
[  457.631610][T10188] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  457.638530][T10188] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  457.738289][  T529] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  457.747398][  T529] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.755089][T10193] loop4: detected capacity change from 0 to 1024
[  457.755570][  T529] usb 4-1: Product: ᙞ嗭吔䣼Ὑ
[  457.766862][  T529] usb 4-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  457.836601][T10193] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  457.853004][T10196] syz.1.2778[10196] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  457.853368][T10196] syz.1.2778[10196] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  458.082538][  T529] usb 4-1: SerialNumber: Ї
[  458.117987][T10181] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  458.439638][T10205] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10205 comm=syz.1.2781
[  458.620003][T10209] 9pnet: p9_errstr2errno: server reported unknown error ����Ӯ�֤j��U�7����Ń 7ےRV
[  458.653783][T10209] loop1: detected capacity change from 0 to 16
[  458.721047][T10209] erofs: (device loop1): mounted with root inode @ nid 36.
[  458.729442][T10209] erofs: (device loop1): z_erofs_map_blocks_iter: invalid logical cluster 0 at nid 36
[  458.739268][T10209] attempt to access beyond end of device
[  458.739268][T10209] loop1: rw=0, want=304, limit=16
[  458.750145][T10209] erofs: (device loop1): z_erofs_readpage: failed to read, err [-117]
[  458.858845][ T3591] usb 3-1: bad CDC descriptors
[  458.871413][ T3591] usb 3-1: USB disconnect, device number 42
[  459.078446][ T3579] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[  459.195152][T10227] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  459.427220][ T3579] usb 2-1: Using ep0 maxpacket: 32
[  459.577911][ T3579] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  459.586102][ T3579] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  459.594563][ T3579] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  459.603591][ T3579] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  459.613147][ T3579] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  459.622648][ T3579] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  459.681434][ T3579] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  459.690729][ T3579] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.701749][ T3579] usb 2-1: config 0 descriptor??
[  459.728201][  T529] usb 4-1: bad CDC descriptors
[  459.736780][  T529] usb 4-1: USB disconnect, device number 57
[  459.751009][T10234] loop2: detected capacity change from 0 to 512
[  459.808168][  T314] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  459.840045][T10234] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #16: comm syz.2.2792: iget: bad extended attribute block 128
[  459.858560][T10234] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.2792: couldn't read orphan inode 16 (err -117)
[  459.870729][T10234] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  459.881773][T10234] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038 (0x7fffffff)
[  459.900005][T10234] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2792: bg 0: block 352: padding at end of block bitmap is not set
[  459.918231][T10234] EXT4-fs error (device loop2): ext4_xattr_block_set:2191: inode #12: comm syz.2.2792: bad block 0
[  459.939575][T10234] Quota error (device loop2): write_blk: dquota write failed
[  459.947316][T10234] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  459.965106][T10239] loop0: detected capacity change from 0 to 1024
[  459.974162][ T3579] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 65 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  459.986307][ T3579] usb 2-1: USB disconnect, device number 65
[  460.007411][ T3579] usblp0: removed
[  460.013577][T10239] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  460.021767][T10239] System zones: 0-1, 3-12
[  460.030962][T10239] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,debug,,errors=continue. Quota mode: none.
[  460.049623][  T314] usb 5-1: Using ep0 maxpacket: 16
[  460.144632][T10238] EXT4-fs error (device loop0): ext4_lookup:1855: inode #12: comm syz.0.2793: iget: bad extended attribute block 768799145984
[  460.149364][  T529] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  460.166013][T10238] EXT4-fs error (device loop0): ext4_lookup:1855: inode #12: comm syz.0.2793: iget: bad extended attribute block 768799145984
[  460.277969][  T314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  460.288768][  T314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  460.350264][  T314] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  460.362936][  T314] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  460.371831][  T314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  460.380398][  T314] usb 5-1: config 0 descriptor??
[  460.567880][ T3579] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[  460.587921][  T529] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  460.595907][  T529] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  460.606861][  T529] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  460.617904][  T529] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  460.630583][  T529] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  460.639526][  T529] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  460.648492][  T529] usb 4-1: config 0 descriptor??
[  460.667982][T10232] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  460.858929][  T314] koneplus 0003:1E7D:2E22.005D: item fetching failed at offset 0/2
[  460.869553][  T314] koneplus 0003:1E7D:2E22.005D: parse failed
[  460.871119][ T3579] usb 2-1: device descriptor read/64, error -71
[  460.875664][  T314] koneplus: probe of 0003:1E7D:2E22.005D failed with error -22
[  461.134137][ T3588] usb 5-1: USB disconnect, device number 58
[  461.266845][  T529] plantronics 0003:047F:FFFF.005E: unknown main item tag 0xd
[  461.275490][  T529] plantronics 0003:047F:FFFF.005E: No inputs registered, leaving
[  461.277901][ T3591] usb 1-1: new full-speed USB device number 61 using dummy_hcd
[  461.291422][ T3579] usb 2-1: device descriptor read/64, error -71
[  461.298544][  T529] plantronics 0003:047F:FFFF.005E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  461.331140][ T3590] usb 4-1: USB disconnect, device number 58
[  461.402950][T10259] loop2: detected capacity change from 0 to 40427
[  461.488374][T10259] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  461.496470][T10259] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  461.504592][T10259] F2FS-fs (loop2): Unrecognized mount option "resgid=0x00000000000000000x0000000000000005" or missing value
[  461.557869][ T3579] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[  461.747920][ T3591] usb 1-1: not running at top speed; connect to a high speed hub
[  461.827927][ T3579] usb 2-1: device descriptor read/64, error -71
[  461.834183][ T3591] usb 1-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  461.860759][ T3591] usb 1-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  461.874665][ T3591] usb 1-1: config 1 interface 0 has no altsetting 0
[  462.078199][ T3591] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  462.093082][ T3591] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.195370][ T3591] usb 1-1: Product: ᙞ嗭吔䣼Ὑ
[  462.203729][ T3591] usb 1-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  462.336590][ T3591] usb 1-1: SerialNumber: Ї
[  462.357001][T10276] FAULT_INJECTION: forcing a failure.
[  462.357001][T10276] name failslab, interval 1, probability 0, space 0, times 0
[  462.369627][T10255] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  462.376685][T10276] CPU: 0 PID: 10276 Comm: syz.3.2804 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  462.386485][T10276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  462.396382][T10276] Call Trace:
[  462.399500][T10276]  <TASK>
[  462.402288][T10276]  dump_stack_lvl+0x151/0x1b7
[  462.406795][T10276]  ? io_uring_drop_tctx_refs+0x190/0x190
[  462.412262][T10276]  dump_stack+0x15/0x17
[  462.416250][T10276]  should_fail+0x3c6/0x510
[  462.420509][T10276]  __should_failslab+0xa4/0xe0
[  462.425104][T10276]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  462.430745][T10276]  should_failslab+0x9/0x20
[  462.435084][T10276]  slab_pre_alloc_hook+0x37/0xd0
[  462.439860][T10276]  ? kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  462.445499][T10276]  kmem_cache_alloc+0x44/0x200
[  462.450102][T10276]  kvm_mmu_topup_memory_cache+0xe5/0x2a0
[  462.455570][T10276]  kvm_mmu_load+0xdf/0x2120
[  462.459912][T10276]  ? memset+0x35/0x40
[  462.463729][T10276]  ? vmx_flush_tlb_all+0xc2/0x380
[  462.468591][T10276]  ? kvm_apic_accept_events+0x5cd/0x5e0
[  462.473979][T10276]  ? __kasan_check_write+0x14/0x20
[  462.478919][T10276]  ? kvm_mmu_unload+0xe0/0xe0
[  462.483430][T10276]  ? kvm_apic_has_interrupt+0x9d0/0xa70
[  462.488811][T10276]  ? kvm_lapic_enable_pv_eoi+0x150/0x150
[  462.494280][T10276]  vcpu_enter_guest+0x832b/0x8ed0
[  462.499145][T10276]  ? local_bh_enable+0x30/0x30
[  462.503745][T10276]  ? 0xffffffffa002a748
[  462.507732][T10276]  ? is_bpf_text_address+0x172/0x190
[  462.512853][T10276]  ? stack_trace_save+0x1c0/0x1c0
[  462.517712][T10276]  ? __kernel_text_address+0x9b/0x110
[  462.522920][T10276]  ? unwind_get_return_address+0x4d/0x90
[  462.528495][T10276]  ? arch_stack_walk+0xf3/0x140
[  462.533172][T10276]  ? stack_trace_save+0x113/0x1c0
[  462.538031][T10276]  ? stack_trace_snprint+0xf0/0xf0
[  462.542978][T10276]  ? __stack_depot_save+0x34/0x470
[  462.547925][T10276]  ? kmem_cache_free+0x116/0x2e0
[  462.552697][T10276]  ? kmem_cache_free+0x116/0x2e0
[  462.557472][T10276]  ? vmx_vcpu_load_vmcs+0x4ad/0x7a0
[  462.562507][T10276]  ? ____kasan_slab_free+0x126/0x160
[  462.567624][T10276]  ? putname+0xfa/0x150
[  462.571620][T10276]  ? do_syscall_64+0x3d/0xb0
[  462.576043][T10276]  ? __kasan_check_read+0x11/0x20
[  462.580904][T10276]  ? vmx_vcpu_pi_load+0xa5/0x360
[  462.585680][T10276]  ? __kasan_check_write+0x14/0x20
[  462.590628][T10276]  ? __restore_fpregs_from_fpstate+0xba/0x170
[  462.596529][T10276]  ? save_fpregs_to_fpstate+0x1a0/0x1a0
[  462.601913][T10276]  ? local_bh_enable+0x1f/0x30
