last executing test programs:

1m50.095068041s ago: executing program 2 (id=107):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x1101000000000000, &(0x7f0000000540)=@base={0x5, 0x80, 0x1a00, 0xf7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x50)

1m50.044890822s ago: executing program 2 (id=109):
r0 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x135, &(0x7f0000000000)=[{}]}, 0x10)

1m50.030457562s ago: executing program 2 (id=110):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
umount2(&(0x7f0000000180)='./file0\x00', 0xb)

1m49.929370294s ago: executing program 2 (id=111):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
umount2(&(0x7f0000000600)='./file0\x00', 0x0)

1m49.874322554s ago: executing program 2 (id=114):
r0 = syz_io_uring_setup(0x94f, &(0x7f00000016c0), &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x7, 0x464f, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x1815, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x231a, 0x0, 0x0, 0x0, 0x0)

1m49.741454416s ago: executing program 2 (id=117):
unshare(0x2000400)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0xfffffffffffffffd}, 0x0)
r0 = syz_io_uring_setup(0x95e, &(0x7f0000000440)={0x0, 0xd8e4, 0x80, 0x2}, &(0x7f0000000580)=<r1=>0x0, &(0x7f0000000380))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x11c3, 0xd48d, 0xf, 0x0, 0x0)

1m49.741348796s ago: executing program 32 (id=117):
unshare(0x2000400)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0xfffffffffffffffd}, 0x0)
r0 = syz_io_uring_setup(0x95e, &(0x7f0000000440)={0x0, 0xd8e4, 0x80, 0x2}, &(0x7f0000000580)=<r1=>0x0, &(0x7f0000000380))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x11c3, 0xd48d, 0xf, 0x0, 0x0)

1m19.999998103s ago: executing program 3 (id=934):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000540)=0x710, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000080)=0x200, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000080, &(0x7f0000000000)={0xa, 0x4e23, 0x4, @loopback, 0x401}, 0x1c)
recvmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3e}, 0x12120)

1m19.918830774s ago: executing program 3 (id=937):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000f1"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m19.768339926s ago: executing program 3 (id=943):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a00)={'syz1\x00', {0x6ec9, 0x7, 0x5, 0x5}, 0x3e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf5, 0x9, 0x39, 0x747d5a13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf252, 0x4, 0x800, 0x300000, 0x7, 0xe, 0x4623b, 0x0, 0x0, 0x1ff, 0x8000, 0x3ff, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0x1, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0x7, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x5, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x9, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x100, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0x0, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffffd, 0x101, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd4, 0x7, 0x20, 0x7, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x8, 0xffffffff, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x10, 0x80000001, 0x4, 0x4, 0x5, 0x9, 0x2, 0x5, 0x80, 0x9, 0x9, 0x47, 0x2, 0x3, 0x4, 0x7, 0x6d7e, 0x3, 0x8, 0x8001, 0xbf23, 0x6, 0x8, 0x95a, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x7, 0x4, 0xea, 0x9, 0x5, 0x6, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0x7fff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x4, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x1e0, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x2, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x8, 0x8a8, 0x2, 0x40, 0x7, 0x2, 0x4, 0x4, 0x10, 0x0, 0x0, 0x7fff, 0x2, 0xfffffff8, 0x401, 0x1, 0x200, 0x7, 0x4edf, 0xfffffffd, 0x7, 0xe, 0x2, 0xe, 0xf, 0x133, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
readv(r0, &(0x7f0000001900)=[{0x0, 0xea}], 0x1)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

1m19.616690829s ago: executing program 3 (id=949):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
chroot(&(0x7f0000000300)='./file0/file0\x00')
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m19.570988979s ago: executing program 3 (id=950):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x18)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)

1m19.431909642s ago: executing program 3 (id=953):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2000004c, &(0x7f0000000380)=ANY=[], 0xfe, 0x152b, &(0x7f0000003e00)="$eJzs3AuYjtX6MPB1r7Uehia9TXIY1r3uhzcNlkmSHJLkkCRJkuSUJGmSJCEx5JQ0JCHHSZPDEJJTY9I4nw85J022NEkSklNY38Wubfe1/+39/3bf3//ac/+ua12z7vd57/Xez9xzzbue571mvus2vE6zujWbEJH4t8BfvyQLIWKEEIOFENcIIQIhRMW4inEXj+dTkPzvvQj7cz2UfqUrYFcS9z934/7nbtz/3I37n7tx/3M37n/uxv3P3bj/jOVmW2YUvZZH7h18/z834/f//yA55SZ8ta7c9d3/Gync/9yN+5+7cf9zkeD3D3H/czfuf+7G/f/Pd+cfHOP+/4eK+deexv1nLDf7273gc977/wX3o//skfd3n3H8egv6ytf2v2Fc4R8/xhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGO5xGl/mRZC/Dq/0nUxxhhjjDHGGGPsz+PzXukKGGOMMcYYY4wx9v8fCCmU0CIQeUReESPyifziKhErrhYFxDUiIq4VceI6UVBcLwqJwqKIKCriRTFRXBiBwgoSoSghSoqouEGUEjeKBFFalBFlhRPlRKK4SZQXN4sK4hZRUdwqKonbRGVRRVQV1cTtorq4Q9QQd4qa4i5RS9QWdURdcbeoJ+4R9cW9ooG4TzQU94tG4gHRWDwomoiHRFPxsGgmHhHNxaOihWgpWonWos3/U/5Lopd4WfQWfUSy6Cv6iVdEfzFADBSDxGDxqhgiXhNDxesiRQwTw8UbYoR4U4wUb4lRYrQYI94WY8U4MV5MEBPFJJEq3hGTxbsiTbwnpoipYpqYLtLFDDFTvC9midlijvhAzBUfinlivlggFopF4iORIRaLTPGxWCI+EVliqVgmlosVYqVYJVaLNWKtWCfWiw1io9gkNost4lOxVWwT28UOsVPsErvFZ2KP+FzsFV+IbPHlfzP/1P+V3x0ECJAgQYOGPJAHYiAG8kN+iIVYKAAFIAIRiIM4KAgFoRAUgiJQBOIhHopDcUBAICAoASUgClEoBaUgARKgDJQBBw4SIRHKw81QASpARagIlaASVIYqUAWqQTWoDtWhBtSAmlATakEtqAN14G64G+6B+lAfGkADaAgNoRE0gsbQGJpAE2gKTaEZNIPm0BxaQAtoBa2gDbSBttAW2kE7aA/toQN0gI7QEZIgCTpBJ+gMnaELdIGu0BW6QTfoDj2gB7wEL8HL8DL0gVqyL/SDftAf+sNAGASD4FUYAq/Ba/A6pMAwGA5vwBvwJoyEkzAKRsMYGAPV5TgYDxOA5CRIhVSYDJMhDdJgCkyFqTAd0mEGzISZMAtmw2z4AObCh/AhzIf5sBAWwSLIgMWQCZmwBE5BFiyFZbAcVsBKWAGrYQ2shnWwHtbBRtgIm2EzfAqfwjbYBjtgB+yCXfAZfAafw+eQAtmQDftgH+yH/XAADkAO5MBBOAiH4BAchsNwBI7AUTgGx+EYnIATcBJOwWk4DWfhLJyDF+K/abqr9NoUIS/SUss8Mo+MkTEyv8wvY2WsLCALyIiMyDgZJwvKgrKQLCSLyCIyXsbL4rK4RImSZChLyBIyKqOylCwlE2SCLCPLSCedTJSJsrwsLyvICrKivFVWkrfJyrKKfMJVk9Vkddne1ZB3ypqypqwla8s6sq6sK+vJerK+rC8byAayoWwoG8kHZGPZFwbCQ/JiZ5rJYdBcDocWsqVsJVvLN+Ex2VaOhHbyCdlePilHwyjoKNu6JPmM7CTHQ2f5nJwAz8uuchJ0ky/K7rKH7Clfkr1kO9db9pFToK/sJ6dDfzlADpSD5CyoLS92rI58XabIYXK4fEMuhDflSPmWHCVHyzHybTlWjpPj5QQ5UU6SqfIdOVm+K9Pke3KKnCqnyekyXc6QM+X7cpacLefID+Rc+aGcJ+fLBXKhXCQ/khlyscyUH8sl8hOZJZfKZXK5XCFXylVytVwj18p1cr3cIDfKTXKz3CI/lVvlNrld7pA75S65W34m98jP5V75hcyWX8p98i9yv/xKHpBfyxz5jTwov5WH5HfysPxeHpE/yKPymDwuf5Qn5E/ypDwlT8sz8qz8WZ6T5+UF6aVQoKRSSqtA5VF5VYzKp/Krq1SsuloVUNeoiLpWxanrVEF1vSqkCqsiqqiKV8VUcWUUKqtIhaqEKqmi6gZVSt2oElRpVUaVVU6VU4nqJlVe3awqqFtURXWrqqRuU5VVFVVVVVO3q+rqDlVD3alqqrtULVVb1VF11d2qnrpH1Vf3qgbqPtVQ3a8aqQdUY/WgaqIeUk3Vw6qZekQ1V4+qFqqlaqVaqzbqMdVWPa7aBUII9aTqoJ5SHdXTKkk9ozqpZ1Vn9Zzqop5XXdULqpt6UXVXPVRPdV5dUF71Vn1Usuqr+qlXVH81QA1Ug9Rg9aoaol5TQ9XrKkUNU8PVG2qEelONVG+pUWq0GqPeVmPVODVeTVAT1SSVqt5Rk9W7Kk29p6aoqWqamq7S1Qw18JeV5vwL+e/+g/yhl159s9qiPlVb1Ta1Xe1QO9UutVvtVnvUHrVX7VXZKlvtU/vUfrVfHVAHVI7KUQfVQXVIHVKH1WF1RB1RR9UxdUb9qE6on9RJdUqdUmfUWXVWnfvleyA0aKmV1jrQeXReHaPz6fz6Kh2rr9YF9DU6oq/Vcfo6XVBfrwvpwrqILqrjdTFdXBuN2mrSoS6hS+qovkGX0jfqBF1al9FltdPldKK+6d/O/2f1tdFtdFvdVrfT7XR73V530B10R91RJ+kk3Ul30p11Z91Fd9FddVfdTXfT3XV33VP31L10L91b99bJOln306/o/nqAHqgH6cH6VT1ED9FD9VCdolP0cD1cj9Aj9Eg9Uo/So/QYPUaP1WP1eD1eT9QTdapO1ZP1ZJ2m0/QUPUVP09N0uk7XM/VMPUvP0nP0HD1Xz9Xz9Dy9QC/Qi/QinaEzdKbO1Ev0Ep2ll+qlerlerlfqlXq1Xq3X6rV6vV6vN+qNOktv0Vv0Vr1Vb9fb9U69U+/Wu/UevUfv1Xt1ts7W+/Q+vV/v1wf0AZ2jc/RBfVAf0of0YX1YH9FH9FF9VB/Xx/UJfUKf1Cf1aX1an9Vn9Tl9Tl/QFy5u+wIZyEAHOsgT5Aligpggf5A/iA1igwJBgSASRIK4IC4oGFwfFAoKB0WCokF8UCwoHpgAAxtQEAYlgpJBNLghKBXcGCQEpYMyQdnABeWCxOCmoHxwc1AhuCWoGNwaVApuCyoHVYKqQbXg9qB6cEdQI7gzqBncFdQKav/6OVRwT1A/uDdoENwXNAzuDxoFDwSNgweDJsFDQdPg4aBZ8EjQPHg0aBG0DFoFrYM2/+r6QZ2gbnB3UO8P1/f+ZOHHXW/TxySbvqafecX0NwPMQDPIDDavmiHmNTPUvG5SzDAz3LxhRpg3zUjzlhllRpsx5m0z1owz480EM9FMMqnmHTPZvGvSzHtmiplqppnpJt3MMDPN+2aWmW3mmA/MXPOhmWfmmwVmoVlkPjIZZrHJNB+bJeYTk2WWmmVmuVlhVppVZrVZY9aadWa92WA2mk1ms9liPjVbzTaz3ewwO80us9t8ZvaYz81e84XJNl+afeYvZr/5yhwwX5sc8405aL41h8x35rD53hwxP5ij5pg5bn40J8xP5qQ5ZU6bM+as+dmcM+fNBeMvbu4vvr2jRo15MA/GYAzmx/wYi7FYAAtgBCMYh3FYEAtiISyERbAIxmM8FsfieBEhYQksgVGMYikshQmYgGWwDDp0mIiJWB7LYwWsgBWxIlbCSlgZK2NVrIq34+14B96Bd+KdeBfehbWxNtbFulgP62F9rI8NsAE2xIbYCBthY2yMTbAJNsWm2AybYXNsji2wBbbCVtgG22BbbIvtsB22x/bYATtgR+yISZiEnbATdsbO2AW7YFfsit2wG3bH7tgTe2Iv7IW9z/TGZEzGftgP+2N/HIgDcTAOxiE4BIfiUEzBFByOw3EEjsCROBJH4Wgcg2/jWByH43ECTsRJmIqpOBknYxqm4RScgtNwGqZjOs7EmTgLZ+EcnINzcS7Ow3m4ABfgIlyEGZiBmZiJS3AJZmEWLsNluAJX4CpchWtwDa7DdbgBN+Am3IRbcAtuVVtxO27HnbgTd+Nu3IN7cC/uxWzMxn24D/fjfjyABzAHc/AgHsRDeAgP42E8gkfwKB7F43gcT+AJPIkn8TSexrP4M57D83gBPcZYKfLbq2ysvdoWsNfYGJvP/n1cxBa18baYLW6NLWQL/yZGa22CLW3L2LLW2XI20d70u7iyrWKr2mr2dlvd3mFr/C6uZ++x9e29toG9z9a1d/8mbmjvt43sI7axfdQ2sS1tU9vaNrOP2Ob2UdvCtrStbGvbwT5lO9qnbZJ9xnayz/4uzrCL7Rq71q6z6+0e+7k9bc/YQ/Y7e9b+bHvbPnawfdUOsa/ZofZ1m9Jg2G9jO8yOsW/bsXacHW8n2Il20u/iaXa6Tbcz7Ez7vp1lZ/8uXmQ/snNtpp1n59sFduGl+GJNmfZju8R+YrPsUrvMLrcr7Eq7yq7+W63L7Ua7yW62u+1ndqvdZrfbHXan3XUpvngee+0XNtt+aQ/ab+1++5U9YA/bHPvNpfji+R2239sj9gd71B6zx+2P9oT9yZ60py6d/8Vz/9Getxest4KAJCnSFFAeyksxlI/y01UUS1dTAbqGInQtxdF1VJCup0JUmIpQUYqnYlScDCFZIgqpBJWkKN1ApehGSqDSVIbKkqNylEg3UXm6mSrQLVSRbqVKdBtVpipUlarR7VSd7qAaWlBNuotqUW2qQ3XpbqpH91B9upca0H3UkO6nRvQANaYHqQk9RE3pYWpGj1BzepRaUEtqRa2pDT1GbelxakdPUHt6kjrQU9SRnqYkeoY60bPUmZ6jLvQ8daUXqBu9SN2pB/Wkl6gXvUy9qQ8lU1/qR69QfxpAA2kQDaZXaQi9RkPpdUqhYTSc3qAR9CaNpLdoFI2mMfQ2jaVxNJ4m0ESaRKn0Dk2mdymN3qMpNJWm0XRKpxk0k96nWTSb5tAHNJc+pHk0nxbQQlpEH1EGLaZM+piW0CeURUtpGS2nFbSSVtFqWkNraR2tpw20kTbRZtpCn9JW2kbbaQftpF20mz6jPfQ57aUvKJu+pH30F9pPX9EB+ppy6Bs6SN/SIfqODtP3dIR+oKN0jI7Tj3SCfqKTdIpO0xk6Sz/TOTpPF8iTCCGUoQp1GIR5wrxhTJgvzB9eFcaGV4cFwmvCSHhtGBdeFxYMrw8LhYXDImHRMD4sFhYPTYihDSkMwxJhyTAa3hCWCm8ME8LSYZmwbOjCcmFieFNYPrw5rBDeElYMbw0rhbeFlcMq4SP3VQtvD6uHd4Q1wjvDmuFdYa2wdlgnrBveHdYL7wnrh/eGDcL7wgrh/WGj8IGwcfhg2CR8KGwaPhw2Cx8Jm4ePhi3ClmGrsHXYJnwsbBs+HrYLnwjbh0+GHcKnwo7h02FS+EzYKXz2nx5PDvuG/cJXwldC7+9VC6ILo4uiH0UzooujmdGPo0uin0Szokujy6LLoyuiK6Oroquja6Jro+ui66Mbohujm6Kbo97XzSscOOmU0y5weVxeF+PyufzuKhfrrnYF3DUu4q51ce46V9Bd7wq5wq6IK+riXTFX3BmHzjpyoSvhSrqou8GVcje6BFfalXFlnXPlXKJr7dq4Nq6te9y1c0+49u5J96R7yj3lnnZPu2dcJ/es6+yec13c866re8G94F503V0P19O95Hq5l11v18clu2TXz/Vz/V1/N9ANzPPLHswNdUNdiktxw91wN8KNcCPdSDfKjXJj3Bg31o114914N9FNdKku1U12k12aS3NT3BQ3zU1z6S7dzXQz3Sw3y81xc9zchLlunpvnFrgFbpFb5DJchst0mW6JW+KyXJZb5pa5FW6FW+VWuTVujVvn1rkNboPb5Da5LW6L2+q2uu1uu9vpdrrdbrfb4/a4vW6vy3bZbp/b5/a7/e6A+9rluG/cQfetO+S+c4fd9+6I+8EddcfccfejO+F+cifdKXfanXFn3c/unDvvLjjvUiPvRCZH3o2kRd6LTIlMjUyLTI+kR2ZEZkbej8yKzI7MiXwQmRv5MDIvMj+yIBIjhPgokhFZHMmMfBxZEvkkkhVZGlkWWR5ZEVkZ8b7Y1tCX8CV91N/gS/kbfYIv7cv4st75cj7R3+TL+5t9BX+Lr+hv9ZX8bb6yr+Kr+kd9C9/St/KtfRv/mG/rH/ft/BO+vX/Sd/BP+Y7+aZ/kn/Gd/LO+s3/Od/HP+67+Bd/Nv+i7+x6+p3/J9/Iv+96+j0/2fX0//4rv7wf4gX6QH+xf9UP8a36of92n+GF+uH/Dj/Bv+pH+LT/Kj/Zj/Nt+rB/nx/sJfqKf5FP9O35yvnd9mn/PT/FT/TQ/3af7GX6mf9/P8rP9HP+Bn+s/9PP8fL/AL/SL/Ec+wy/2mf5jv8R/4rP8Ur/ML/cr/Eq/yq/2a/xav86v9xv8Rr/Jb/Zb/Kd+q9/mt/sdfqff5Xf7z/we/7nf67/w2f5Lv8//xe/3X/kD/muf47/xB/23/pD/zh/23/sj/gd/1B/zx/2P/oT/yZ/0p/xpf8af9T/7c/68v8B/s8YYY4wx9i9JO/DHx/v+g8fkL+OifkKIq7cVzfn741oIsaHQX+cDZHyHiBDimT7dHvp11KqVnJz8y3OzlAhKzhdCRC7nX7oM+SVeKtqLp0SSeEKU/4f1DZA9ztIfrA9HvY/eKkT+v8u5uI//Nb68/s3/xfqPPTkmo1J4Ou6365/7Zb95sf7ofCESSl7OyScux5fXr/BfrF+47R/Vn6VEvq9ShWj3dzmx4nJ8ef1E8bh4ViT95pmMMcYYY4wxxthfDZBVu/yT689L1+fx+lJ46eG84m/xP70+Z4wxxhhjjDHG2JX3fI+eTz+WlPREF57whCc8+dvkSv9mYowxxhhjjP3ZLm/6r3QljDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcZY7vU/8e/ErvQ5MsYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY1fa/wkAAP//jKQ7JQ==")
chdir(&(0x7f0000004340)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x189800, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x147005, 0x4e)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="5db7afa0", 0x4}], 0x1)