[  462.606506][T10276]  ? kvm_load_guest_fpu+0x13d/0x280
[  462.611545][T10276]  kvm_arch_vcpu_ioctl_run+0xc4d/0x2270
[  462.616922][T10276]  ? selinux_file_permission+0x2c4/0x570
[  462.622396][T10276]  ? ioctl_has_perm+0x1f8/0x560
[  462.627081][T10276]  ? __kvm_request_immediate_exit+0x70/0x70
[  462.632809][T10276]  kvm_vcpu_ioctl+0x7eb/0xcf0
[  462.637319][T10276]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[  462.642786][T10276]  ? selinux_file_ioctl+0x3cc/0x540
[  462.647993][T10276]  ? __mutex_lock_slowpath+0x10/0x10
[  462.653121][T10276]  ? selinux_file_alloc_security+0x120/0x120
[  462.658930][T10276]  ? __fget_files+0x31e/0x380
[  462.663447][T10276]  ? security_file_ioctl+0x84/0xb0
[  462.668401][T10276]  ? kvm_clear_stat_per_vcpu+0x1e0/0x1e0
[  462.673857][T10276]  __se_sys_ioctl+0x114/0x190
[  462.678371][T10276]  __x64_sys_ioctl+0x7b/0x90
[  462.682799][T10276]  do_syscall_64+0x3d/0xb0
[  462.687050][T10276]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  462.692779][T10276] RIP: 0033:0x7f75224da299
[  462.697034][T10276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  462.716474][T10276] RSP: 002b:00007f752115a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  462.724808][T10276] RAX: ffffffffffffffda RBX: 00007f7522668f80 RCX: 00007f75224da299
[  462.732616][T10276] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  462.740428][T10276] RBP: 00007f752115a0a0 R08: 0000000000000000 R09: 0000000000000000
[  462.748240][T10276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  462.756054][T10276] R13: 000000000000000b R14: 00007f7522668f80 R15: 00007ffe8bd9e638
[  462.763865][T10276]  </TASK>
[  462.822826][T10282] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  462.883667][T10285] loop1: detected capacity change from 0 to 512
[  463.002115][T10285] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #16: comm syz.1.2805: iget: bad extended attribute block 128
[  463.015321][T10285] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2805: couldn't read orphan inode 16 (err -117)
[  463.015473][T10285] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  463.015567][T10285] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038 (0x7fffffff)
[  463.020561][T10285] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2805: bg 0: block 352: padding at end of block bitmap is not set
[  463.033399][T10294] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2810'.
[  463.039079][T10285] EXT4-fs error (device loop1): ext4_xattr_block_set:2191: inode #12: comm syz.1.2805: bad block 0
[  463.397980][T10302] loop2: detected capacity change from 0 to 512
[  463.410122][T10285] Quota error (device loop1): write_blk: dquota write failed
[  463.417444][T10285] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  463.454136][T10302] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #16: comm syz.2.2812: iget: bad extended attribute block 128
[  463.467702][T10302] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.2812: couldn't read orphan inode 16 (err -117)
[  463.479796][T10302] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  463.497022][T10302] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038 (0x7fffffff)
[  463.524104][T10302] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2812: bg 0: block 352: padding at end of block bitmap is not set
[  463.538824][T10302] EXT4-fs error (device loop2): ext4_xattr_block_set:2191: inode #12: comm syz.2.2812: bad block 0
[  463.579956][T10302] Quota error (device loop2): write_blk: dquota write failed
[  463.587262][T10302] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  463.685999][T10315] syz.4.2814[10315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  463.686081][T10315] syz.4.2814[10315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  463.786885][T10318] device pim6reg1 entered promiscuous mode
[  464.123689][ T3591] usb 1-1: bad CDC descriptors
[  464.159733][ T3591] usb 1-1: USB disconnect, device number 61
[  464.445945][T10329] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  464.481258][T10330] loop2: detected capacity change from 0 to 512
[  464.548594][   T30] audit: type=1400 audit(1722211470.200:3850): avc:  denied  { mounton } for  pid=10345 comm="syz.4.2824" path="/66/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  464.558752][T10346] fuse: Unknown parameter '@'
[  465.006164][T10356] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  466.023610][T10367] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2827'.
[  466.080653][T10367] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2827'.
[  466.188876][T10382] FAULT_INJECTION: forcing a failure.
[  466.188876][T10382] name failslab, interval 1, probability 0, space 0, times 0
[  466.201499][T10382] CPU: 1 PID: 10382 Comm: syz.1.2834 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  466.211299][T10382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  466.221192][T10382] Call Trace:
[  466.224312][T10382]  <TASK>
[  466.227094][T10382]  dump_stack_lvl+0x151/0x1b7
[  466.231606][T10382]  ? io_uring_drop_tctx_refs+0x190/0x190
[  466.237073][T10382]  ? pcpu_memcg_post_alloc_hook+0x1b1/0x260
[  466.242805][T10382]  ? trace_raw_output_percpu_destroy_chunk+0xc0/0xc0
[  466.249315][T10382]  dump_stack+0x15/0x17
[  466.253312][T10382]  should_fail+0x3c6/0x510
[  466.257557][T10382]  __should_failslab+0xa4/0xe0
[  466.262163][T10382]  ? alloc_vfsmnt+0x27/0x4a0
[  466.266581][T10382]  should_failslab+0x9/0x20
[  466.270921][T10382]  slab_pre_alloc_hook+0x37/0xd0
[  466.275695][T10382]  ? alloc_vfsmnt+0x27/0x4a0
[  466.277853][  T314] usb 5-1: new full-speed USB device number 59 using dummy_hcd
[  466.280118][T10382]  kmem_cache_alloc+0x44/0x200
[  466.280154][T10382]  alloc_vfsmnt+0x27/0x4a0
[  466.296352][T10382]  clone_mnt+0x6e/0xca0
[  466.300344][T10382]  ? attach_mnt+0x32d/0x420
[  466.304693][T10382]  copy_tree+0x436/0x840
[  466.308765][T10382]  copy_mnt_ns+0x17e/0x970
[  466.313018][T10382]  ? create_new_namespaces+0x34/0x670
[  466.318223][T10382]  ? kmem_cache_alloc+0xf5/0x200
[  466.322996][T10382]  create_new_namespaces+0xcf/0x670
[  466.328033][T10382]  ? security_capable+0x87/0xb0
[  466.332725][T10382]  unshare_nsproxy_namespaces+0x126/0x180
[  466.338269][T10382]  ksys_unshare+0x542/0xa00
[  466.342611][T10382]  ? unshare_fd+0x240/0x240
[  466.346951][T10382]  ? debug_smp_processor_id+0x17/0x20
[  466.352156][T10382]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  466.358060][T10382]  ? exit_to_user_mode_prepare+0x39/0xa0
[  466.363533][T10382]  __x64_sys_unshare+0x38/0x40
[  466.368154][T10382]  do_syscall_64+0x3d/0xb0
[  466.372387][T10382]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  466.378109][T10382] RIP: 0033:0x7fb261aec299
[  466.382363][T10382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.401810][T10382] RSP: 002b:00007fb26076c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  466.410047][T10382] RAX: ffffffffffffffda RBX: 00007fb261c7af80 RCX: 00007fb261aec299
[  466.417862][T10382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002a020400
[  466.425667][T10382] RBP: 00007fb26076c0a0 R08: 0000000000000000 R09: 0000000000000000
[  466.433483][T10382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  466.441300][T10382] R13: 000000000000000b R14: 00007fb261c7af80 R15: 00007ffe85413228
[  466.449109][T10382]  </TASK>
[  466.469052][   T30] audit: type=1326 audit(1722211472.120:3851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10385 comm="syz.1.2836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb261aec299 code=0x7ffc0000
[  466.492892][   T30] audit: type=1326 audit(1722211472.120:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10385 comm="syz.1.2836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb261aec299 code=0x7ffc0000
[  466.517606][   T30] audit: type=1326 audit(1722211472.120:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10385 comm="syz.1.2836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb261aec299 code=0x7ffc0000
[  466.548779][   T30] audit: type=1326 audit(1722211472.120:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10385 comm="syz.1.2836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb261aec299 code=0x7ffc0000
[  466.576953][T10392] loop1: detected capacity change from 0 to 512
[  466.599682][T10392] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #16: comm syz.1.2837: iget: bad extended attribute block 128
[  466.612517][T10392] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.2837: couldn't read orphan inode 16 (err -117)
[  466.624483][ T3590] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  466.632901][T10392] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  466.644047][T10392] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038 (0x7fffffff)
[  466.663693][T10392] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2837: bg 0: block 352: padding at end of block bitmap is not set
[  466.680378][T10392] EXT4-fs error (device loop1): ext4_xattr_block_set:2191: inode #12: comm syz.1.2837: bad block 0
[  466.697911][  T314] usb 5-1: not running at top speed; connect to a high speed hub
[  466.718287][T10392] Quota error (device loop1): write_blk: dquota write failed
[  466.725592][T10392] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  466.788021][  T314] usb 5-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  466.800607][  T314] usb 5-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  466.813668][  T314] usb 5-1: config 1 interface 0 has no altsetting 0
[  466.868119][T10404] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  466.978007][  T314] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  466.986935][  T314] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.995359][  T314] usb 5-1: Product: ᙞ嗭吔䣼Ὑ
[  467.000746][  T314] usb 5-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  467.033223][  T314] usb 5-1: SerialNumber: Ї
[  467.038121][ T3590] usb 3-1: too many configurations: 65, using maximum allowed: 8
[  467.067948][T10361] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  467.808618][   T30] audit: type=1400 audit(1722211473.460:3855): avc:  denied  { lock } for  pid=10432 comm="syz.0.2849" path="socket:[64258]" dev="sockfs" ino=64258 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  467.832856][T10433] FAULT_INJECTION: forcing a failure.
[  467.832856][T10433] name failslab, interval 1, probability 0, space 0, times 0
[  467.855698][T10433] CPU: 0 PID: 10433 Comm: syz.0.2849 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  467.865492][T10433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  467.875391][T10433] Call Trace:
[  467.878511][T10433]  <TASK>
[  467.881290][T10433]  dump_stack_lvl+0x151/0x1b7
[  467.885806][T10433]  ? io_uring_drop_tctx_refs+0x190/0x190
[  467.891278][T10433]  dump_stack+0x15/0x17
[  467.895267][T10433]  should_fail+0x3c6/0x510
[  467.899522][T10433]  __should_failslab+0xa4/0xe0
[  467.904117][T10433]  ? posix_lock_inode+0x217/0x2960
[  467.909156][T10433]  should_failslab+0x9/0x20
[  467.913488][T10433]  slab_pre_alloc_hook+0x37/0xd0
[  467.918263][T10433]  ? posix_lock_inode+0x217/0x2960
[  467.923209][T10433]  kmem_cache_alloc+0x44/0x200
[  467.927817][T10433]  ? __kasan_slab_alloc+0xc3/0xe0
[  467.932686][T10433]  posix_lock_inode+0x217/0x2960
[  467.937450][T10433]  ? match_file+0x140/0x140
[  467.941785][T10433]  ? posix_lock_file+0x50/0x50
[  467.946386][T10433]  ? security_file_lock+0x7b/0xa0
[  467.951243][T10433]  do_lock_file_wait+0x1be/0x360
[  467.956019][T10433]  ? fcntl_setlk+0xcc0/0xcc0
[  467.960443][T10433]  ? slab_post_alloc_hook+0x72/0x2c0
[  467.965561][T10433]  ? fcntl_setlk+0x33/0xcc0
[  467.969906][T10433]  ? fcntl_setlk+0x33/0xcc0
[  467.974243][T10433]  fcntl_setlk+0x800/0xcc0
[  467.978938][T10433]  do_fcntl+0x5b1/0x1420
[  467.983009][T10433]  ? match_file+0x140/0x140
[  467.987348][T10433]  ? kill_fasync+0x250/0x250
[  467.991774][T10433]  ? __fget_files+0x31e/0x380
[  467.996289][T10433]  ? selinux_file_fcntl+0x178/0x1b0
[  468.001327][T10433]  ? security_file_fcntl+0x84/0xb0
[  468.006270][T10433]  __se_sys_fcntl+0xe0/0x1c0
[  468.010705][T10433]  __x64_sys_fcntl+0x7b/0x90
[  468.015141][T10433]  do_syscall_64+0x3d/0xb0
[  468.019377][T10433]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  468.025106][T10433] RIP: 0033:0x7fd2ad5ab299
[  468.029357][T10433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.048885][T10433] RSP: 002b:00007fd2ac22b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  468.057131][T10433] RAX: ffffffffffffffda RBX: 00007fd2ad739f80 RCX: 00007fd2ad5ab299
[  468.064940][T10433] RDX: 0000000020000080 RSI: 0000000000000026 RDI: 0000000000000004
[  468.072753][T10433] RBP: 00007fd2ac22b0a0 R08: 0000000000000000 R09: 0000000000000000
[  468.080561][T10433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.088461][T10433] R13: 000000000000000b R14: 00007fd2ad739f80 R15: 00007ffdf8eb92a8
[  468.096281][T10433]  </TASK>
[  468.167982][    T6] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[  468.357951][ T3590] usb 3-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  468.366905][ T3590] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.397976][ T2711] usb 1-1: new high-speed USB device number 62 using dummy_hcd
[  468.408000][    T6] usb 2-1: Using ep0 maxpacket: 32
[  468.527943][    T6] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  468.536178][    T6] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  468.544806][    T6] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  468.553816][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  468.563332][    T6] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  468.572756][    T6] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  468.585555][    T6] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  468.594432][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.602994][    T6] usb 2-1: config 0 descriptor??
[  468.698451][  T314] usb 5-1: bad CDC descriptors
[  468.710813][  T314] usb 5-1: USB disconnect, device number 59
[  468.719170][T10453] FAULT_INJECTION: forcing a failure.
[  468.719170][T10453] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  468.733787][T10453] CPU: 0 PID: 10453 Comm: syz.3.2855 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  468.743599][T10453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  468.753487][T10453] Call Trace:
[  468.756608][T10453]  <TASK>
[  468.759388][T10453]  dump_stack_lvl+0x151/0x1b7
[  468.763908][T10453]  ? io_uring_drop_tctx_refs+0x190/0x190
[  468.769369][T10453]  ? sched_clock+0x9/0x10
[  468.773620][T10453]  ? sched_clock_cpu+0x18/0x3b0
[  468.778321][T10453]  dump_stack+0x15/0x17
[  468.782299][T10453]  should_fail+0x3c6/0x510
[  468.786560][T10453]  should_fail_alloc_page+0x5a/0x80
[  468.791587][T10453]  prepare_alloc_pages+0x15c/0x700
[  468.796537][T10453]  ? __alloc_pages_bulk+0xe40/0xe40
[  468.801569][T10453]  __alloc_pages+0x18c/0x8f0
[  468.805992][T10453]  ? prep_new_page+0x110/0x110
[  468.810600][T10453]  ? __kasan_check_read+0x11/0x20
[  468.815450][T10453]  ? __vm_enough_memory+0x119/0x2f0
[  468.820491][T10453]  shmem_alloc_and_acct_page+0x4bd/0xa80
[  468.825959][T10453]  ? shmem_swapin_page+0x1520/0x1520
[  468.831092][T10453]  ? xas_start+0x333/0x3f0
[  468.835327][T10453]  ? xas_load+0x2a9/0x2d0
[  468.839497][T10453]  ? pagecache_get_page+0xdc2/0xeb0
[  468.844528][T10453]  ? page_cache_prev_miss+0x410/0x410
[  468.849738][T10453]  ? _raw_spin_lock+0xa4/0x1b0
[  468.854336][T10453]  ? _raw_spin_trylock_bh+0x190/0x190
[  468.859543][T10453]  ? avc_has_perm_noaudit+0x348/0x430
[  468.864752][T10453]  shmem_getpage_gfp+0x1388/0x23c0
[  468.869696][T10453]  ? _raw_spin_trylock_bh+0x190/0x190
[  468.875010][T10453]  ? shmem_getpage+0xa0/0xa0
[  468.879426][T10453]  ? fault_in_safe_writeable+0x240/0x240
[  468.884896][T10453]  ? _raw_spin_lock+0xa4/0x1b0
[  468.889496][T10453]  ? _raw_spin_trylock_bh+0x190/0x190
[  468.894702][T10453]  shmem_write_begin+0xca/0x1b0
[  468.899389][T10453]  generic_perform_write+0x2bc/0x5a0
[  468.904514][T10453]  ? grab_cache_page_write_begin+0xa0/0xa0
[  468.910151][T10453]  ? file_remove_privs+0x610/0x610
[  468.915104][T10453]  ? rwsem_write_trylock+0x153/0x340
[  468.920218][T10453]  ? rwsem_mark_wake+0x770/0x770
[  468.924999][T10453]  __generic_file_write_iter+0x25b/0x4b0
[  468.930462][T10453]  generic_file_write_iter+0xaf/0x1c0
[  468.935670][T10453]  vfs_write+0xd5d/0x1110
[  468.939838][T10453]  ? file_end_write+0x1c0/0x1c0
[  468.944535][T10453]  ? __fdget_pos+0x209/0x3a0
[  468.948963][T10453]  ? ksys_write+0x77/0x2c0
[  468.953199][T10453]  ksys_write+0x199/0x2c0
[  468.957371][T10453]  ? __ia32_sys_read+0x90/0x90
[  468.961971][T10453]  __x64_sys_write+0x7b/0x90
[  468.966402][T10453]  do_syscall_64+0x3d/0xb0
[  468.970646][T10453]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  468.976375][T10453] RIP: 0033:0x7f75224d8e1f
[  468.980627][T10453] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  469.000500][T10453] RSP: 002b:00007f7521159e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  469.008745][T10453] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f75224d8e1f
[  469.016556][T10453] RDX: 0000000000040000 RSI: 00007f7518d3a000 RDI: 0000000000000006
[  469.024375][T10453] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000044f
[  469.032178][T10453] R10: 00000000000003be R11: 0000000000000293 R12: 0000000000000006
[  469.039995][T10453] R13: 00007f7521159f00 R14: 00007f7521159ec0 R15: 00007f7518d3a000
[  469.047809][T10453]  </TASK>
[  469.068311][ T2711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  469.078109][    T6] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 68 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  469.087928][ T3590] usb 3-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[  469.096122][ T2711] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  469.097429][ T3590] usb 3-1: No valid video chain found.