1m19.390381962s ago: executing program 33 (id=953):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2000004c, &(0x7f0000000380)=ANY=[], 0xfe, 0x152b, &(0x7f0000003e00)="$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")
chdir(&(0x7f0000004340)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x189800, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x147005, 0x4e)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="5db7afa0", 0x4}], 0x1)

1m6.331821693s ago: executing program 4 (id=1252):
r0 = socket(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000940)=@delchain={0x24, 0x28}, 0x24}}, 0x54)

1m6.313276473s ago: executing program 4 (id=1253):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)

1m6.189361515s ago: executing program 4 (id=1255):
r0 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = timerfd_create(0x0, 0x0)
readv(r1, &(0x7f0000000380)=[{&(0x7f0000000d00)=""/161, 0xa1}], 0x1)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, 0x0, 0x18}, 0x0)

1m6.021891837s ago: executing program 4 (id=1257):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000300)={[{@auto_da_alloc_val}, {@test_dummy_encryption_v1}, {@init_itable_val={'init_itable', 0x3d, 0x5c}}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x45c, &(0x7f00000003c0)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
mount$incfs(&(0x7f0000000140)='./bus\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

1m5.799653981s ago: executing program 4 (id=1262):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8e7}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002a000000180100002025642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000089cdc832850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r2, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000600)="b90f04000044e8b8b89914f00800e9fdd6a0463e596b4269340bd084dc1ab7ed78e2", 0x0, 0x2005, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m5.579983214s ago: executing program 4 (id=1270):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='tmpfs\x00', 0x0, &(0x7f0000000240)='nolazytime')

1m5.546439035s ago: executing program 34 (id=1270):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='tmpfs\x00', 0x0, &(0x7f0000000240)='nolazytime')

1m4.346952973s ago: executing program 5 (id=1305):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000b00)={0x84, &(0x7f00000003c0)={0x20, 0x15, 0x4, "5030fa4d"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)

1m2.171163956s ago: executing program 5 (id=1371):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000300)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
close(r1)

1m2.155440327s ago: executing program 5 (id=1373):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000a00)='fib_table_lookup\x00', r2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1m2.113643517s ago: executing program 5 (id=1375):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000300)={[{@auto_da_alloc_val}, {@test_dummy_encryption_v1}, {@init_itable_val={'init_itable', 0x3d, 0x5c}}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x45c, &(0x7f00000003c0)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0))
mount$incfs(&(0x7f0000000140)='./bus\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

1m1.987151789s ago: executing program 5 (id=1381):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x3, 0xb, &(0x7f0000001440)=ANY=[], 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r1, 0x40085503, &(0x7f00000000c0)={{r1}, "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"})

1m1.819017452s ago: executing program 5 (id=1387):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)

1m1.791272892s ago: executing program 35 (id=1387):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)

8.45159151s ago: executing program 6 (id=2843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1200000017000000040000000100000000000000", @ANYRES32, @ANYBLOB="00000000000000b627930c481814dd0000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
fchmod(r2, 0x50)

8.425129841s ago: executing program 6 (id=2844):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x400c0)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000ce34000000000000000000850000002f00000095"], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000280)=r1, 0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000a40)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "189035", 0x0, 0x2c, 0xff, @remote, @local}}}}, 0x0)

8.411096221s ago: executing program 6 (id=2845):
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$incfs(&(0x7f00000007c0)='./bus\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xdc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
renameat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00')

8.397749661s ago: executing program 6 (id=2846):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000340)={[{@nodiscard}, {@dioread_lock}, {@data_err_ignore}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@resuid}, {@norecovery}]}, 0x1, 0x458, &(0x7f0000000680)="$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")
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000680)='./file0/../file0/../file0/../file0\x00', 0x0, 0x1b73404, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0/../file0/../file0/../file0\x00')

8.320061553s ago: executing program 6 (id=2847):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="020000000000000034000000000000007000000000000000450300"])
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x29d})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040))

8.233377994s ago: executing program 6 (id=2848):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="7000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000480012800e000100697036677265746170000000340002801400060020010000000000000000000000000002060002000c00000014000700fc00000000000000000000000000000108000a0009"], 0x70}}, 0x0)

8.214477314s ago: executing program 36 (id=2848):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="7000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000480012800e000100697036677265746170000000340002801400060020010000000000000000000000000002060002000c00000014000700fc00000000000000000000000000000108000a0009"], 0x70}}, 0x0)

3.92728389s ago: executing program 1 (id=2945):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r0, 0x5)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r1, 0x1)
flock(r1, 0x2)
dup3(r1, r0, 0x0)

3.871987461s ago: executing program 1 (id=2948):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0x408cd, 0x0)
write$binfmt_elf64(r3, 0x0, 0xfffffe3e)

1.97435051s ago: executing program 1 (id=2962):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
close(r0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)

1.616027685s ago: executing program 1 (id=2969):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001980)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
clock_adjtime(0x0, &(0x7f0000000680)={0x19b1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x10000, 0xe5, 0x0, 0x200, 0x0, 0x1, 0x0, 0x0, 0xffff, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58c, 0xf4b})
r1 = socket(0x18, 0x1, 0x1)
getsockopt$inet_int(r1, 0x111, 0x32, 0x0, &(0x7f0000000380))

1.531657337s ago: executing program 1 (id=2972):
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x601c2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0xdd860600, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0xec, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0xb}, [@IFLA_AF_SPEC={0xcc, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0xb0, 0x2, 0x0, 0x1, {0x9, 0x1, 0x0, 0x1, [{0xc}, {0x8}, {0x1b}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x9, 0xd}, {0x8, 0x0, 0x0, 0x0, 0x38}]}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE]}, @AF_MPLS={0x4}]}]}, 0xec}}, 0x0)

1.480942118s ago: executing program 1 (id=2973):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$TCFLSH(r1, 0x400455c8, 0x4)
ioctl$sock_bt_hci(r0, 0x400448de, &(0x7f0000000180))

733.387249ms ago: executing program 9 (id=2994):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000300)=""/104, 0x68)

629.61557ms ago: executing program 9 (id=2998):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f00000000c0)}], 0x2}, 0x400c080)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x4001}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308)

577.548382ms ago: executing program 9 (id=3000):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
utimensat(r2, 0x0, &(0x7f0000000580)={{0x0, 0x3ffffffe}, {0x77359400}}, 0x0)

507.888652ms ago: executing program 9 (id=3002):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r1 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

507.544483ms ago: executing program 7 (id=3003):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x74, 0x24, 0xd0f, 0x70bd26, 0x25dfdbfb, {0x60, 0x0, 0x0, r2, {0x0, 0x7}, {0xffff, 0xffff}, {0x6, 0x5}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x44, 0x2, {{0x2, 0x2, 0x1, 0x3, 0x3, 0x8}, [@TCA_NETEM_CORR={0x10, 0x1, {0xa, 0x2, 0x2}}, @TCA_NETEM_LOSS={0x4}, @TCA_NETEM_RATE={0x14, 0x6, {0x8, 0x0, 0x16dd, 0x2}}]}}}]}, 0x74}}, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