[  469.108453][    T6] usb 2-1: USB disconnect, device number 68
[  469.332262][ T3590] usb 3-1: USB disconnect, device number 43
[  469.339191][ T2711] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  469.404415][T10460] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  469.458435][ T2711] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  469.469831][    T6] usblp0: removed
[  469.627966][ T2711] usb 1-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  469.636891][ T2711] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.644748][ T2711] usb 1-1: Product: syz
[  469.648800][ T2711] usb 1-1: Manufacturer: syz
[  469.653176][ T2711] usb 1-1: SerialNumber: syz
[  469.658780][ T2711] usb 1-1: config 0 descriptor??
[  469.698472][ T2711] ums-isd200 1-1:0.0: USB Mass Storage device detected
[  469.729009][  T386] kworker/dying (386) used greatest stack depth: 18464 bytes left
[  469.817918][    T6] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[  469.938324][ T2711] scsi host1: usb-storage 1-1:0.0
[  469.954345][ T2711] usb 1-1: USB disconnect, device number 62
[  469.980777][T10471] loop3: detected capacity change from 0 to 1024
[  470.019328][T10471] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  470.029919][T10471] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038 (0x7fffffff)
[  470.057889][    T6] usb 2-1: Using ep0 maxpacket: 32
[  470.113053][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[  470.147881][  T529] usb 3-1: new full-speed USB device number 44 using dummy_hcd
[  470.177967][    T6] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  470.186279][    T6] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  470.195019][    T6] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  470.203946][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  470.213566][    T6] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  470.223091][    T6] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  470.235809][    T6] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  470.244769][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.253284][    T6] usb 2-1: config 0 descriptor??
[  470.507932][  T529] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  470.519237][  T529] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  470.529433][  T529] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 166, setting to 64
[  470.540337][  T529] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  471.047924][ T3588] usb 1-1: new full-speed USB device number 63 using dummy_hcd
[  471.247556][T10492] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  471.265812][  T529] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  471.275091][  T529] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  471.283259][  T529] usb 3-1: SerialNumber: syz
[  471.317972][T10467] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  471.338823][  T529] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  471.346757][  T529] cdc_acm: probe of 3-1:1.0 failed with error -12
[  471.441190][T10498] loop4: detected capacity change from 0 to 512
[  471.509768][T10498] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  471.520757][T10498] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038 (0x7fffffff)
[  471.533642][T10498] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #2: comm syz.4.2866: corrupted inode contents
[  471.545839][T10498] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #2: comm syz.4.2866: mark_inode_dirty error
[  471.549445][  T529] usb 3-1: USB disconnect, device number 44
[  471.557713][T10498] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #2: comm syz.4.2866: corrupted inode contents
[  471.574419][T10498] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.2866: mark_inode_dirty error
[  471.627895][ T3588] usb 1-1: not running at top speed; connect to a high speed hub
[  471.687958][T10507] loop4: detected capacity change from 0 to 4096
[  471.707982][ T3588] usb 1-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  471.718840][ T3588] usb 1-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  471.731989][ T3588] usb 1-1: config 1 interface 0 has no altsetting 0
[  471.740997][T10507] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  471.907940][ T3588] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  471.916989][ T3588] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.924835][ T3588] usb 1-1: Product: ᙞ嗭吔䣼Ὑ
[  471.929920][ T3588] usb 1-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  471.962409][ T3588] usb 1-1: SerialNumber: Ї
[  471.987995][T10488] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  472.027867][ T3590] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  472.128063][  T529] Bluetooth: hci0: command 0x1003 tx timeout
[  472.134082][T10299] Bluetooth: hci0: sending frame failed (-49)
[  472.220190][    T6] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 69 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  472.233315][    T6] usb 2-1: USB disconnect, device number 69
[  472.240616][    T6] usblp0: removed
[  472.320950][T10516] netlink: 116 bytes leftover after parsing attributes in process `syz.2.2869'.
[  472.436445][T10517] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  472.477909][ T3590] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  472.498131][ T3590] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  472.521025][ T3590] usb 5-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  472.530344][ T3590] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  472.557825][ T3590] usb 5-1: config 0 descriptor??
[  473.016633][T10521] loop2: detected capacity change from 0 to 512
[  473.100239][T10521] EXT4-fs (loop2): 1 orphan inode deleted
[  473.111366][T10521] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  473.132198][T10521] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038 (0x7fffffff)
[  473.229201][T10507] Quota error (device loop4): find_block_dqentry: Quota for id 0 referenced but not present
[  473.239233][T10507] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  473.316876][T10529] syz.2.2872[10529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  473.317280][T10529] syz.2.2872[10529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  473.578287][ T3588] usb 1-1: bad CDC descriptors
[  473.601413][ T3588] usb 1-1: USB disconnect, device number 63
[  473.657865][    T6] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[  473.927898][ T3590] usbhid 5-1:0.0: can't add hid device: -71
[  473.933663][ T3590] usbhid: probe of 5-1:0.0 failed with error -71
[  473.949073][ T3590] usb 5-1: USB disconnect, device number 60
[  473.974654][T10536] loop2: detected capacity change from 0 to 512
[  474.018741][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  474.028466][    T6] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  474.090551][T10538] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  474.160133][T10536] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #16: comm syz.2.2876: iget: bad extended attribute block 128
[  474.173525][T10536] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.2876: couldn't read orphan inode 16 (err -117)
[  474.186451][T10536] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  474.217527][T10536] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038 (0x7fffffff)
[  474.227723][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  474.237547][    T6] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  474.248128][T10536] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2876: bg 0: block 352: padding at end of block bitmap is not set
[  474.262305][  T529] Bluetooth: hci0: command 0x1001 tx timeout
[  474.267573][T10536] EXT4-fs error (device loop2): ext4_xattr_block_set:2191: inode #12: comm syz.2.2876: bad block 0
[  474.268155][T10299] Bluetooth: hci0: sending frame failed (-49)
[  474.407935][    T6] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  474.425031][    T6] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.433066][    T6] usb 2-1: Product: syz
[  474.437212][    T6] usb 2-1: Manufacturer: syz
[  474.441752][    T6] usb 2-1: SerialNumber: syz
[  474.446478][   T30] audit: type=1326 audit(1722211480.090:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.451327][    T6] usb 2-1: config 0 descriptor??
[  474.474855][   T30] audit: type=1326 audit(1722211480.120:3857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.498940][   T30] audit: type=1326 audit(1722211480.120:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.523025][    T6] ums-isd200 2-1:0.0: USB Mass Storage device detected
[  474.524091][T10543] loop2: detected capacity change from 0 to 32768
[  474.539963][   T30] audit: type=1326 audit(1722211480.120:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.568375][   T30] audit: type=1326 audit(1722211480.120:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.592287][   T30] audit: type=1326 audit(1722211480.120:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.616997][T10543]  loop2: p1 p3 < p5 p6 >
[  474.618894][   T30] audit: type=1326 audit(1722211480.120:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2ad5ab299 code=0x7ffc0000
[  474.644861][   T30] audit: type=1326 audit(1722211480.120:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10544 comm="syz.0.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd2ad5a9cd0 code=0x7ffc0000
[  474.789015][    T6] scsi host1: usb-storage 2-1:0.0
[  474.796673][    T6] usb 2-1: USB disconnect, device number 70
[  474.804868][  T318] udevd[318]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[  474.807504][ T2277] udevd[2277]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  474.824958][  T316] udevd[316]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory
[  474.832100][  T424] udevd[424]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  474.851422][ T2277] udevd[2277]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  474.862475][  T318] udevd[318]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[  474.887707][  T316] udevd[316]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory
[  474.931520][  T424] udevd[424]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  474.967855][ T2711] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[  475.128919][T10564] loop2: detected capacity change from 0 to 512
[  475.210898][T10564] EXT4-fs (loop2): Unrecognized mount option "jqfmt=vfsv0"errors=continue" or missing value
[  475.455239][T10562] loop2: detected capacity change from 0 to 512
[  475.462633][T10562] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  475.476076][T10562] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.2881: casefold flag without casefold feature
[  475.491377][T10562] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.2881: missing EA_INODE flag
[  475.505224][T10562] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.2881: error while reading EA inode 12 err=-117
[  475.519530][T10562] EXT4-fs (loop2): 1 orphan inode deleted
[  475.525120][T10562] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,noinit_itable,errors=continue,errors=continue,errors=remount-ro,auto_da_alloc,auto_da_alloc,norecovery,errors=continue,journal_ioprio=0x0000000000000001,. Quota mode: writeback.
[  475.712251][T10574] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2885'.
[  475.728141][ T2711] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  475.739232][ T2711] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  475.749353][ T2711] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  475.758278][ T2711] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.877502][T10582] loop2: detected capacity change from 0 to 512
[  475.943028][T10583] loop4: detected capacity change from 0 to 16
[  475.971182][T10583] erofs: (device loop4): mounted with root inode @ nid 36.
[  475.981663][T10583] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  475.991641][T10583] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851]
[  476.004546][T10583] erofs: (device loop4): z_erofs_readpage: failed to read, err [-117]
[  476.012930][T10583] FAULT_INJECTION: forcing a failure.
[  476.012930][T10583] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.025916][T10583] CPU: 1 PID: 10583 Comm: syz.4.2886 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  476.035671][T10583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  476.045568][T10583] Call Trace:
[  476.048789][T10583]  <TASK>
[  476.051570][T10583]  dump_stack_lvl+0x151/0x1b7
[  476.056081][T10583]  ? io_uring_drop_tctx_refs+0x190/0x190
[  476.061544][T10583]  ? __check_object_size+0x73/0x3d0
[  476.066578][T10583]  dump_stack+0x15/0x17
[  476.068941][  T314] usb 2-1: new full-speed USB device number 71 using dummy_hcd
[  476.070740][T10583]  should_fail+0x3c6/0x510
[  476.082392][T10583]  should_fail_usercopy+0x1a/0x20
[  476.087242][T10583]  _copy_to_user+0x20/0x90
[  476.091498][T10583]  simple_read_from_buffer+0xc7/0x150
[  476.096699][T10583]  proc_fail_nth_read+0x1a3/0x210
[  476.101558][T10583]  ? proc_fault_inject_write+0x390/0x390
[  476.107025][T10583]  ? fsnotify_perm+0x470/0x5d0
[  476.111632][T10583]  ? security_file_permission+0x86/0xb0
[  476.117000][T10583]  ? proc_fault_inject_write+0x390/0x390
[  476.122474][T10583]  vfs_read+0x27d/0xd40
[  476.126472][T10583]  ? __sched_text_start+0x8/0x8
[  476.131155][T10583]  ? kernel_read+0x1f0/0x1f0
[  476.135574][T10583]  ? __kasan_check_write+0x14/0x20
[  476.140526][T10583]  ? mutex_lock+0xb6/0x1e0
[  476.144786][T10583]  ? wait_for_completion_killable_timeout+0x10/0x10
[  476.151203][T10583]  ? __fdget_pos+0x2e7/0x3a0
[  476.155632][T10583]  ? ksys_read+0x77/0x2c0
[  476.159796][T10583]  ksys_read+0x199/0x2c0
[  476.163876][T10583]  ? vfs_write+0x1110/0x1110
[  476.168312][T10583]  __x64_sys_read+0x7b/0x90
[  476.172636][T10583]  do_syscall_64+0x3d/0xb0
[  476.176891][T10583]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  476.182617][T10583] RIP: 0033:0x7fbdd435fd7c
[  476.186880][T10583] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  476.206423][T10583] RSP: 002b:00007fbdd2f9f040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  476.214671][T10583] RAX: ffffffffffffffda RBX: 00007fbdd44f0130 RCX: 00007fbdd435fd7c
[  476.222472][T10583] RDX: 000000000000000f RSI: 00007fbdd2f9f0b0 RDI: 0000000000000008
[  476.230304][T10583] RBP: 00007fbdd2f9f0a0 R08: 0000000000000000 R09: 0000000000000000
[  476.238212][T10583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  476.246016][T10583] R13: 000000000000006e R14: 00007fbdd44f0130 R15: 00007ffdf03b8458
[  476.253849][T10583]  </TASK>
[  476.289618][T10552] loop0: detected capacity change from 0 to 1024
[  476.298455][    T6] Bluetooth: hci0: command 0x1009 tx timeout
[  476.339374][T10552] EXT4-fs (loop0): INFO: recovery required on readonly filesystem
[  476.347042][T10552] EXT4-fs (loop0): write access will be enabled during recovery
[  476.354750][T10552] JBD2: no valid journal superblock found
[  476.360350][T10552] EXT4-fs (loop0): error loading journal
[  476.362288][T10582] EXT4-fs (loop2): orphan cleanup on readonly fs
[  476.372612][T10582] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #3: comm syz.2.2887: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  476.390750][T10582] EXT4-fs error (device loop2): ext4_quota_enable:6369: comm syz.2.2887: Bad quota inode: 3, type: 0
[  476.402313][T10582] EXT4-fs warning (device loop2): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  476.416891][T10582] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  476.423728][T10582] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  476.459376][T10589] loop4: detected capacity change from 0 to 256
[  476.481377][T10591] fuse: Bad value for 'fd'
[  476.487987][ T2711] aiptek 1-1:17.0: Aiptek using 400 ms programming speed
[  476.498587][T10589] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  476.499212][ T2711] input: Aiptek as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:17.0/input/input59
[  476.517758][T10589] exFAT-fs (loop4): IO charset macicela not found
[  476.526691][ T2711] input: failed to attach handler kbd to device input59, error: -5
[  476.538061][ T2711] usb 1-1: USB disconnect, device number 64
[  476.563595][    T8] Bluetooth: hci1: Frame reassembly failed (-84)
[  476.707912][  T314] usb 2-1: not running at top speed; connect to a high speed hub
[  476.757882][ T3579] usb 3-1: new full-speed USB device number 45 using dummy_hcd
[  476.787940][  T314] usb 2-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  476.798721][  T314] usb 2-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  476.811498][  T314] usb 2-1: config 1 interface 0 has no altsetting 0
[  476.978010][  T314] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  476.986898][  T314] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  476.994738][  T314] usb 2-1: Product: ᙞ嗭吔䣼Ὑ
[  476.999767][  T314] usb 2-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  477.032136][  T314] usb 2-1: SerialNumber: Ї
[  477.057909][T10570] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  477.127941][ T3579] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  477.138811][ T3579] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  477.148391][ T3579] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 166, setting to 64
[  477.158881][ T3579] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  477.247911][ T3579] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  477.256780][ T3579] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  477.264616][ T3579] usb 3-1: SerialNumber: syz
[  477.297982][T10591] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  477.318355][ T3579] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  477.326330][ T3579] cdc_acm: probe of 3-1:1.0 failed with error -12
[  477.519360][ T3588] usb 3-1: USB disconnect, device number 45
[  477.895242][T10599] loop0: detected capacity change from 0 to 16
[  477.968271][T10599] erofs: (device loop0): mounted with root inode @ nid 36.
[  478.194119][T10606] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  478.249550][   T30] kauditd_printk_skb: 55 callbacks suppressed
[  478.249568][   T30] audit: type=1400 audit(1722211483.900:3919): avc:  denied  { unmount } for  pid=9302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  478.302364][T10610] loop0: detected capacity change from 0 to 128
[  478.379063][T10610] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  478.393834][   T30] audit: type=1400 audit(1722211484.040:3920): avc:  denied  { mount } for  pid=10609 comm="syz.0.2895" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  478.418322][T10610] FAULT_INJECTION: forcing a failure.