507.271243ms ago: executing program 7 (id=3004):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
getitimer(0x1, &(0x7f0000000200))

505.496072ms ago: executing program 8 (id=3005):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x12, r2, 0x4d809000)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140)=0x3)

496.353363ms ago: executing program 7 (id=3006):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001500)={0x34, r2, 0x1, 0x4000, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0xa000000}]}, 0x34}}, 0x0)

450.396093ms ago: executing program 7 (id=3007):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000010000000000000001"])
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000280)={0x14, 0x4, 0x3})

414.399944ms ago: executing program 8 (id=3009):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x166)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='proc\x00', 0x10000, 0x0)
r0 = inotify_init1(0x800)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x1000004)
getdents64(r1, &(0x7f0000000640)=""/178, 0xb2)

352.495395ms ago: executing program 0 (id=3011):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='attr\x00')
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
getdents64(r0, &(0x7f0000000000)=""/32, 0x20)
getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002)
unlinkat(0xffffffffffffffff, 0x0, 0x200)

352.060115ms ago: executing program 8 (id=3012):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000140)="66470fe0fa670f01dfc46288f3ccc422b8f5ce410f23f566ba2000b077ee470f0178fa440f79c00f80ef0500000f20e035000200000f22e0", 0x38}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000240)={{0x1, 0x0, 0xfffffffffffffca1, {0xdddd0000, 0x5000}}, "cdb372b4dfe02964a59572ecc37526989e90f15cc175ae8c93ae45591f356c6884a1eb49a1ccc74c2260aded1979bfd746a27408d1220c39493a1d3b65f5306464393183b3b654e5237f83855fde05bc36e88baa2c07c6acd1e5d8c2b3736f1ec8fb98c1b5c20bae0c02c146f4182375c277e8647f577021416f8ba515ffa35cddd261d521df3e841a9179cda39879511c2e9ab06778ce9ffa6f2c9370d7af33bc74d16360a42aa2ced6433463ef4bbed671371e8eba18f2aa973f65ff1b5b35c7c67638ba4aaa64a717f556fe32f70ab1f227b75eaace9c63811a4abc99987e6c8964cfac90a0ca3384510dc63e3e3935540ce749bfa6a8785ee00fe862262ce28ff980e350a64be310b5f576ccfb5a2ba166b324b4bbe9f23030a79f16f20258d077d87f7b1e5b8ca402ce6e51b3236729fde5e6f96d7a94c8db3cc00fdab35e2544ebb424632bb9d82cbfb21146bfeb80e5f5e26ed89a6c521920b5c02cd9cf8063e1ef18919946124f64f749f5c2e3d603af2b7a2d2d24acb6ebe5f47b988dc51e690d9aea44fece3a353bae1b80dcae49c8cb6443978623b0ec80cd0feb0a134a51fdd2b1912a45c6ca41414273268c676bbef4ab3e2f7ac5e061d6dcf0041af2cc971a27b616444ae913033933ed4b1d89b9e9edc86ee12d5917695796906d4822fb3a931df763e3a8e8893ae4749765bdbae4377ce47fb5e26890cb5178c03dd0df248bf35caf84f3cea3d778086065dbb0cd51ea04f28dd6ce80820fda0ffa3f33d38adb2d68d41db8ab27d4cad8b7abb026827738fb9c59d043199cd27c2bdf9711acb36926c730e216de7ad2de0326676916586ec8325f4b13735e34c4d60bd27e2fde3edc95dc59cb69c1dc25569da425488b6b6e9a63b17964ce1fa57bf2c7508ed199cf64a5cbc23b01cdf08b1ad4337f1b0aa02a6c137fb90e32fd7e204966170aa80fca868a45d496be7758c47f83760208793eb1600b6ebf4d1d2dcaa2b741f1c0b9f8844b9e68ec7f7123083c6926a1e95fe9b75f16064f213f69f8f1a97b66961279a6aa3498f146f7e517c2f5a9c0b0673b93dca4fe0c48d53c8f5f89bb7ab0476e00a13e020370077a55c28abccb585bcbdf29966a4db1c3ab0f3f58e54640032484e08072aac638b9c9dc9655a525e9016d9b24358ba477695875e3abd484ff3adb92069825841c3bd1870f708cc25288ee5cc4a6d7fab62eaa724a7acb4ee5952db977b4da11597891f5c5af6086ddf387deb19ce0995ba175f830c94b5adac04d8618a262b3059fe96d5b18690e5adf3e592ae77fed8214ef468d0cacdbbdb1712cff009e03146b57bab5b8302a5ed0f75f59c63877ad8fea5ec596c667ffc2337343e1726e79985bf7c663f8dca6ae731dd96486568d0c0e4c3a3860d7250e04373cc55018eda3ac9077cd2c5317df8992b548e34344ca97a9ed3b6f8bf1a97e060231657706c9e8ce8f03805b111d4bf1a559f4cf0822a20cd9ce06b56c5f051317e187d76a303af82d2053286d5d3cee381602170f5bb4036fb34c080992e9f7d509aa230935233dac608f533ae2a26c5e5710e6c2ed1bf61303cc3c47465791333dae385f91de77c3357fbedbbb64ae3b868ee90b98ab647fa0dcc85bfbab33058667b95106519c7ba80246f73391919fb575dedfe436fb190e828fd58ac25537a4ba5ef0a97c595ce67a740d1cfd84a05d3462d9203dd6ea94f60dc03a29c3c81aa25dce4b330fa7500234016373add8120018ea6b5fac8597fcc8404c793658db3277e2a7e042cb56420002922183f14af74d970dec12a781763c1d9d69cf664b065a9b09491b1ff043e9c9a2098975c17e82a5d06b9f1081c43a539669e95991d866f3105e0b327ab8659e23bf1b196603c7406221e47494b765a114077187295dfafc261ea9ad3064b3449c6e8ef5e2517f609995adf82710d6c23a83e06f61c8186017afa6b2de5b28082770edfc81ee72e46fd1365d0a7583e3609ce420e54cc7a2d57542b924c6c5c9c896d068912adf22a97b3547502d0181d2c69729c539921ab16c466ba6d1d518c3e787fb0e9f708c9a1bc6d428355f0a3bd574397a6f8eda6a1503854a1bd4004719db60a9b3fefe434464d9f2aaddf44ee98c503ac606b7d4d8bac4efa557a77fa5a31ed8c8b48cd1ee6e4e7731ffb273bf21838f4e0cb8eec8a2cbd8acd40c15fcc3959ec3b4ea86680fb1e65743acfc164c6ae830f81a00c83102085d6ae8c7b4424ee0e86673015d98449252de73a25bfbe1697ff06aecf299b2a0e7ce452ba6bcba6b6da2c494cf0ce51cbb555cc2a371bf5a595748486825b0798221f40d2c29396431d13a03248874b893c7880d3b87cf845858a31f68fe57b032e3e0204fd4fb23fd5b2357d8e4f6052dd058b3bf6cd913b4341446e62895d6a367e4233e25ef3aabfb7f35a7804938e3181b6f551ac4a947ff016a12dffb53e7101b6ee911fac7637b2786cf95a4611376d0ac7b1e61c763040550e0c00ddb39a11086e08941c518a5ebedcff2c9477f7be26ad4dc48d837b85d082b4a54c8ec3f1caff75f7fb8f1282df6c5b336c2e56c0f35d9c5dd38fc91001e950f5fb41b58a620a9ee5e6b001a637aad4ec9ffd09eb762fd0d1d8058ca0e544329ee8693547095264c46d9b716e156ff991b28dc056caefb0d08c0c509ab0eafeffc280684f8654b18323eddff28b4e778a674b4d5b85df786bb12ca24e1980e56032d1d32eb472954eed24b99bbc404dc920e16d4f8e792d6fe581efa82420085155ab9716dc642b44e2a9215cdaaf3df4fa5ad66a26804ad87b7520c132fdb595ea560eb408b5d519cb31c2c6ed2a16fe971d7ca71b7530af7478f06509cc988b96b27dd3e667ce4b08ca685ae818527103addba74d71d094e7a58325658343b989a1d973fc9f1cfebe848c35279cfff728928f77af2243020ee46cc9242fa4afe5197e6b42811396f9136fbd545826e020a910fa790acf9292472b7ee3b34723d6f56781d5c061be6e535e49bfcc292a1208645c730b6aadc94e56f05c6f8ca71c7fde81b687190accb75b08f131d61d6536cb3810eb2b6006336f700f1e6ea8104de9c9c6c9f4566a3783d253e3153e9550b91d547430bbe6dc2b586ad5eb67c7add5b009fa44c416bfbe28e524ee6a2d0b016331037010fa882db5d35cfa359d1c7a173cf913e11b8888d0f37b75011f26ce9f97b132dd6f50cbf4bd7d1f9201c55b7ebc08c4e2df4a3b35d2980bf8ee63b8091fed356f764c0bbcc95a91afeb4a2c1deb3fc0c44fa76d768fed87d737bb3380794e4b67932e7492e6558ca53599a446664031ef83e6a6d5362d89eac11c767932f477201d2953b4bb6058f4a3baca2968719edbf41ca5da5be2efeb9bceb38e2f1394ff41d9e93ecc746175b8e5fa2f5bf903663cebc1266ca7a2f8c57340c1ef42e4fc8a85d76ce24237d16f1ac13d32bfd1121017e9a72ad3fb0e952a296ff9a79bdc5be6d8691696720d97daa7c27fb9489e47584c00c854779de5980490afbacad0d0774a7f13e424b0ea955a87b7e296a40eca7ab8f45ae76170da77fff6b554c50dcdc6a261e8ebb7d2f24583023d001ff218ec7844fb4640736f04e9f7d968aa74bef26f65eae961a4857a946d3b221818a798d65bf74f8c0ac1b4529e36183c49606890643573722d467f4c464e68069955e561ccfd4423c2a240cfbb96efb668844ba0a1ceb910ad4ef06cd0f13f7ffa85744bdd0dd16ca27f62179b3916868187421b6d9f9c698d6542a02d4c124373ce0f10cbbc6b9a18385d99519f06a24aa9a4f5560157880233ee8352f2e9de0ffa333bb50932587a70153a37f25263693b86dd6a61f7d1f40cac0f205b65fa2faa3098254fb084160c271addea6711ecae589870450b941db419bb27c8b597982b704ba0ea0189e7b5cd6b72e3529cd77e4a79c752f2f7af6aa43ec9eb0bbefc91a02a85871771189c1f9a0742e8e6fc2d71575e20631dee592f0ed44c9d8f6a22e7d7844445066ca5e8bb97dd5c2ca0365d7c33563ceca884e8e14ba21733c4d2415c1be9369298fbd616fd792bd767555aa2deec8f45e92e10fcc88079cf0093ca2e38adc797845548005a0660b5cbf6423d966ebdccb6ce9d5d476bfd562dff0dd1f8e576d424c3a571e860e5665861a133bc8eb3d9838e9a88f18edb12dfec18a488ad1177ca22f6f763beee9c1e0dd61344997dbbc6de56800f15d2b04a4d83a0b79adb12c54aa7c418d8fd0c96b5797a003b8313d14093fdadd4b530233dd1176e86090e0cc5401d6f98529de8bb6094b8e2f02b53f562a4c115655dc2619811d8caade655b767a5d4fac6c10784bf5bb06e9f535fd1304f383e39bbc5ce58a5f2f9deb9af1d6df6b491fbcbb9053f9bc73da0ae2e815ae72aff41c71ab7adc71074dfa6906724f18b74a344f7911994ee8ee843fd991de053dd9fae152d02b4fe0818c6313aee7df2f32009221f6c2d0ef9b53b7c2e795d64dcae34e5fab88e6b112b935fa836c6868f72077c57a42a940d3c0a667f3d0b674a3de2aa8c3443748c3a5ac949f72ed49220a9cbf0896794f58e12b74a1d7c7bbf8bec7d8aa055855c34a6c25d6fddd22a73725ca3daf8e357b8173508be65d329a4b97820cdb1c7a98d222a839b4da2a33ac687ab4004f5e1d90be7dad53a50ab4d6bc04135e0a9f31af27dc75eae3b9e7fd7459455a4cdd7faf94c5fe701d66d2006719b9acb72db3c89ca61bddea7c0be7ec769ec1cbfae11a77f36a59966f042e5dd32ece56932b083f0cb68c92194c6a4ca0267186b5f3ebaa25f63b6a1b60a2a5c78b9b5b488962b2ce4854b51ab2bc001231b6be3fcdc5563b0950165da87745e387c1205ba818287a8cebfaae10ff461c2933d775c6cddaa936d1907e29b5b4e1ef0a000aafab5363dd692560a291a71f06552647144cac4884a8ae8f2dade616384eeafa54f84737d1613beb945faaa4a396ee2e2a3a094187b5edba42358e931789bfeaf4620bada8aa6d6c8800d1b19548a308b8310a0b51c8ccc7db60aa2a04fd8b21769a32eded238f93f476b69a6548a8a17aee1d0c4476db41e4eba24d9351d3f98fac043f423ffead379b6cbfb05aaf705ff0dca6e5f6ba36d00d1bc98714a92c8ac1e7cbf441521c98e2b913dd7a5d8