[  478.418322][T10610] name failslab, interval 1, probability 0, space 0, times 0
[  478.430930][T10610] CPU: 1 PID: 10610 Comm: syz.0.2895 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  478.440729][T10610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  478.450712][T10610] Call Trace:
[  478.453832][T10610]  <TASK>
[  478.456607][T10610]  dump_stack_lvl+0x151/0x1b7
[  478.461131][T10610]  ? io_uring_drop_tctx_refs+0x190/0x190
[  478.466590][T10610]  ? trace_raw_output_block_rq_remap+0x240/0x240
[  478.472750][T10610]  dump_stack+0x15/0x17
[  478.476744][T10610]  should_fail+0x3c6/0x510
[  478.480995][T10610]  ? mempool_free+0x310/0x310
[  478.485508][T10610]  __should_failslab+0xa4/0xe0
[  478.490109][T10610]  ? mempool_alloc_slab+0x1d/0x30
[  478.494968][T10610]  should_failslab+0x9/0x20
[  478.499395][T10610]  slab_pre_alloc_hook+0x37/0xd0
[  478.504171][T10610]  ? mempool_free+0x310/0x310
[  478.508679][T10610]  ? mempool_alloc_slab+0x1d/0x30
[  478.513540][T10610]  kmem_cache_alloc+0x44/0x200
[  478.518145][T10610]  ? mempool_free+0x310/0x310
[  478.522653][T10610]  mempool_alloc_slab+0x1d/0x30
[  478.527341][T10610]  mempool_alloc+0x149/0x550
[  478.531767][T10610]  ? __kasan_check_write+0x14/0x20
[  478.536716][T10610]  ? mempool_resize+0x840/0x840
[  478.541406][T10610]  bio_alloc_bioset+0x12a/0x950
[  478.546105][T10610]  submit_bh_wbc+0x1d1/0x6c0
[  478.550517][T10610]  ll_rw_block+0x1dc/0x240
[  478.554771][T10610]  __breadahead+0xbe/0x170
[  478.559024][T10610]  ? __getblk_gfp+0x7c0/0x7c0
[  478.563531][T10610]  ? 0xffffffffa0028d48
[  478.567525][T10610]  ? is_bpf_text_address+0x172/0x190
[  478.572646][T10610]  ? fat_ent_blocknr+0x195/0x2a0
[  478.577423][T10610]  ? blk_start_plug+0x5a/0x170
[  478.582022][T10610]  fat_ent_reada+0x378/0x580
[  478.586451][T10610]  ? fat_count_free_clusters+0xe00/0xe00
[  478.591914][T10610]  ? avc_has_perm_noaudit+0x348/0x430
[  478.597124][T10610]  fat_trim_fs+0x81f/0x1910
[  478.601461][T10610]  ? avc_denied+0x1b0/0x1b0
[  478.605800][T10610]  ? do_sys_openat2+0x71c/0x830
[  478.610493][T10610]  ? fat_ent_reada+0x580/0x580
[  478.615096][T10610]  ? do_vfs_ioctl+0xbc1/0x2a80
[  478.619775][T10610]  ? kstrtol_from_user+0x310/0x310
[  478.624722][T10610]  ? cap_capable+0x1d2/0x270
[  478.629152][T10610]  ? __kasan_check_write+0x14/0x20
[  478.634093][T10610]  ? _copy_from_user+0x96/0xd0
[  478.638704][T10610]  fat_generic_ioctl+0x7d1/0x1430
[  478.643648][T10610]  ? ioctl_has_perm+0x3f5/0x560
[  478.648334][T10610]  ? fat12_ent_next+0x4d0/0x4d0
[  478.653018][T10610]  ? file_end_write+0x1c0/0x1c0
[  478.657705][T10610]  ? selinux_file_ioctl+0x3cc/0x540
[  478.662739][T10610]  fat_dir_ioctl+0x12f/0x3a0
[  478.667167][T10610]  ? fat_readdir+0x50/0x50
[  478.671417][T10610]  ? security_file_ioctl+0x84/0xb0
[  478.676365][T10610]  ? fat_readdir+0x50/0x50
[  478.680617][T10610]  __se_sys_ioctl+0x114/0x190
[  478.685133][T10610]  __x64_sys_ioctl+0x7b/0x90
[  478.689557][T10610]  do_syscall_64+0x3d/0xb0
[  478.693808][T10610]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  478.699538][T10610] RIP: 0033:0x7fd2ad5ab299
[  478.703789][T10610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  478.723231][T10610] RSP: 002b:00007fd2ac22b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  478.731475][T10610] RAX: ffffffffffffffda RBX: 00007fd2ad739f80 RCX: 00007fd2ad5ab299
[  478.739288][T10610] RDX: 00000000200004c0 RSI: 00000000c0185879 RDI: 0000000000000004
[  478.747095][T10610] RBP: 00007fd2ac22b0a0 R08: 0000000000000000 R09: 0000000000000000
[  478.754909][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  478.762718][T10610] R13: 000000000000000b R14: 00007fd2ad739f80 R15: 00007ffdf8eb92a8
[  478.770546][T10610]  </TASK>
[  478.774062][ T3579] Bluetooth: hci1: command 0x1003 tx timeout
[  478.780914][T10610] attempt to access beyond end of device
[  478.780914][T10610] loop0: rw=3, want=6952, limit=128
[  478.786221][ T2026] Bluetooth: hci1: sending frame failed (-49)
[  478.791874][  T314] usb 2-1: bad CDC descriptors
[  478.802085][T10610] attempt to access beyond end of device
[  478.802085][T10610] loop0: rw=2051, want=7894, limit=128
[  478.807424][  T314] usb 2-1: USB disconnect, device number 71
[  478.825546][   T30] audit: type=1400 audit(1722211484.470:3921): avc:  denied  { unmount } for  pid=9302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  478.847309][   T30] audit: type=1400 audit(1722211484.470:3922): avc:  denied  { create } for  pid=10612 comm="syz.1.2896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  478.870811][   T30] audit: type=1400 audit(1722211484.470:3923): avc:  denied  { ioctl } for  pid=10612 comm="syz.1.2896" path="socket:[65366]" dev="sockfs" ino=65366 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  478.896482][   T30] audit: type=1400 audit(1722211484.470:3924): avc:  denied  { setopt } for  pid=10612 comm="syz.1.2896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  478.932575][   T30] audit: type=1400 audit(1722211484.470:3925): avc:  denied  { write } for  pid=10612 comm="syz.1.2896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  478.958239][   T30] audit: type=1400 audit(1722211484.570:3926): avc:  denied  { read write } for  pid=10614 comm="syz.0.2897" name="fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  478.981806][   T30] audit: type=1400 audit(1722211484.570:3927): avc:  denied  { open } for  pid=10614 comm="syz.0.2897" path="/dev/fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  479.006116][   T30] audit: type=1400 audit(1722211484.570:3928): avc:  denied  { mounton } for  pid=10614 comm="syz.0.2897" path="/72/file0" dev="tmpfs" ino=420 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  479.540427][T10629] loop1: detected capacity change from 0 to 256
[  479.578263][T10629] exfat: Deprecated parameter 'codepage'
[  479.583717][T10629] exfat: Bad value for 'codepage'
[  479.947856][ T3579] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[  480.066924][T10637] netlink: 'syz.2.2903': attribute type 3 has an invalid length.
[  480.207873][ T3579] usb 2-1: Using ep0 maxpacket: 32
[  480.320682][T10640] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.327553][T10640] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.334929][T10640] device bridge_slave_0 entered promiscuous mode
[  480.345640][T10640] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.347949][ T3579] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 235, changing to 11
[  480.352638][T10640] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.365448][ T3579] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 17242, setting to 1024
[  480.376959][T10640] device bridge_slave_1 entered promiscuous mode
[  480.392167][ T3579] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  480.401326][ T3579] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  480.411741][T10641] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.426465][T10641] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.434133][T10641] device bridge_slave_0 entered promiscuous mode
[  480.441478][T10641] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.448602][T10641] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.456166][T10641] device bridge_slave_1 entered promiscuous mode
[  480.518443][ T3579] hub 2-1:4.0: USB hub found
[  480.728493][ T3579] hub 2-1:4.0: 2 ports detected
[  480.847939][ T3590] Bluetooth: hci1: command 0x1001 tx timeout
[  480.853830][   T47] Bluetooth: hci1: sending frame failed (-49)
[  480.867840][ T3588] usb 1-1: new full-speed USB device number 65 using dummy_hcd
[  480.876967][T10641] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.883862][T10641] bridge0: port 2(bridge_slave_1) entered forwarding state
[  480.890976][T10641] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.897829][T10641] bridge0: port 1(bridge_slave_0) entered forwarding state
[  480.924444][T10640] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.931371][T10640] bridge0: port 2(bridge_slave_1) entered forwarding state
[  480.938450][T10640] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.945287][T10640] bridge0: port 1(bridge_slave_0) entered forwarding state
[  480.986691][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  480.995663][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  481.004563][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  481.014275][ T3547] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.021290][ T3579] hub 2-1:4.0: hub_hub_status failed (err = -71)
[  481.027437][ T3579] hub 2-1:4.0: config failed, can't get hub status (err -71)
[  481.035036][ T3547] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.060006][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  481.068509][ T3579] usb 2-1: USB disconnect, device number 72
[  481.075287][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  481.083821][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  481.098455][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  481.105953][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  481.114477][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.121340][  T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  481.129399][ T1266] device bridge_slave_1 left promiscuous mode
[  481.135318][ T1266] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.142853][ T1266] device bridge_slave_0 left promiscuous mode
[  481.148930][ T1266] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.156884][ T1266] device veth1_macvtap left promiscuous mode
[  481.162851][ T1266] device veth0_vlan left promiscuous mode
[  481.265705][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  481.273626][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  481.281062][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  481.288426][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  481.296375][  T529] bridge0: port 2(bridge_slave_1) entered blocking state
[  481.297941][ T3588] usb 1-1: not running at top speed; connect to a high speed hub
[  481.303323][  T529] bridge0: port 2(bridge_slave_1) entered forwarding state
[  481.320044][T10640] device veth0_vlan entered promiscuous mode
[  481.337170][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  481.345092][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  481.358352][T10640] device veth1_macvtap entered promiscuous mode
[  481.364831][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  481.373947][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  481.381802][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  481.389660][ T3588] usb 1-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  481.400809][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  481.408578][ T3588] usb 1-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  481.421793][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  481.429477][ T3588] usb 1-1: config 1 interface 0 has no altsetting 0
[  481.441085][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  481.449343][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  481.457473][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  481.465821][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  481.477571][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  481.486030][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  481.503471][T10641] device veth0_vlan entered promiscuous mode
[  481.516756][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  481.524829][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  481.534254][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  481.541890][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  481.571017][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  481.579721][ T3579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  481.592245][T10641] device veth1_macvtap entered promiscuous mode
[  481.598703][ T3588] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  481.608566][ T3588] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.616389][ T3588] usb 1-1: Product: ᙞ嗭吔䣼Ὑ
[  481.618532][T10661] loop1: detected capacity change from 0 to 128
[  481.621777][ T3588] usb 1-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  481.668569][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  481.676213][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  481.685670][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  481.693932][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  481.702213][  T529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  481.735645][ T3588] usb 1-1: SerialNumber: Ї
[  481.745602][T10661] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  481.756407][T10661] ext4 filesystem being mounted at /196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  481.788012][T10652] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  482.067841][ T3547] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  482.319206][ T1266] device bridge_slave_1 left promiscuous mode
[  482.325319][ T1266] bridge0: port 2(bridge_slave_1) entered disabled state
[  482.333075][ T1266] device bridge_slave_0 left promiscuous mode
[  482.339179][ T1266] bridge0: port 1(bridge_slave_0) entered disabled state
[  482.347268][ T1266] device veth1_macvtap left promiscuous mode
[  482.353215][ T1266] device veth0_vlan left promiscuous mode
[  482.447944][ T3547] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  482.456249][ T3547] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  482.467715][ T3547] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  482.479032][ T3547] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  482.492033][ T3547] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  482.501147][ T3547] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.517187][ T3547] usb 4-1: config 0 descriptor??