595e0479537029de96e2991652243fe3093594720a0538b1687711bf0bc46a1453ebe60c5d33bd798b66f19e69c90e55c2b68b62d1a759a3519630798dd4434fa658b013e28fe9befca82abc1f89a3b246f2fd44df84f88dab2792fc67b3ef2ef8eef84e441e2a7ff5a83e3784a5636a7d4775f5b3063d8e190bfcedcd8083d864d0cbb2fcca7af05cee2be552d89c801e760348dadf01ee4dbb9fb09d5b6c993ab9ac9ff7d5e1e104ab3a894f6cc9067ad64c5a97d3e12efd17820b3c07e4ce302a20fd4c5b5de8752bc4e609fbe9e6cebe713f309229883790ab6dffc22864f7b02fd9026a07299f8cf1e799acdd448428199165abf20eee23988cfcad773c7bc483f941f994c07f255e6cd72e7198f34bcbcbd801abb84e6e383d7bf6e217ee0281f4691beba5d17ef8bd59d7474540dda647ca3bdb8e280a2e6b7a7688bc677a25b2186b1e59e637737366733d75f02a597b7cabb18e75a1722d2327f4f2f101955ca88636ae97d5740ba61d7867c5141becd39f7fc5abb5b96142e0995046c2ab369ac46c18159d5a3569df964e69e7686471ac756bf0515fee78904fe8fcec2096b5f3e00", "8f9bea13d6c1793efefda669a3bfc1a1f2d2afea1c14a5b35aac4a522cce409cb88f5802ab78a0dc4ad9e13501a073e6fc60f1778eecc8a6f5299ba9f7dcdab9079dc269bb0d7bb287afa53a930cfb99ca80b3c23dd58d7a4d8ceadf2787fc4f8c638dcd55f8e962ef362db8ae2d407ea8f04c151b89947d52c901335b5ca070883017289368b02ae4676286906bf2f984ae3b2f4ce4d345ea814a725ef388f09b6b6dcc519515885e6e5062d9cd7e801d8a14b1c5b86c404a3bcfb968a48710eb7c451630b0e3895739f51e1379f25a9848fd01021cc53ab10691091090b2cad44133a51465c16c2257cdde467cdae5616e809ad2f3ca71a0b4ae46b5b62142b1d6f782c4286dbea20f02bae71821c1c956172806c55069c3e33f8811a31a44856a1d0521c3e81c12b6dcae2b0e5f006a9468614031c6ad977aa589e4076f55a5528d7b408fd429da83d78bc7dbb794b4117379334fb9167b872d0459a457ae425f768052a583f23ff60a29f11659756f40240b1939fb8b72c3fbe3963680fdcc09900ab387757c9146d223ccdfd5aa26682d39aee3e4b327748d02f82964c117fd480804952654de00db09934cd5c1786b35453f18515ec8f28ee9aee0bfd367eafdfccb54ed29fd08bbea75ed8b6a93c23cb337ae900ba89dcbb3d87191e1e56de67175572aa09f2eaa4fc1f31055b08ce99c30dadc63c743de7fc3e5e0511c98d6b37132f66f09577f6a5f9d113865830876d2f33887136d976525d195790184b7eeaf82169128911c37856b5e75db9999269b252f12d07c62236fac6835a3c13261c527d03d33df946ddfa40c85548ddb9179cf5d963246e215fa0f76472f9f24493aad8db71422f1d1c31a454980f2499294f858de9e8a4937f832b21104c843d084ba15466453f9fd830a1d7d5dbe801ef67c2d6ba52cefcaffa798dd47e9d1e94729956b62ccaf200ff3c32e41cabf86de920f74e1c9e00391909b622505388a3d297b4095f5aa3c17ef5e68c4b3ff18855fd13ff2fe3b1746155d149baaead01ce8d975730b235b1fca6a158f219d3256489d1421e9a008434ae4acc01e583a3145633bd217a6b74d4165fddc31499b6bde7341aad811e80ee6aefdb5aa993926b57d90c0098babdf172c2ec2fe85ba0b75bdc898ba9a2dc7383533b70f3eae8c5c91526a9d5aa99f4a91c9a4235b05558f9871f1e2254a2300e7bd5b4c0fa0bae78e00a53400ca2d1bd03f9d47c82a0e8a17519b53ab0274dd5fcab49ef76a567c156b947b38744657321da66d2983024a67adc00adcde04f35fc2cfeb39c0adcaa508ee7cb8b7a6b73b4deeba620538003f11f390d108c466a2058db84b122b62844f6aebf2d119ea050ba34a1152c439b4ee0491d9417398ec2b7154bdb39ffadb6385c52108f61cc0847cc8e499b3009b00ea000d1c84848c8213d82aa2c87d9c7b15fdf23454190b5c18f563985383a42c2d600155970c15cde8da2d14ef5908704966c286d59a5141bff15ed1e8b7c1252d8cbd641c70f8129ca870fa1235155cf642095b20d88de5c0a0ac6e8969c05996481d1e8e7f9cae627ad6cd374bffa2c8714c84e735384c4064c2e194f26ea16d3d99259cc394d2c4553578ad251c3fe2b88b316dd3533b644ec59390868fe5e7f79fa721ae8dd5ded8ceefaad3879b8c5577bb831079b44fab7db38f0b61d74ed192b2c61cfe6bed13049db2c6b85434e46194230ab022f7d74be00a844023d9b423eb03ccfc0ad3e61b950cd9801941fd8e5d4b90154ae9f173b42fcd658190758f21af8ff9086d4eb12bc3496bfecd99211c1048b3ce4dd23a0934d7f17d45f50084c4ef7c31625080a1c1cec43922d89d1945f675d980e8f2b374c198fb6e857d099c33aeececaac17ab9c12c343051e7dd2f8786883339dbc643af493745974a4da505844e0419dbddb4eca492713d006a5ff47d78dfac1642acab8caa7bda595b6b9532edf6da9ee99711822fabf8e8783dc8f156d1490f40ed6aedb4f97ce55269a2070b4aa3fc51ef22d9fa8342a03ef1b27831f83ade237f4344797eb29f9bbc6aced4005f4b379a1e0b060b4f9cbfce975b9bb2b53e1228c91753a7dfe6d67282d565c1ef42a15c1ff0d49f1128694336eaa277fd691de0748740241edb9250ab53e53523b2217fd4d554fe482c35d8ebdce8c2d053ea2b035a5e8f9ea2e683b24e418698e48b6bb8275c6938c61a6fcafb1f7c73a344db76bdc8cafb1a10b13121e62e3d9b92ad50241ec0908d73255cb72ab5d144757a55c116343e6e6c61bb0999615ddca343e02a5e3438cc9f66b1619c4467b12e615918d2f27392977775c165530dc0059bb41bd6103e612ef5bcd7f2df54ab86a05836b0bb685c05e935da8dfe4144217603c6e4f703d8062af788c7acf61285baaf7c7043a0602fbe8d61daabcf07156f7ee60debca3787d1f4b60f39c341df2908bf7944a5753883626920f1e82eeb374409fa0b331053a9c6bd3ab48682d228ec04d7cb3eb94917d00bc97b46ec14f1681013969cda5ea2c95fa390b3d6422ce0ac242690fbf352d757c9fbc66d06b0e4578e43f032c5f033d54618d178ef0fabdb00108d23cae66bd4ce059709b01e5b8ffec5595865a1c77c0bd8a1f2cb5f13d2b49450b23d021f64247966fd07bee6538fb0565b7eb41489566bc066107a345d705335bc918fe2e3c4edc50872fd25933aaa908cd78eec4e414d46c035c734af8a5b8d47fe62a4a9c49da0cf6547cc8d6702a2468c8d6fbe0ec7d90888d0bf3a0c7c42507d0baf458ce087d4c7725f42edad430abf233b064186c111b4c1fc2861e74426a31d04e2ade9d7acd8f0ac376b712d1eb20175b93b6900291b5625f90276f0857af6b0d108ddb0d772f501e687196c7caafc90010403596a6b5735e28ec6363896c8719e6002dcea716038e7b773c250c98aae730a7f39d995d0c737ff6e29c7a548c69896355b73d50eff7f7a1238f66601d10e4ccc6fb5e924a59bb41da1eba811f5acb22e8bc3719f3568d0fdc0868b29df0727f5cd50290a1845e22d523cde3002560fef504bd2c9a291c7a81a4f2b5b8a015f379009e3e8baed5d35c4a03e09afd37d7fe9d86e86eb53701ae8016d5a19ce5e96e11549ba09e3c2a6700ea84796091f6ca47d4c68fb1e6f4448e1b76140db8134e5d2399f49731c60f5f6c101955d4c31275df3d4ce3207e8dc03b87cae229f1f1d09f0064ef7b0727f787efef0369222717129287a9b3a455e6aadd40b6fdaea3d43cd59febe098b7f80d72343bb147a20b22b5de8fbd32bf4ce64f3ad2510dad9c243327e7c706b06004d1cb82e9cc113d74bb9cb820e360c9a8992b884a65234b93250f7ff8e7271983c6505cdf0524b5a8e60f8b3d86281a903ee62d3010d62a788d360182c1106486ee1673f5b7da5194afe4ee53697305907f64140283f78b9b3b78d2a420586bbac1f72b4388258a0e7c1cc26048cbf3e47c593e9d3300e98931801efc3bdd0ed74e0d3b4f881c66b71a401d9719a1231394ffd04b35bb3c5dcc5ee18696e8327ef9f0f7d8ee218662ec6e747d5c009ba9462d0fba519be8f5f951a5bc077a6eaca928536f35e5929863357cc025fb80c5806d3b7a9f2645e1f6d3239bf763e9ff16fe6bf30d6139f2a117fa1db0d6d2c6aaecf1cacc1b28b24587c9bfd48e52f37651cc97c35d3dc3834b7f973213d0edefdf42a239da89bf1b735767f9e38119de3fd24dbdb34c38068888dc8ff11d19b1950772e283903ce51b1c13e86d58b283dc8f8a3c9456115b19a0561f3aa9c7eca553c4e5bfc20b5da4b32e607a57c2577ab2a65cedb2dd754a2363b37b138ea37e2e3546eea289da7475850e393e7331416bcf4ec75f0c6e654df1fc513e0dcc52ba57e9a128d148cf42d35fb9c7168c959e1ed6e4811fba1662c22194101a6d8787e037a35888117c854a2ef8f685076771ab5aefc8135cfa4c2a25680c6566e0fd19eee7cc86ece140efb6fab4200eabc09d834239abf5f48b46ea51797ee393693270da94c3e73859c01d1042e2eff0b1c4ed41ea560f38b8483d94b9dace687bbe8993fc4e2872b686bf299bb0dce34874d940fd2c36b5270aedd09e5e5a952d70f191e011c7e269219477fe8f5ded564f14fda6461b64d84ec32543a7ed663d8d27d8b8893942e0b7167f3f7b936f8f1fe623248d9815c5969f3a22f0fdefb527d9a870d7ece5430a9adcfee9eef05d235a0c87989965b20bad18c96d696e817c95693fec426ff81f1250e81c244058722243cb3e2df722ac46554a368a90a81206628fcc889cca832a8d4ed20188db0005b1b1c494e3dcce0622dd72ee35f4b4ac447909937bf67807344f5a629230752645aee6c70a885a80ea0e491fdef70648bfa0060ad78b122f2cc0637feb6c5754073d71326bb5a5c0b8c9890fffab1360d647d3a7b4e4bfb29c3162f311d7a1a41c3c5f739542ec723fff2c1e086dd79b1f22f3ff5a512e7ec7dfa54cc6883ae22b949139b1f029f8674ea97c5fb8125a3dafebddd524acdd1618c9f9b9fdf0ea659c4bd4b8da12cae75d1f5ae611b8fa7fd23ff0ff7dcf8a10540120d03d72db15d0775075c1c30ba7e6a07ee6633fa6fa396ca3a5799a7905db5d49e8e8ce00eb7a9af5f2c60749bc28c4b188054e21f44f28d2d1258326ae27a1b14d4704ffb93ff506bbf07e0e4e1bf2502fce11eeb83b9c491a68db0744a61ec449f5338c0b40d77ed16de2d935320bbd2cea2a164f26e7b619ddd81448009adeadfdcdead9df5a1c6da9aca64f373dfaf7cb940aac9f5eedb7a5d49eb74dc0e0819b05f328e9a4ddf3ef0a27cf01a853e02bc69970a32930c48509d726600dc7ee95e119d4cb28f87aa13b7ff846c338b5f9090586ff7bd983721d4a4b5a2e9a3e1495644483bf14861d524196f0d73265688794d6b3b4ce8b3f994c56a82a02a35aeaf9f79c08f5280a6ba0187eae965e412f14cb379869c997564b0a37349dc535882d5d4054d18bf44cbfccbdb8b377708096c974b3dde6a9dc767937bc3430a7fb614671e73ea867b4cd499f2581766510ad70811cda49b69b5afd380ae2ad43281e6640d4f20b2615f3c0b20f7d45c69a9cbbe7933776e07043b141664c059f1c6de17d44eed8b6242d6e8e8b3b86cff4306a9657e6d6f0c429f52138c6c5f7d155bc713432ca75bbf77c3a2c06e546474a7c327d10c46be64e6729643a9455420c48677a23c92f05e3e56f7fecbee4dea0b9eac600739cd068305bb6aea50d5d1042f821e78f2942d603c46a1e4541756bac183b640935dffe8309e3e90a170ca3d126375a0177b1d94b72b622607af60a2cfb9b63464689237fcdbb752e89335aa96c615a59e39fcd89a3a39445e78fb5dd491e29f638c162c886a762b16850863305496ca80974c3d39892a255f9a26b438662e6bc67e1d5115acff5bee940368df7e182ac1cc24331adb6e155ecfa1257d2f47a6b959f2bcf2dfbf86613c7761746ed85fd7e2a3c7c8602ee5143b100bd0a5026146becd255004fd8728bcfad605fad03e754ff1245e7716884e7e6898158ca4e9ba58cf09d8afe65fc18c2529b43a14e7eb7451b8072d68124be7b9133301d840191435de4704e2dda8ccfa87013f733aa10431faf7e46be7a391809af91e5e98d63c80a13c4b4fbb95b44ae5540f62f43036daef02b5dd404c0b08d46fa66fbdf0b4ed839494aa4c85194dac555e4061481c6717a3306700"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

334.735285ms ago: executing program 0 (id=3013):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x9, 0x5}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}}, 0x0)

334.209165ms ago: executing program 7 (id=3014):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0xdd, 0xa, 0x80, 0xffffffffffffffff, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000004c0)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)='%pi6   \x00'}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000100)='GPL\x00', 0x4}, 0x94)

237.633706ms ago: executing program 9 (id=3015):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000340)=[{&(0x7f0000002000)="f838b39ffa3563660f9814b4227413e01fae8c141a89fc121c5f52b430714dbfc5ba621390d85264f9f52ca984710f2881e3212a01c3034108a0c02d4e919f4ee18f640d365b63ac188f41180848d0d665f4579b93862a15f7b4b028f4cde79106a7d282246ac8139032e3c2b4b18924f0edb1a8bd986355a2cbad0104572adf7a986e927e0db561b8f711c7e23bbc1a5623b3704c55b2692a59ccb07d2a2de3321a476d3603ede9dbf268e67a43b491d980dbaa47e4e23c1f84379261076492f0a46598b1c2913db95ece9a9707d220f22aa438f29329ffef4cd6ebfd65ef97015949009f057d45c159173d7cb724e10037930e6674b18b607ef8d9a31fffa75579b4946adda7aaef92c894dea722960f333e0091f1f5119cfa9b4bef09d038545b640136210c93c329ed414e9dd66d3fe95ccca9ad614a1a97ca69c24fbeba68b23b2e00f86112e449979f4c982d2979740ff35eab13b861a6fb82c4cc90cf90275bf3029088558f16ca95d0056f0896131b4d62a85b6e3934bc9cef4824ca26d4a3042eb245243cc85a3c0fd1a477f4d22e55df0552f741d66995b0aac6115b7b9a455cd63d72ccd475eaaffd61bd680c9f3c622ca346afd8d8fc0097b61ad9ab12334f087a67c7db8010f7c096ac58b249dc453e705e6b70b9716f2b25be92b1eb2ea4059a580075ebeb08638351a23d7b00a8c28b989904e77edb5ac8824d97efec33916d5b90b359072a96490a2debe5f1b32fc52376a9168bd5407e6ca04ea62810ed78d584756600c738c189cd84c53ba8c86ba3340486e57e79c5068ca821e5e5622a977810e7536fe2d1bfe4125ffbdd0ad9f9b83266cd64570926612d130929c2112250755a1df6d8adb07d1d3b757cfea3a4b5e1cbfb061ec435c3f827ac25b40c556365dd410eff71a6ad47ffa5c832f44dc5fcf6a8cdae20850759df64b043b16a8782ee71de81812b06b2162dcc87eb34277dfd6ab7978e67653a8ec3a72a403478929a8cad89bba6088b54cfcbb25d1c3274dc8568229f1145c645c7e9fa9f28567d379bad2b467ce245223784576ec5b1cc2568153646b56ceaabb10396ab678b01ea61c28feba102284136d015cd8ce0c745ba0e8e2839ae928396b3446d7f824443ae92a8607196458799bc39ed67215a616366b7cfc2e216846441260d2dfd4c42039ca35bc53e1fb7885996ee8a1570e98a726e8a263898a6c9d885b4c88b81c6457587ed1959a02da5fb1ed3ae1decc14927c610010ce21f7297899167cea2231a99dc8b031e20c4d05987ff27ec2ecf9f90ccbad959e976ff9d2945d8975c9c4241fbd89af9164d3d0fc3fb12108304b33d6f50115362a518be54dd7b4bf213cd6f27a0257b8087f16b03997a68342f8ad5d253e27bab8f838211d79ae58cb0eb560c9994e3731c25cc3bf2e0ffbf13e746733da1f77c8b7f0ec2c93a9a27b7d56577f4aec10c270ddea7dc5b3f64feebf979aac54d155b903e4a7c946860d83d7aa53b80ecf86ec8d524a3d9ef3bb6b3d9b867f32282742b9e5792eddc0d466ac6e90971005d172d27cdbfa731e4cb1e5d6426a85d2d0bea19c7f27e3e6f781420bb79b7111e8959f99ea92b72a10c9c86f4f38e6700c93d9274f4572483ec8982e84fde86d11dc73a032cc66b5488a2945ee317ac4005aa33831e7737d3813e82618b9eecb8e454097622fd0bfd2a00994a223ac70d1f76ff21e64c886ba1fb8cea1fce2f8fd7221762f8925d17ee19eb345c631ea22cada57858fddf46753d894778012a7a5058b5765f9c96db357e9a7791a1edc2d7cd687ea67a63ed30f269c89f44530eaa5707faf6f1b897916e6df4df59e950d0ce371fdb54eedaf1ac74b51fb250a1e527439c67ae0945e5405f1ab6804732bf58c3744df95727d763de1f354a3945b9f8830c1c44ba02755ca10c9f765cab0f1bc3d3344aa91c468ead490629d19e64dcffe653d246832987a348f4284a95b53d9e661d2b6fb6509f45e7658ad3ef9985777fdc16b285e7534051ab31f50b365fee48302a13ae5824", 0x5ac}], 0x1, 0xa)
close(r1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x4e24, @remote}, 0x10)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)

222.441487ms ago: executing program 7 (id=3016):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000000)=0x8, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000900)="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", 0xffffff5d, 0x12, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

192.236237ms ago: executing program 9 (id=3017):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
close(r0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)

192.095987ms ago: executing program 0 (id=3018):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x18, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
clock_settime(0x0, &(0x7f0000000140)={0x77359400})

191.571417ms ago: executing program 8 (id=3019):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
setitimer(0x0, 0x0, 0x0)

131.995938ms ago: executing program 0 (id=3020):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000280), &(0x7f0000000000)=""/3, 0x2}, 0x20)
close(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000400008500000001000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='signal_generate\x00', r1}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

131.789858ms ago: executing program 8 (id=3021):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c460d04000c028000000000000003003e"], 0x78)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x100)

117.754868ms ago: executing program 8 (id=3022):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x0, "741cb976"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000480)={0x2c, 0x0, &(0x7f00000004c0)={0x0, 0x3, 0x100, @string={0x100, 0x3, "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"}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f00000009c0)={0x2c, 0x0, &(0x7f0000000380)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

109.323238ms ago: executing program 0 (id=3023):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r2, &(0x7f0000000000)={0x1d, r1}, 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {0xb, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x8041}, 0x40044)

0s ago: executing program 0 (id=3024):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
sendmsg$inet(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000013c0)="d080", 0x2}], 0x1}, 0x20000801)
recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x40002002)

kernel console output (not intermixed with test programs):

] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   70.138444][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.145521][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.154513][  T200] device bridge_slave_1 left promiscuous mode
[   70.160709][  T200] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.175495][  T200] device bridge_slave_0 left promiscuous mode
[   70.187013][  T200] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.197126][  T200] device veth1_macvtap left promiscuous mode
[   70.203344][  T200] device veth0_vlan left promiscuous mode
[   70.372584][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.380686][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.407467][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   70.418713][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   70.430871][ T3376] device veth0_vlan entered promiscuous mode
[   70.440479][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   70.451571][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   70.460411][ T3437] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1300'.
[   70.470260][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   70.478429][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   70.494135][ T3376] device veth1_macvtap entered promiscuous mode
[   70.528740][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   70.537895][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   70.546557][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   70.556414][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   70.571104][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   70.582140][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   70.590610][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   70.605116][ T3441] device pim6reg1 entered promiscuous mode
[   70.863701][ T3475] loop6: detected capacity change from 0 to 128
[   70.920465][  T741] dm9601 2-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[   70.921853][  T312] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[   70.940167][  T741] dm9601 2-1:0.0 eth1: register 'dm9601' at usb-dummy_hcd.1-1, Davicom DM96xx USB 10/100 Ethernet, 6e:00:00:00:00:00
[   70.954242][  T741] usb 2-1: USB disconnect, device number 12
[   70.960599][  T741] dm9601 2-1:0.0 eth1: unregister 'dm9601' usb-dummy_hcd.1-1, Davicom DM96xx USB 10/100 Ethernet
[   71.121750][  T312] usb 6-1: Using ep0 maxpacket: 32
[   71.138170][  T312] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[   71.146594][  T312] usb 6-1: config 0 has no interface number 0
[   71.159053][ T3483] loop6: detected capacity change from 0 to 40427
[   71.167886][  T312] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   71.182302][  T312] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.191276][  T312] usb 6-1: Product: syz
[   71.195557][ T3483] F2FS-fs (loop6): invalid crc value
[   71.205348][ T3483] F2FS-fs (loop6): Found nat_bits in checkpoint
[   71.211738][  T312] usb 6-1: Manufacturer: syz
[   71.216353][  T312] usb 6-1: SerialNumber: syz
[   71.232561][  T312] usb 6-1: config 0 descriptor??
[   71.249100][  T312] smsc95xx v2.0.0
[   71.272036][ T3483] F2FS-fs (loop6): Start checkpoint disabled!
[   71.279006][ T3483] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[   71.354130][ T3504] SELinux: ebitmap: map size 6 does not match my size 64 (high bit was 0)
[   71.364527][ T3504] SELinux: failed to load policy
[   71.412402][ T3497] loop0: detected capacity change from 0 to 40427
[   71.414603][ T3483] F2FS-fs (loop6): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[   71.452673][ T3509] loop7: detected capacity change from 0 to 512
[   71.453920][ T3497] F2FS-fs (loop0): invalid crc value
[   71.493721][   T10] kworker/u4:1: attempt to access beyond end of device
[   71.493721][   T10] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   71.498858][ T3509] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   71.517128][ T3509] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.537454][ T3497] F2FS-fs (loop0): Found nat_bits in checkpoint
[   71.583807][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   71.604371][ T3497] F2FS-fs (loop0): Start checkpoint disabled!
[   71.641632][ T3497] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   71.641707][  T312] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[   71.641735][  T312] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   71.790823][ T3497] F2FS-fs (loop0): ino:10, start:4, end:8196, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[   71.892004][   T10] kworker/u4:1: attempt to access beyond end of device
[   71.892004][   T10] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   71.962787][ T3538] bpf setsockopt: ignoring program buffer with optlen=65520 (max_optlen=4096)
[   72.293848][  T312] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000104: -71
[   72.304908][ T3563] loop7: detected capacity change from 0 to 8192
[   72.306698][  T312] smsc95xx: probe of 6-1:0.67 failed with error -71
[   72.319578][  T312] usb 6-1: USB disconnect, device number 10
[   72.326588][ T3563] FAT-fs (loop7): bogus number of directory entries (9)
[   72.335607][ T3563] FAT-fs (loop7): Can't find a valid FAT filesystem
[   72.420905][ T3563] capability: warning: `syz.7.1351' uses 32-bit capabilities (legacy support in use)
[   72.441033][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[   72.769383][ T3600] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   72.902596][ T3619] loop5: detected capacity change from 0 to 512
[   72.914736][ T3619] EXT4-fs (loop5): Test dummy encryption mode enabled
[   72.923174][ T3619] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   72.933265][ T3622] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1378'.
[   72.935446][ T3619] EXT4-fs (loop5): 1 truncate cleaned up
[   72.944746][ T3622] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[   72.948290][ T3619] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[   72.957843][ T3622] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[   73.009901][  T576] EXT4-fs error (device loop5): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[   73.094392][ T3632] loop0: detected capacity change from 0 to 512
[   73.156653][  T576] EXT4-fs (loop5): unmounting filesystem.
[   73.313669][ T3647] loop7: detected capacity change from 0 to 1024
[   73.329188][ T3643] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.336645][ T3643] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.344565][ T3647] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[   73.345983][ T3643] device bridge_slave_0 entered promiscuous mode
[   73.367359][ T3643] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.374763][ T3643] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.375547][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   73.388823][ T3643] device bridge_slave_1 entered promiscuous mode
[   73.411796][  T725] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[   73.437612][ T3656] kvm [3655]: vcpu1, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc0010002 data 0x18
[   73.486645][ T3643] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.494374][ T3643] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.501711][ T3643] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.508757][ T3643] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.546530][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   73.572368][  T200] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.579824][  T200] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.591838][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   73.603708][  T200] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.610776][  T200] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.616640][  T725] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.631179][  T725] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.631363][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   73.641348][  T725] usb 1-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[   73.650325][  T200] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.664155][  T725] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.665386][  T200] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.674339][  T725] usb 1-1: config 0 descriptor??
[   73.698015][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   73.698081][ T3673] hub 9-0:1.0: USB hub found
[   73.710733][ T3673] hub 9-0:1.0: 1 port detected
[   73.719773][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   73.758236][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   73.783158][ T3643] device veth0_vlan entered promiscuous mode
[   73.792622][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   73.801272][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   73.809076][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   73.835346][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   73.844909][   T10] device bridge_slave_1 left promiscuous mode
[   73.851065][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.860390][   T10] device bridge_slave_0 left promiscuous mode
[   73.867298][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.878941][   T10] device veth1_macvtap left promiscuous mode
[   73.885697][   T10] device veth0_vlan left promiscuous mode
[   74.017066][ T3643] device veth1_macvtap entered promiscuous mode
[   74.027677][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   74.038047][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   74.054397][   T28] kauditd_printk_skb: 116 callbacks suppressed
[   74.054411][   T28] audit: type=1400 audit(1752754646.071:1047): avc:  denied  { mounton } for  pid=3643 comm="syz-executor" path="/root/syzkaller.FcIhZA/syz-tmp" dev="sda1" ino=2053 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   74.086434][   T28] audit: type=1400 audit(1752754646.101:1048): avc:  denied  { mount } for  pid=3643 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   74.110214][  T725] arvo 0003:1E7D:30D4.0015: unknown main item tag 0x0
[   74.112228][   T28] audit: type=1400 audit(1752754646.101:1049): avc:  denied  { mount } for  pid=3643 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   74.117427][  T725] arvo 0003:1E7D:30D4.0015: item fetching failed at offset 5/7
[   74.151751][  T725] arvo 0003:1E7D:30D4.0015: parse failed
[   74.157548][  T725] arvo: probe of 0003:1E7D:30D4.0015 failed with error -22
[   74.166842][   T28] audit: type=1400 audit(1752754646.101:1050): avc:  denied  { mounton } for  pid=3643 comm="syz-executor" path="/root/syzkaller.FcIhZA/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   74.193955][   T28] audit: type=1400 audit(1752754646.101:1051): avc:  denied  { mounton } for  pid=3643 comm="syz-executor" path="/root/syzkaller.FcIhZA/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=32371 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   74.226879][   T28] audit: type=1400 audit(1752754646.131:1052): avc:  denied  { mounton } for  pid=3643 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   74.249990][   T28] audit: type=1400 audit(1752754646.131:1053): avc:  denied  { mounton } for  pid=3643 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   74.274525][   T28] audit: type=1400 audit(1752754646.131:1054): avc:  denied  { mount } for  pid=3643 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   74.300876][ T3696] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1410'.
[   74.326296][  T725] usb 1-1: USB disconnect, device number 10
[   74.332730][   T28] audit: type=1400 audit(1752754646.341:1055): avc:  denied  { read } for  pid=3693 comm="syz.8.1388" name="loop-control" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   74.357214][   T28] audit: type=1400 audit(1752754646.341:1056): avc:  denied  { open } for  pid=3693 comm="syz.8.1388" path="/dev/loop-control" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   74.511917][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[   74.518007][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   74.545722][ T3714] loop6: detected capacity change from 0 to 2048
[   74.559967][ T3716] loop1: detected capacity change from 0 to 512
[   74.580197][ T3714] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[   74.589232][ T3720] tmpfs: Unknown parameter ''
[   74.603750][ T3716] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802e028, mo2=0082]
[   74.613347][ T3716] System zones: 0-2, 18-18, 34-35
[   74.619308][ T3716] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.1421: bad orphan inode 11862016
[   74.619584][ T2583] EXT4-fs (loop6): unmounting filesystem.
[   74.631037][ T3716] EXT4-fs (loop1): Remounting filesystem read-only
[   74.642564][ T3716] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   74.651961][ T3716] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.715480][  T284] EXT4-fs (loop1): unmounting filesystem.
[   74.767177][ T3736] loop6: detected capacity change from 0 to 8192
[   74.786577][ T3744] input: syz1 as /devices/virtual/input/input19
[   74.812824][ T3736]  loop6: p2 p3 p4[EZD]
[   74.821524][ T3736] loop6: p3 start 360447 is beyond EOD, truncated
[   74.835172][ T3736] loop6: p4 size 262912 extends beyond EOD, truncated
[   74.863625][ T3753] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1435'.
[   74.888474][ T3755] loop6: detected capacity change from 0 to 512
[   74.896904][ T1250] udevd[1250]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[   74.899676][ T1248] udevd[1248]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[   74.935494][ T3755] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[   74.972870][ T2583] EXT4-fs (loop6): unmounting filesystem.
[   75.006332][ T3767] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1441'.
[   75.211763][  T725] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   75.391840][  T725] usb 9-1: Using ep0 maxpacket: 16
[   75.403907][  T725] usb 9-1: config 1 has an invalid interface number: 105 but max is 0
[   75.412234][  T725] usb 9-1: config 1 has no interface number 0
[   75.413377][ T3812] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   75.418326][  T725] usb 9-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   75.428291][ T3812] SELinux: failed to load policy
[   75.438720][  T725] usb 9-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   75.453053][  T725] usb 9-1: config 1 interface 105 has no altsetting 0
[   75.465280][   T24] usb 1-1: new low-speed USB device number 11 using dummy_hcd
[   75.465750][  T725] usb 9-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[   75.482278][  T725] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.490397][  T725] usb 9-1: Product: syz
[   75.494908][  T725] usb 9-1: Manufacturer: syz
[   75.499539][  T725] usb 9-1: SerialNumber: syz
[   75.508815][ T3762] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[   75.516810][ T3762] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[   75.519499][ T3814] SELinux: failed to load policy
[   75.652771][   T24] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   75.668461][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.677839][   T24] usb 1-1: config 0 descriptor??
[   75.833296][ T3834] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   75.849080][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[   75.861075][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.870234][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[   75.870853][ T3822] loop1: detected capacity change from 0 to 512
[   75.880803][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.894412][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.902749][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   75.911013][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   75.919489][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   75.921423][ T3822] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   75.936540][ T3762] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[   75.937998][ T3822] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.944128][ T3762] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[   75.989878][  T284] EXT4-fs (loop1): unmounting filesystem.
[   76.037165][ T3842] loop1: detected capacity change from 0 to 512
[   76.054334][ T3844] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1475'.
[   76.060019][ T3842] EXT4-fs (loop1): orphan cleanup on readonly fs
[   76.071132][ T3842] EXT4-fs error (device loop1): ext4_acquire_dquot:6801: comm syz.1.1474: Failed to acquire dquot type 1
[   76.086089][ T3842] EXT4-fs (loop1): 1 truncate cleaned up
[   76.092801][ T3842] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   76.119791][ T3842] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   76.129695][ T3842] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 8
[   76.147546][  T284] EXT4-fs (loop1): unmounting filesystem.
[   76.377786][  T725] aqc111 9-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32
[   76.419571][ T3873] netlink: 'syz.1.1488': attribute type 2 has an invalid length.
[   76.427586][ T3873] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1488'.
[   76.466078][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[   76.589726][  T725] aqc111 9-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[   76.602261][  T725] aqc111 9-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.8-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 12:ab:a7:af:df:1f
[   76.617150][  T725] usb 9-1: USB disconnect, device number 2
[   76.623434][  T725] aqc111 9-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.8-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[   76.662378][  T725] aqc111 9-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   76.672626][  T725] aqc111 9-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[   76.682069][  T725] aqc111 9-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[   76.895878][   T24] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[   76.906611][   T24] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[   76.917216][   T24] asix: probe of 1-1:0.0 failed with error -71
[   76.926204][   T24] usb 1-1: USB disconnect, device number 11
[   77.064136][ T3920] TCP: TCP_TX_DELAY enabled
[   77.164250][ T3938] loop7: detected capacity change from 0 to 512
[   77.191149][ T3938] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[   77.244989][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   77.269921][ T3950] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1511'.
[   77.282947][ T3950] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1511'.
[   77.294196][ T3950] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1511'.
[   77.368494][ T3962] netlink: 'syz.7.1517': attribute type 12 has an invalid length.
[   77.377936][ T3962] netlink: 'syz.7.1517': attribute type 29 has an invalid length.
[   77.386159][ T3962] netlink: 148 bytes leftover after parsing attributes in process `syz.7.1517'.