[  482.548198][T10665] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  482.696241][T10676] FAULT_INJECTION: forcing a failure.
[  482.696241][T10676] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  482.709302][T10676] CPU: 1 PID: 10676 Comm: syz.2.2911 Not tainted 5.15.151-syzkaller-00127-g4edafe6c0231 #0
[  482.719032][T10676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  482.728919][T10676] Call Trace:
[  482.732042][T10676]  <TASK>
[  482.734821][T10676]  dump_stack_lvl+0x151/0x1b7
[  482.739336][T10676]  ? io_uring_drop_tctx_refs+0x190/0x190
[  482.744799][T10676]  ? preempt_schedule_irq+0xe7/0x140
[  482.749924][T10676]  ? __cond_resched+0x20/0x20
[  482.754436][T10676]  dump_stack+0x15/0x17
[  482.758428][T10676]  should_fail+0x3c6/0x510
[  482.762683][T10676]  should_fail_usercopy+0x1a/0x20
[  482.767542][T10676]  _copy_from_iter+0x22f/0xdc0
[  482.772145][T10676]  ? irqentry_exit_cond_resched+0x2a/0x30
[  482.777698][T10676]  ? copy_mc_pipe_to_iter+0x760/0x760
[  482.782903][T10676]  ? __check_object_size+0x241/0x3d0
[  482.788030][T10676]  ? 0xffffffff81000000
[  482.792014][T10676]  ? __check_object_size+0x27d/0x3d0
[  482.797142][T10676]  ? __check_object_size+0x2ec/0x3d0
[  482.802258][T10676]  netlink_sendmsg+0x8b9/0xd20
[  482.806863][T10676]  ? netlink_getsockopt+0x560/0x560
[  482.811893][T10676]  ? security_socket_sendmsg+0x82/0xb0
[  482.817185][T10676]  ? netlink_getsockopt+0x560/0x560
[  482.822219][T10676]  ____sys_sendmsg+0x59e/0x8f0
[  482.826825][T10676]  ? __sys_sendmsg_sock+0x40/0x40
[  482.831686][T10676]  ? import_iovec+0xe5/0x120
[  482.836115][T10676]  ___sys_sendmsg+0x252/0x2e0
[  482.840621][T10676]  ? __sys_sendmsg+0x260/0x260
[  482.845236][T10676]  ? __fdget+0x1bc/0x240
[  482.849298][T10676]  __se_sys_sendmsg+0x19a/0x260
[  482.853985][T10676]  ? __x64_sys_sendmsg+0x90/0x90
[  482.858754][T10676]  ? switch_fpu_return+0x1ed/0x3d0
[  482.863705][T10676]  ? __kasan_check_read+0x11/0x20
[  482.868568][T10676]  __x64_sys_sendmsg+0x7b/0x90
[  482.873163][T10676]  do_syscall_64+0x3d/0xb0
[  482.877416][T10676]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  482.883143][T10676] RIP: 0033:0x7f860795e299
[  482.887398][T10676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.906840][T10676] RSP: 002b:00007f860659c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  482.915084][T10676] RAX: ffffffffffffffda RBX: 00007f8607aed130 RCX: 00007f860795e299
[  482.922893][T10676] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005
[  482.930707][T10676] RBP: 00007f860659c0a0 R08: 0000000000000000 R09: 0000000000000000
[  482.938520][T10676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.946330][T10676] R13: 000000000000006e R14: 00007f8607aed130 R15: 00007ffd7ee952a8
[  482.954149][T10676]  </TASK>
[  482.959376][ T3590] Bluetooth: hci1: command 0x1009 tx timeout
[  483.184178][T10680] loop1: detected capacity change from 0 to 16
[  483.209197][ T3547] plantronics 0003:047F:FFFF.005F: unknown main item tag 0xd
[  483.217554][ T3547] plantronics 0003:047F:FFFF.005F: No inputs registered, leaving
[  483.225737][T10680] erofs: (device loop1): mounted with root inode @ nid 36.
[  483.234257][ T3547] plantronics 0003:047F:FFFF.005F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  483.240291][T10680] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  483.258520][T10680] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -47 in[61, 4035] out[1851]
[  483.271566][T10680] erofs: (device loop1): z_erofs_readpage: failed to read, err [-117]
[  483.281322][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  483.281335][   T30] audit: type=1400 audit(1722211488.930:3965): avc:  denied  { create } for  pid=10679 comm="syz.1.2912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  483.306879][   T30] audit: type=1400 audit(1722211488.930:3964): avc:  denied  { create } for  pid=10679 comm="syz.1.2912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  483.422397][  T529] usb 4-1: USB disconnect, device number 59
[  483.538262][ T3588] usb 1-1: bad CDC descriptors
[  483.544580][ T3588] usb 1-1: USB disconnect, device number 65
[  483.767991][ T3547] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  483.889339][T10704] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2919'.
[  483.913271][T10706] loop1: detected capacity change from 0 to 128
[  483.999969][T10706] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  484.010520][T10706] ext4 filesystem being mounted at /204/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  484.076118][   T30] audit: type=1400 audit(1722211489.720:3966): avc:  denied  { confidentiality } for  pid=10708 comm="syz.3.2921" lockdown_reason="use of bpf to read kernel RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[  484.119634][   T30] audit: type=1400 audit(1722211489.770:3967): avc:  denied  { write } for  pid=10708 comm="syz.3.2921" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  484.142611][   T30] audit: type=1326 audit(1722211489.790:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10708 comm="syz.3.2921" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4fb29f1299 code=0x0
[  484.248223][ T3547] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  484.258039][ T3547] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[  484.267630][ T3547] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  484.277412][ T3547] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  484.477936][ T3547] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  484.487057][ T3547] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.494862][ T3547] usb 3-1: Product: syz
[  484.498848][ T3547] usb 3-1: Manufacturer: syz
[  484.503231][ T3547] usb 3-1: SerialNumber: syz
[  484.508823][ T3547] usb 3-1: config 0 descriptor??