[   77.395592][ T3962] netlink: 'syz.7.1517': attribute type 1 has an invalid length.
[   77.424385][ T3969] binder: 3966:3969 ioctl 4018620d 0 returned -22
[   77.431765][ T3969] binder: 3966:3969 ioctl c018620c 0 returned -14
[   77.703139][ T3971] loop7: detected capacity change from 0 to 512
[   77.762881][ T3971] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   77.777461][ T3971] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.811716][  T287] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[   77.820096][ T4001] incfs: Options parsing error. -22
[   77.829593][ T4001] incfs: mount failed -22
[   77.864662][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   78.002940][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.013983][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.024216][  T287] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[   78.033869][  T287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.054948][  T287] usb 1-1: config 0 descriptor??
[   78.103634][ T4015] loop7: detected capacity change from 0 to 40427
[   78.110588][ T4019] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   78.128834][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[   78.129618][ T4015] F2FS-fs (loop7): invalid crc value
[   78.142592][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.153867][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[   78.157731][ T4015] F2FS-fs (loop7): Found nat_bits in checkpoint
[   78.162432][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.176897][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.185207][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.193786][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.202743][  T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.205937][ T4015] F2FS-fs (loop7): Start checkpoint disabled!
[   78.219738][ T4015] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[   78.298656][   T43] kworker/u4:2: attempt to access beyond end of device
[   78.298656][   T43] loop7: rw=1, sector=45096, nr_sectors = 8 limit=40427
[   78.317732][   T43] kworker/u4:2: attempt to access beyond end of device
[   78.317732][   T43] loop7: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[   78.385690][ T4038] loop8: detected capacity change from 0 to 512
[   78.431752][ T4038] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.1551: casefold flag without casefold feature
[   78.452832][ T4038] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.1551: couldn't read orphan inode 15 (err -117)
[   78.468720][  T287] uclogic 0003:5543:0522.0016: No inputs registered, leaving
[   78.482257][  T287] uclogic 0003:5543:0522.0016: hidraw0: USB HID v0.00 Device [HID 5543:0522] on usb-dummy_hcd.0-1/input0
[   78.501183][ T4038] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[   78.511720][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[   78.517764][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   78.594046][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   78.611137][ T4055] __nla_validate_parse: 2 callbacks suppressed
[   78.611155][ T4055] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1558'.
[   78.655719][ T4061] loop8: detected capacity change from 0 to 256
[   78.677360][ T4061] FAT-fs (loop8): bogus number of FAT sectors
[   78.684331][  T287] usb 1-1: USB disconnect, device number 12
[   78.699182][ T4061] FAT-fs (loop8): Can't find a valid FAT filesystem
[   78.730664][ T4073] loop1: detected capacity change from 0 to 256
[   78.762853][ T4073] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   78.774166][ T4077] loop7: detected capacity change from 0 to 1024
[   78.821824][ T4077] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[   78.832749][ T4077] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.848085][ T4077] EXT4-fs error (device loop7): ext4_map_blocks:745: inode #15: block 1: comm syz.7.1567: lblock 1 mapped to illegal pblock 1 (length 1)
[   78.863074][ T4077] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 117
[   78.875584][ T4077] EXT4-fs (loop7): This should not happen!! Data will be lost
[   78.875584][ T4077] 
[   78.887838][ T4077] EXT4-fs error (device loop7): ext4_map_blocks:745: inode #15: block 3: comm syz.7.1567: lblock 3 mapped to illegal pblock 3 (length 5)
[   78.902324][ T4077] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 5 with error 117
[   78.916032][ T4077] EXT4-fs (loop7): This should not happen!! Data will be lost
[   78.916032][ T4077] 
[   78.936858][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   79.015357][ T4092] loop6: detected capacity change from 0 to 1024
[   79.065320][   T28] kauditd_printk_skb: 85 callbacks suppressed
[   79.065354][   T28] audit: type=1400 audit(1752754651.081:1140): avc:  denied  { read write } for  pid=4100 comm="syz.8.1577" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   79.096390][   T28] audit: type=1400 audit(1752754651.091:1141): avc:  denied  { open } for  pid=4100 comm="syz.8.1577" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   79.121071][   T28] audit: type=1400 audit(1752754651.111:1142): avc:  denied  { unmount } for  pid=2583 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   79.132918][ T4104] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem
[   79.147951][ T4105] loop7: detected capacity change from 0 to 1024
[   79.158734][ T4105] EXT4-fs: Ignoring removed orlov option
[   79.167313][   T28] audit: type=1400 audit(1752754651.181:1143): avc:  denied  { read } for  pid=4106 comm="syz.6.1579" path="socket:[33512]" dev="sockfs" ino=33512 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   79.193936][ T4105] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   79.216084][   T28] audit: type=1400 audit(1752754651.231:1144): avc:  denied  { setattr } for  pid=4103 comm="syz.7.1578" name="file1" dev="loop7" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   79.268561][   T28] audit: type=1326 audit(1752754651.281:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4116 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[   79.306624][   T28] audit: type=1326 audit(1752754651.281:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4116 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[   79.330598][   T28] audit: type=1326 audit(1752754651.281:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4116 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[   79.354381][   T28] audit: type=1326 audit(1752754651.281:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4116 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[   79.379553][   T28] audit: type=1326 audit(1752754651.281:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4116 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[   79.763411][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   79.844705][ T4159] SELinux:  policydb version 0 does not match my version range 15-33
[   79.852899][ T4159] SELinux: failed to load policy
[   79.935368][ T4164] kvm: MONITOR instruction emulated as NOP!
[   80.051724][   T24] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   80.232819][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.244612][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.254545][   T24] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[   80.264238][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.276710][   T24] usb 2-1: config 0 descriptor??
[   80.685271][   T24] hid-steam 0003:28DE:1142.0017: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0
[   80.697489][   T24] hid-steam 0003:28DE:1142.0018: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0
[   80.746819][ T4198] loop7: detected capacity change from 0 to 512
[   80.755137][ T4198] EXT4-fs error (device loop7): ext4_orphan_get:1400: inode #15: comm syz.7.1619: casefold flag without casefold feature
[   80.768271][ T4198] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.1619: couldn't read orphan inode 15 (err -117)
[   80.780492][   T24] hid-steam 0003:28DE:1142.0017: Steam wireless receiver connected
[   80.780551][ T4198] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   80.834961][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   80.840467][ T4202] 9pnet: p9_errstr2errno: server reported unknown error ť@í΂Í(0x0000000000000005
[   80.891962][  T725] usb 2-1: USB disconnect, device number 13
[   80.903983][  T725] hid-steam 0003:28DE:1142.0017: Steam wireless receiver disconnected
[   81.049822][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[   81.057899][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   81.183412][ T4252] SELinux:  Context  is not valid (left unmapped).
[   81.325004][ T4275] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1655'.
[   81.334979][ T4275] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1655'.
[   81.344936][ T4275] netlink: 2 bytes leftover after parsing attributes in process `syz.6.1655'.
[   81.379103][ T4282] loop6: detected capacity change from 0 to 2048
[   81.405608][ T4282]  loop6: p1 < > p3
[   81.423350][ T4282] loop6: p3 size 134217728 extends beyond EOD, truncated
[   81.448289][ T4288] loop8: detected capacity change from 0 to 128
[   81.468593][ T4288] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[   81.481165][ T4288] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   81.552655][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   81.622701][ T4303] loop8: detected capacity change from 0 to 256
[   81.659747][ T4303] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   81.783092][ T4320] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1674'.
[   81.806262][ T4320] netem: change failed
[   82.062417][ T4322] loop7: detected capacity change from 0 to 40427
[   82.069617][ T4349] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1688'.
[   82.074849][ T4322] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[   82.098898][ T4322] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[   82.117525][ T4326] loop8: detected capacity change from 0 to 40427
[   82.136523][ T4322] F2FS-fs (loop7): invalid crc value
[   82.145143][ T4326] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[   82.153828][ T4326] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[   82.164020][ T4326] F2FS-fs (loop8): invalid crc value
[   82.172683][ T4322] F2FS-fs (loop7): Found nat_bits in checkpoint
[   82.186044][ T4359] netlink: 'syz.1.1691': attribute type 4 has an invalid length.
[   82.203763][ T4326] F2FS-fs (loop8): Found nat_bits in checkpoint
[   82.261597][ T4322] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[   82.271587][ T4322] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[   82.302229][ T4326] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[   82.309310][ T4326] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[   82.320297][ T4322] syz.7.1676: attempt to access beyond end of device
[   82.320297][ T4322] loop7: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[   82.384982][ T4376] loop6: detected capacity change from 0 to 512
[   82.436771][ T4376] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[   82.453247][    T8] kworker/u4:0: attempt to access beyond end of device
[   82.453247][    T8] loop7: rw=1, sector=77824, nr_sectors = 8 limit=40427
[   82.467361][ T4376] ext4 filesystem being mounted at /174/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.490697][ T3376] syz-executor: attempt to access beyond end of device
[   82.490697][ T3376] loop7: rw=2051, sector=77832, nr_sectors = 56 limit=40427
[   82.519395][ T4376] EXT4-fs error (device loop6): ext4_do_update_inode:5255: inode #4: comm syz.6.1698: corrupted inode contents
[   82.551777][ T3376] F2FS-fs (loop7): Issue discard(9729, 9729, 7) failed, ret: -5
[   82.621773][ T4376] EXT4-fs error (device loop6): ext4_dirty_inode:6120: inode #4: comm syz.6.1698: mark_inode_dirty error
[   82.715192][ T4376] EXT4-fs error (device loop6): ext4_do_update_inode:5255: inode #4: comm syz.6.1698: corrupted inode contents
[   82.738085][ T4376] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #4: comm syz.6.1698: mark_inode_dirty error
[   82.758224][ T4376] EXT4-fs error (device loop6): ext4_acquire_dquot:6801: comm syz.6.1698: Failed to acquire dquot type 1
[   82.805575][ T4398] loop7: detected capacity change from 0 to 128
[   82.821441][ T2583] EXT4-fs (loop6): unmounting filesystem.
[   82.845666][ T4398] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[   82.897781][ T4407] bridge: RTM_NEWNEIGH with invalid ether address
[   82.948872][ T4409] loop1: detected capacity change from 0 to 16
[   82.955760][ T4398] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   83.014474][ T4409] erofs: (device loop1): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 125300)
[   83.029051][ T4398] fscrypt (loop7, inode 12): Unsupported encryption flags (0x08)
[   83.073384][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   83.131515][ T4425] loop1: detected capacity change from 0 to 512
[   83.161476][ T4425] EXT4-fs: Ignoring removed nobh option
[   83.177959][ T4425] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   83.204728][ T4425] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.235492][ T4425] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c018, mo2=0002]
[   83.251953][ T4425] System zones: 1-2, 4-12, 8-8
[   83.264608][ T4425] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1717: invalid indirect mapped block 256 (level 2)
[   83.330835][ T4441] loop8: detected capacity change from 0 to 1024
[   83.354094][ T4425] EXT4-fs (loop1): 2 truncates cleaned up
[   83.359927][ T4425] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   83.407672][ T4441] EXT4-fs: Ignoring removed orlov option
[   83.438341][ T4447] loop6: detected capacity change from 0 to 16
[   83.445714][ T4441] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[   83.457630][ T4447] erofs: (device loop6): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 125300)
[   83.496785][ T4452] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.1717: bg 0: block 5: invalid block bitmap
[   83.514635][ T4452] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   83.528637][ T1250] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   83.552363][ T4452] EXT4-fs (loop1): This should not happen!! Data will be lost
[   83.552363][ T4452] 
[   83.591872][ T4452] EXT4-fs (loop1): Total free blocks count 0
[   83.608068][ T4452] EXT4-fs (loop1): Free/Dirty block details
[   83.618156][ T4452] EXT4-fs (loop1): free_blocks=0
[   83.638341][ T4452] EXT4-fs (loop1): dirty_blocks=2304
[   83.651778][ T4452] EXT4-fs (loop1): Block reservation details
[   83.668597][ T4452] EXT4-fs (loop1): i_reserved_data_blocks=2304
[   83.721977][   T43] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 252 with error 28
[   83.742518][ T4454] loop7: detected capacity change from 0 to 40427
[   83.762381][ T4454] F2FS-fs (loop7): invalid crc value
[   83.783854][ T4454] F2FS-fs (loop7): Found nat_bits in checkpoint
[   83.861436][ T4454] F2FS-fs (loop7): Start checkpoint disabled!
[   83.872589][ T4454] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[   84.007109][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   84.058927][   T43] kworker/u4:2: attempt to access beyond end of device
[   84.058927][   T43] loop7: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[   84.198943][ T4473] incfs: Options parsing error. -22
[   84.205774][ T4475] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1739'.
[   84.221788][ T4473] incfs: mount failed -22
[   84.231815][ T4475] netem: change failed
[   84.358521][   T28] kauditd_printk_skb: 43 callbacks suppressed
[   84.358534][   T28] audit: type=1400 audit(1752754656.371:1190): avc:  denied  { read write } for  pid=4488 comm="syz.7.1745" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   84.391773][   T28] audit: type=1400 audit(1752754656.401:1191): avc:  denied  { open } for  pid=4488 comm="syz.7.1745" path="/dev/snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   84.581724][ T1362] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   84.638323][   T28] audit: type=1400 audit(1752754656.651:1192): avc:  denied  { remount } for  pid=4361 comm="syz.0.1692" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   84.721729][   T24] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[   84.762885][ T1362] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   84.773076][ T1362] usb 2-1: config 0 has no interfaces?
[   84.778556][ T1362] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[   84.787672][ T1362] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.796668][ T1362] usb 2-1: config 0 descriptor??
[   84.902734][   T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   84.912923][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[   84.922576][   T24] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[   84.931706][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   84.939749][   T24] usb 7-1: SerialNumber: syz
[   84.946490][   T24] usb 7-1: 0:2 : does not exist
[   84.951752][   T39] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[   85.006476][    T6] usb 2-1: USB disconnect, device number 14
[   85.131735][   T39] usb 1-1: Using ep0 maxpacket: 32
[   85.138168][   T39] usb 1-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   85.152641][   T39] usb 1-1: config 0 interface 0 has no altsetting 0
[   85.169961][   T39] usb 1-1: New USB device found, idVendor=056a, idProduct=4001, bcdDevice= 0.00
[   85.188907][   T39] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.197724][   T39] usb 1-1: config 0 descriptor??
[   85.366214][   T24] usb 7-1: USB disconnect, device number 7
[   85.394942][ T4520] serio: Serial port ptm0
[   85.422611][ T4524] loop8: detected capacity change from 0 to 128
[   85.551200][ T4538] loop1: detected capacity change from 0 to 256
[   85.563145][ T4538] FAT-fs (loop1): Directory bread(block 1285) failed
[   85.592707][ T4538] FAT-fs (loop1): Directory bread(block 1285) failed
[   85.594212][ T4540] loop7: detected capacity change from 0 to 512
[   85.636797][ T4540] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   85.646069][ T4540] ext4 filesystem being mounted at /107/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.666561][ T4540] EXT4-fs error (device loop7): ext4_do_update_inode:5255: inode #4: comm syz.7.1765: corrupted inode contents
[   85.678624][ T4540] EXT4-fs error (device loop7): ext4_dirty_inode:6120: inode #4: comm syz.7.1765: mark_inode_dirty error
[   85.691944][ T4540] EXT4-fs error (device loop7): ext4_do_update_inode:5255: inode #4: comm syz.7.1765: corrupted inode contents
[   85.705690][ T4540] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #4: comm syz.7.1765: mark_inode_dirty error
[   85.717668][ T4540] Quota error (device loop7): write_blk: dquota write failed
[   85.727148][ T4540] Quota error (device loop7): find_free_dqentry: Can't write quota data block 5
[   85.736852][ T4540] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[   85.747539][ T4540] EXT4-fs error (device loop7): ext4_acquire_dquot:6801: comm syz.7.1765: Failed to acquire dquot type 1