[  484.537406][T10721] loop0: detected capacity change from 0 to 2048
[  484.548383][ T3547] ums-isd200 3-1:0.0: USB Mass Storage device detected
[  484.569655][T10721] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  484.581458][   T30] audit: type=1400 audit(1722211490.230:3969): avc:  denied  { read append } for  pid=10720 comm="syz.0.2924" path="/77/file1/memory.current" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  484.657517][   T30] audit: type=1400 audit(1722211490.300:3970): avc:  denied  { ioctl } for  pid=10720 comm="syz.0.2924" path="/77/file1/memory.current" dev="loop0" ino=18 ioctlcmd=0x4b41 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  484.791830][   T30] audit: type=1400 audit(1722211490.440:3971): avc:  denied  { name_bind } for  pid=10728 comm="syz.0.2925" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  484.898202][ T3547] scsi host1: usb-storage 3-1:0.0
[  484.904874][ T3547] usb 3-1: USB disconnect, device number 46
[  485.279358][   T30] audit: type=1400 audit(1722211490.930:3972): avc:  denied  { connect } for  pid=10742 comm="syz.1.2930" lport=44 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  485.308048][ T3590] usb 1-1: new full-speed USB device number 66 using dummy_hcd
[  485.318765][   T30] audit: type=1400 audit(1722211490.930:3973): avc:  denied  { write } for  pid=10742 comm="syz.1.2930" path="socket:[66451]" dev="sockfs" ino=66451 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  485.347179][T10751] loop1: detected capacity change from 0 to 512
[  485.400937][T10751] EXT4-fs (loop1): orphan cleanup on readonly fs
[  485.407314][T10751] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #3: comm syz.1.2931: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  485.425985][T10751] EXT4-fs error (device loop1): ext4_quota_enable:6369: comm syz.1.2931: Bad quota inode: 3, type: 0
[  485.438367][T10751] EXT4-fs warning (device loop1): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  485.456782][T10751] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  485.463012][T10760] loop3: detected capacity change from 0 to 512
[  485.464160][T10751] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  485.485273][T10751] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  485.498274][T10751] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #3: comm syz.1.2931: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  485.516757][T10751] EXT4-fs error (device loop1): ext4_quota_enable:6369: comm syz.1.2931: Bad quota inode: 3, type: 0
[  485.529862][T10751] EXT4-fs warning (device loop1): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  485.762588][T10760] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2934: corrupted inode contents
[  485.775351][T10760] EXT4-fs error (device loop3): ext4_dirty_inode:6024: inode #16: comm syz.3.2934: mark_inode_dirty error
[  485.787054][ T3590] usb 1-1: not running at top speed; connect to a high speed hub
[  485.795044][T10760] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2934: corrupted inode contents
[  485.807039][T10760] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.2934: mark_inode_dirty error
[  485.818540][T10760] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2934: corrupted inode contents
[  485.830450][T10760] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  485.839065][T10760] EXT4-fs error (device loop3): ext4_do_update_inode:5191: inode #16: comm syz.3.2934: corrupted inode contents
[  485.851167][T10760] EXT4-fs error (device loop3): ext4_truncate:4292: inode #16: comm syz.3.2934: mark_inode_dirty error
[  485.869388][T10768] loop1: detected capacity change from 0 to 512
[  485.875469][T10760] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  485.884719][T10760] EXT4-fs (loop3): 1 truncate cleaned up
[  485.890505][T10760] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  485.898138][ T3590] usb 1-1: config 1 interface 0 altsetting 5 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  485.902358][T10760] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038 (0x7fffffff)
[  485.929044][ T3590] usb 1-1: config 1 interface 0 altsetting 5 has 3 endpoint descriptors, different from the interface descriptor's value: 14
[  485.987822][ T3590] usb 1-1: config 1 interface 0 has no altsetting 0
[  486.167917][ T3590] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  486.176918][ T3590] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.184817][ T3590] usb 1-1: Product: ᙞ嗭吔䣼Ὑ
[  486.189975][ T3590] usb 1-1: Manufacturer: 뇑彮ꢰ뇭擲쁬퀘뺇 䓻⎦뜞ᶷ㸁亵䛏ಀ紬빶樏⏂픹恭勂␯闪洕曒滧䛷魬瞲饾汰ŴƵ맙䣩秡䖋潵ꌥ猪뢤ﲘ韽몺퀞Ḍ돌埗ࣔ괝릑鳲撧﫹乪될ᢋ嗧柰梯캷羗Ⴒ霥袍䃮젗쥬荒阈螠੽啴礭躸➠⚷꼸ﻄ㱟࡙䕊街뉳홽錚飒ᾗ鬍䩘쒁♠
[  486.252770][ T3590] usb 1-1: SerialNumber: Ї
[  486.287987][T10738] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  486.715040][T10792] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  486.859253][   T45] device bridge_slave_1 left promiscuous mode
[  486.866320][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  486.874409][   T45] device bridge_slave_0 left promiscuous mode
[  486.880419][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.889155][   T45] device veth1_macvtap left promiscuous mode
[  486.895032][   T45] device veth0_vlan left promiscuous mode
[  487.521848][T10826] fuse: Bad value for 'fd'
[  487.877295][ T3547] usb 3-1: new full-speed USB device number 47 using dummy_hcd
[  487.928169][ T3590] usb 1-1: bad CDC descriptors
[  487.934342][ T3590] usb 1-1: USB disconnect, device number 66
[  487.963262][T10841] loop0: detected capacity change from 0 to 512
[  487.984790][T10841] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz.0.2948: corrupted inode contents
[  487.997127][T10841] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #16: comm syz.0.2948: mark_inode_dirty error
[  488.009028][T10841] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz.0.2948: corrupted inode contents
[  488.020974][T10841] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.2948: mark_inode_dirty error
[  488.032462][T10841] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz.0.2948: corrupted inode contents
[  488.054759][T10841] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  488.063410][T10841] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz.0.2948: corrupted inode contents
[  488.075997][T10841] EXT4-fs error (device loop0): ext4_truncate:4292: inode #16: comm syz.0.2948: mark_inode_dirty error
[  488.087209][T10841] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  488.096738][T10841] EXT4-fs (loop0): 1 truncate cleaned up
[  488.102694][T10841] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  488.113898][T10841] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038 (0x7fffffff)
[  488.238749][    T6] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[  488.249325][ T3547] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  488.260556][ T3547] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  488.270361][ T3547] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 166, setting to 64
[  488.307923][ T3547] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  488.427961][ T3547] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  488.436853][ T3547] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  488.461723][ T3547] usb 3-1: SerialNumber: syz
[  488.477870][    T6] usb 2-1: Using ep0 maxpacket: 16
[  488.477901][T10826] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  488.508363][ T3547] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  488.520315][ T3547] cdc_acm: probe of 3-1:1.0 failed with error -12
[  488.597907][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  488.608689][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  488.618448][    T6] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  488.631358][    T6] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  488.640575][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.658466][    T6] usb 2-1: config 0 descriptor??
[  488.720371][  T529] usb 3-1: USB disconnect, device number 47
[  489.197992][    T6] usbhid 2-1:0.0: can't add hid device: -71
[  489.204794][    T6] usbhid: probe of 2-1:0.0 failed with error -71
[  489.218713][    T6] usb 2-1: USB disconnect, device number 73
[  489.589057][T10897] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2954'.
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: tun: can't open /dev/net/tun
 (errno 2: No such file or directory)
loop exited with status 67
SYZFAIL: repeatedly failed to execute the program
proc=3 req=2940 state=3 status=67 (errno 32: Broken pipe)
[  489.757483][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  489.757503][   T30] audit: type=1400 audit(1722211495.390:3978): avc:  denied  { write } for  pid=280 comm="syz-executor" path="pipe:[13501]" dev="pipefs" ino=13501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  490.729985][   T45] device bridge_slave_1 left promiscuous mode
[  490.735954][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  490.743393][   T45] device bridge_slave_0 left promiscuous mode
[  490.749368][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.757824][   T45] device bridge_slave_1 left promiscuous mode
[  490.763767][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  490.771230][   T45] device bridge_slave_0 left promiscuous mode
[  490.777165][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.785442][   T45] device bridge_slave_1 left promiscuous mode
[  490.791440][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  490.798729][   T45] device bridge_slave_0 left promiscuous mode
[  490.804642][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.813059][   T45] device veth1_macvtap left promiscuous mode
[  490.818985][   T45] device veth0_vlan left promiscuous mode
[  490.825066][   T45] device veth1_macvtap left promiscuous mode
[  490.830926][   T45] device veth0_vlan left promiscuous mode
[  490.832777][   T30] audit: type=1400 audit(1722211496.480:3979): avc:  denied  { write } for  pid=82 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  490.857809][   T30] audit: type=1400 audit(1722211496.480:3980): avc:  denied  { remove_name } for  pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  490.880192][   T30] audit: type=1400 audit(1722211496.480:3981): avc:  denied  { rename } for  pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  490.902136][   T30] audit: type=1400 audit(1722211496.480:3982): avc:  denied  { add_name } for  pid=82 comm="syslogd" name="messages.0" dev="tmpfs" ino=13 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  490.924412][   T30] audit: type=1400 audit(1722211496.480:3983): avc:  denied  { unlink } for  pid=82 comm="syslogd" name="messages.0" dev="tmpfs" ino=13 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  490.946648][   T30] audit: type=1400 audit(1722211496.480:3984): avc:  denied  { create } for  pid=82 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  490.947087][   T45] device veth1_macvtap left promiscuous mode
[  490.973204][   T45] device veth0_vlan left promiscuous mode