[   85.780951][ T4557] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   85.797374][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   85.804438][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[   85.813145][   T39] usbhid 1-1:0.0: can't add hid device: -71
[   85.822563][   T39] usbhid: probe of 1-1:0.0 failed with error -71
[   85.822926][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[   85.854041][   T39] usb 1-1: USB disconnect, device number 13
[   85.907820][   T28] audit: type=1400 audit(1752754657.921:1193): avc:  denied  { sys_module } for  pid=4564 comm="syz.6.1775" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   85.908178][ T4565] Invalid ELF header magic: != ELF
[   85.936473][   T28] audit: type=1400 audit(1752754657.921:1194): avc:  denied  { module_load } for  pid=4564 comm="syz.6.1775" path="/sys/kernel/notes" dev="sysfs" ino=1142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[   85.994441][ T4573] loop8: detected capacity change from 0 to 512
[   86.028619][ T4573] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[   86.039320][ T4576] incfs: Options parsing error. -22
[   86.045552][ T4576] incfs: mount failed -22
[   86.056306][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   86.163442][ T4592] loop1: detected capacity change from 0 to 2048
[   86.201094][  T102] udevd[102]: worker [1250] terminated by signal 33 (Unknown signal 33)
[   86.224265][  T102] udevd[102]: worker [1250] failed while handling '/devices/virtual/block/loop1'
[   86.240837][ T4592] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   86.254645][ T4592] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.277560][   T28] audit: type=1400 audit(1752754658.291:1195): avc:  denied  { write } for  pid=4591 comm="syz.1.1787" name="/" dev="overlay" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   86.328135][   T28] audit: type=1400 audit(1752754658.291:1196): avc:  denied  { add_name } for  pid=4591 comm="syz.1.1787" name="file2" dev="overlay" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   86.362762][  T284] EXT4-fs (loop1): unmounting filesystem.
[   86.371873][    T6] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   86.587646][    T6] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   86.606032][    T6] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   86.625980][    T6] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   86.649265][    T6] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[   86.684325][    T6] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[   86.704930][    T6] usb 7-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   86.743556][    T6] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   86.761875][    T6] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.790213][    T6] usb 7-1: Product: syz
[   86.794636][    T6] usb 7-1: Manufacturer: syz
[   86.799255][    T6] usb 7-1: SerialNumber: syz
[   86.972417][ T4603] loop8: detected capacity change from 0 to 131072
[   86.987866][ T4603] F2FS-fs (loop8): Wrong CP boundary, start(512) end(1536) blocks(0)
[   87.011752][ T4603] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[   87.024404][ T4603] F2FS-fs (loop8): invalid crc value
[   87.051380][ T4603] F2FS-fs (loop8): Found nat_bits in checkpoint
[   87.111198][ T4603] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[   87.121155][ T4603] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[   87.660715][ T4650] loop1: detected capacity change from 0 to 2048
[   87.822877][    T6] cdc_ncm 7-1:1.0: bind() failure
[   87.829044][    T6] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[   87.846185][    T6] cdc_ncm 7-1:1.1: bind() failure
[   87.880874][ T4649] loop8: detected capacity change from 0 to 40427
[   87.898007][ T4649] F2FS-fs (loop8): invalid crc value
[   87.912786][ T4649] F2FS-fs (loop8): Found nat_bits in checkpoint
[   87.951982][ T4649] F2FS-fs (loop8): Start checkpoint disabled!
[   87.958715][ T4649] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[   87.996719][ T4649] overlayfs: './file0' not a directory
[   88.028957][   T43] kworker/u4:2: attempt to access beyond end of device
[   88.028957][   T43] loop8: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[   88.030753][ T1362] usb 7-1: USB disconnect, device number 8
[   88.374553][ T4676] loop1: detected capacity change from 0 to 512
[   88.381193][ T4676] ext4: Unknown parameter 'fsname'
[   88.428909][ T4680] serio: Serial port ptm0
[   88.468071][ T4676] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1820'.
[   88.611863][ T4693] loop8: detected capacity change from 0 to 128
[   88.647277][ T4693] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[   88.666937][ T4693] ext4 filesystem being mounted at /103/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   88.713436][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   88.720413][ T4697] loop6: detected capacity change from 0 to 1024
[   88.727547][ T4697] EXT4-fs: Ignoring removed bh option
[   88.744917][ T4697] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   88.789219][ T4701] loop8: detected capacity change from 0 to 128
[   88.803900][ T4697] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e857c028, mo2=0002]
[   88.818489][ T4701] EXT4-fs: Ignoring removed nobh option
[   88.833359][ T4697] System zones: 1-12
[   88.842705][ T4697] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[   88.855731][ T4701] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[   88.875491][ T4701] ext4 filesystem being mounted at /105/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   88.940651][ T2583] EXT4-fs (loop6): unmounting filesystem.
[   88.953995][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   89.085668][ T4715] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1835'.
[   89.145106][ T4717] netem: change failed
[   89.331823][ T4727] syzkaller0: tun_chr_ioctl cmd 1074025684
[   89.393910][ T4730] loop6: detected capacity change from 0 to 16
[   89.409398][ T4730] erofs: (device loop6): mounted with root inode @ nid 36.
[   89.427604][   T28] kauditd_printk_skb: 74 callbacks suppressed
[   89.427621][   T28] audit: type=1400 audit(1752754661.441:1271): avc:  denied  { setattr } for  pid=4729 comm="syz.6.1842" name="file0" dev="overlay" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.494368][ T4739] loop6: detected capacity change from 0 to 512
[   89.511731][   T28] audit: type=1400 audit(1752754661.441:1272): avc:  denied  { create } for  pid=4729 comm="syz.6.1842" name="#31" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.535974][ T4739] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   89.567508][   T28] audit: type=1400 audit(1752754661.441:1273): avc:  denied  { associate } for  pid=4729 comm="syz.6.1842" name="#31" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   89.601857][ T4739] EXT4-fs (loop6): 1 truncate cleaned up
[   89.607564][ T4739] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[   89.618439][ T4744] loop8: detected capacity change from 0 to 128
[   89.639524][ T4744] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   89.672345][   T28] audit: type=1400 audit(1752754661.441:1274): avc:  denied  { rename } for  pid=4729 comm="syz.6.1842" name="#31" dev="tmpfs" ino=1108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.694861][   T28] audit: type=1400 audit(1752754661.441:1275): avc:  denied  { reparent } for  pid=4729 comm="syz.6.1842" name="#31" dev="tmpfs" ino=1108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.702584][ T4744] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   89.717381][   T28] audit: type=1400 audit(1752754661.491:1276): avc:  denied  { rmdir } for  pid=2583 comm="syz-executor" name="file0" dev="tmpfs" ino=1108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   89.758234][ T2583] EXT4-fs (loop6): unmounting filesystem.
[   89.798827][ T4750] loop6: detected capacity change from 0 to 512
[   89.869559][ T4750] EXT4-fs: Ignoring removed nobh option
[   89.872858][ T4754] syzkaller0: tun_chr_ioctl cmd 1074025684
[   89.905899][ T4750] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   89.940644][ T4750] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   89.962003][ T4750] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c018, mo2=0002]
[   89.969965][ T4750] System zones: 1-2, 4-12, 8-8
[   89.990578][ T4750] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.1850: invalid indirect mapped block 256 (level 2)
[   90.039994][ T4760] loop7: detected capacity change from 0 to 512
[   90.049973][ T4750] EXT4-fs (loop6): 2 truncates cleaned up
[   90.066680][ T4750] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[   90.083636][ T4760] ext4: Unknown parameter 'fsname'
[   90.169342][ T4760] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1855'.
[   90.189541][ T4763] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.1850: bg 0: block 5: invalid block bitmap
[   90.251614][ T4768] loop8: detected capacity change from 0 to 1024
[   90.272794][ T4763] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 876 with error 28
[   90.286436][ T4768] EXT4-fs: Ignoring removed bh option
[   90.302084][ T4768] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   90.341784][ T4763] EXT4-fs (loop6): This should not happen!! Data will be lost
[   90.341784][ T4763] 
[   90.366012][ T4774] netlink: 'syz.7.1859': attribute type 4 has an invalid length.
[   90.374454][ T4768] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e857c028, mo2=0002]
[   90.376343][ T4763] EXT4-fs (loop6): Total free blocks count 0
[   90.388836][ T4768] System zones: 1-12
[   90.393110][ T4774] netlink: 'syz.7.1859': attribute type 4 has an invalid length.
[   90.412225][ T4768] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[   90.424813][ T4763] EXT4-fs (loop6): Free/Dirty block details
[   90.444399][ T4763] EXT4-fs (loop6): free_blocks=0
[   90.458730][ T4763] EXT4-fs (loop6): dirty_blocks=908
[   90.481871][ T4763] EXT4-fs (loop6): Block reservation details
[   90.482616][ T4774] syz.7.1859 (4774) used greatest stack depth: 20864 bytes left
[   90.515306][ T4763] EXT4-fs (loop6): i_reserved_data_blocks=908
[   90.532606][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   90.587314][ T4779] serio: Serial port ptm0
[   90.602424][   T10] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 876 with max blocks 32 with error 28
[   90.902394][   T28] audit: type=1400 audit(1752754662.921:1277): avc:  denied  { read write } for  pid=2583 comm="syz-executor" name="loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   90.952820][   T28] audit: type=1400 audit(1752754662.921:1278): avc:  denied  { open } for  pid=2583 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   91.014540][   T28] audit: type=1400 audit(1752754662.921:1279): avc:  denied  { ioctl } for  pid=2583 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   91.088450][   T28] audit: type=1400 audit(1752754662.951:1280): avc:  denied  { bpf } for  pid=4806 comm="syz.6.1875" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   91.155762][ T4819] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1879'.
[   91.172267][ T4819] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1879'.
[   91.478850][ T4868] xt_NFQUEUE: number of total queues is 0
[   91.514545][ T4871] loop8: detected capacity change from 0 to 512
[   91.567936][ T4871] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[   91.589447][ T4871] ext4 filesystem being mounted at /124/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   91.641234][ T3643] EXT4-fs (loop8): unmounting filesystem.
[   91.804911][ T4902] binder: 4901:4902 ioctl c0306201 200000000640 returned -22
[   91.849834][ T4907] loop8: detected capacity change from 0 to 128
[   91.958860][ T4907] syz.8.1918: attempt to access beyond end of device
[   91.958860][ T4907] loop8: rw=2049, sector=145, nr_sectors = 8 limit=128
[   92.078958][  T200] kworker/u4:3: attempt to access beyond end of device
[   92.078958][  T200] loop8: rw=1, sector=153, nr_sectors = 888 limit=128
[   92.129253][ T4897] loop6: detected capacity change from 0 to 40427
[   92.146741][ T4897] F2FS-fs (loop6): fault_injection options not supported
[   92.167131][ T4897] F2FS-fs (loop6): Image doesn't support compression
[   92.181825][ T4897] F2FS-fs (loop6): Image doesn't support compression
[   92.190172][ T4897] F2FS-fs (loop6): invalid crc value
[   92.199973][ T4930] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   92.216447][ T4897] F2FS-fs (loop6): Found nat_bits in checkpoint
[   92.249689][ T4934] loop8: detected capacity change from 0 to 512
[   92.290547][ T4897] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[   92.299404][ T4934] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1927: invalid indirect mapped block 4294967295 (level 1)
[   92.341735][ T4934] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1927: invalid indirect mapped block 4294967295 (level 1)
[   92.370042][ T4934] EXT4-fs (loop8): 2 truncates cleaned up
[   92.397823][ T4934] EXT4-fs (loop8): shut down requested (2)
[   92.441957][ T2583] syz-executor: attempt to access beyond end of device
[   92.441957][ T2583] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   92.491515][ T4942] netlink: 104 bytes leftover after parsing attributes in process `syz.8.1932'.
[   92.655227][ T4953] SELinux:  Context system_u:object_r:dpkg_exec_t:s0 is not valid (left unmapped).
[   93.114648][ T5004] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1957'.
[   93.126188][ T5006] loop6: detected capacity change from 0 to 256
[   93.148490][ T5006] FAT-fs (loop6): bogus number of FAT sectors
[   93.155096][ T5006] FAT-fs (loop6): Can't find a valid FAT filesystem
[   93.949382][ T5082] loop6: detected capacity change from 0 to 512
[   93.984307][ T5082] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1993'.
[   94.000037][ T5088] Falling back ldisc for ttyS3.
[   94.042463][  T287] kernel write not supported for file bpf-prog (pid: 287 comm: kworker/0:2)
[   94.133006][ T5105] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2003'.
[   94.334616][ T5125] loop6: detected capacity change from 0 to 128
[   94.414154][ T5125] syz.6.2011: attempt to access beyond end of device
[   94.414154][ T5125] loop6: rw=2049, sector=145, nr_sectors = 8 limit=128
[   94.482773][ T5136] netlink: 104 bytes leftover after parsing attributes in process `syz.7.2016'.
[   94.523240][ T5140] overlayfs: failed to create directory ./bus/work (errno: 1); mounting read-only
[   94.544668][  T200] kworker/u4:3: attempt to access beyond end of device
[   94.544668][  T200] loop6: rw=1, sector=153, nr_sectors = 888 limit=128
[   94.687684][   T28] kauditd_printk_skb: 101 callbacks suppressed
[   94.687698][   T28] audit: type=1400 audit(1752754922.697:1382): avc:  denied  { connect } for  pid=5160 comm="syz.7.2028" lport=135 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   94.737159][ T5166] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2030'.
[   94.757745][   T28] audit: type=1400 audit(1752754922.697:1383): avc:  denied  { setopt } for  pid=5160 comm="syz.7.2028" laddr=::1 lport=135 faddr=::1 fport=65533 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   94.821744][   T28] audit: type=1400 audit(1752754922.697:1384): avc:  denied  { write } for  pid=5160 comm="syz.7.2028" path="socket:[39376]" dev="sockfs" ino=39376 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   94.846579][ T5174] loop7: detected capacity change from 0 to 128
[   94.878797][   T28] audit: type=1400 audit(1752754922.747:1385): avc:  denied  { mounton } for  pid=5162 comm="syz.1.2029" path="/402/bus" dev="tmpfs" ino=2115 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   94.933728][   T28] audit: type=1400 audit(1752754922.937:1386): avc:  denied  { create } for  pid=5178 comm="syz.0.2034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   94.946704][ T5174] syz.7.2031: attempt to access beyond end of device
[   94.946704][ T5174] loop7: rw=2049, sector=145, nr_sectors = 8 limit=128
[   94.966702][   T28] audit: type=1400 audit(1752754922.947:1387): avc:  denied  { setopt } for  pid=5178 comm="syz.0.2034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.013706][   T28] audit: type=1400 audit(1752754922.947:1388): avc:  denied  { map } for  pid=5178 comm="syz.0.2034" path="socket:[39409]" dev="sockfs" ino=39409 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.064779][   T28] audit: type=1400 audit(1752754922.947:1389): avc:  denied  { read accept } for  pid=5178 comm="syz.0.2034" path="socket:[39409]" dev="sockfs" ino=39409 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.094010][   T28] audit: type=1400 audit(1752754923.027:1390): avc:  denied  { create } for  pid=5182 comm="syz.6.2035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   95.099170][   T10] kworker/u4:1: attempt to access beyond end of device
[   95.099170][   T10] loop7: rw=1, sector=153, nr_sectors = 888 limit=128
[   95.141614][   T28] audit: type=1400 audit(1752754923.027:1391): avc:  denied  { mount } for  pid=5184 comm="syz.0.2037" name="/" dev="incremental-fs" ino=2130 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   95.201126][ T5200] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2042'.
[   95.297543][ T5209] loop7: detected capacity change from 0 to 16
[   95.331061][ T5209] erofs: (device loop7): mounted with root inode @ nid 36.
[   95.632202][  T287] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   95.719709][ T5247] loop7: detected capacity change from 0 to 512
[   95.737176][ T5247] EXT4-fs: Ignoring removed oldalloc option
[   95.758275][ T5247] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[   95.766665][ T5247] EXT4-fs (loop7): 1 truncate cleaned up
[   95.772594][ T5247] EXT4-fs mount: 2 callbacks suppressed
[   95.772609][ T5247] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[   95.799712][ T5247] EXT4-fs (loop7): re-mounted. Quota mode: writeback.
[   95.807820][ T5240] loop8: detected capacity change from 0 to 40427
[   95.825478][ T5240] F2FS-fs (loop8): Wrong SIT boundary, start(1536) end(2560) blocks(3072)
[   95.834418][ T5240] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[   95.843128][ T5240] F2FS-fs (loop8): quotafile must be on filesystem root
[   95.855702][  T287] usb 7-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   95.872121][ T3376] EXT4-fs (loop7): unmounting filesystem.
[   95.893806][  T287] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.941136][ T5257] syz.7.2070[5257] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.941206][ T5257] syz.7.2070[5257] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.942514][  T287] usb 7-1: config 0 descriptor??
[   96.305243][ T5281] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2078'.
[   96.701834][    T6] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[   96.893016][    T6] usb 9-1: config 0 has no interfaces?
[   96.898563][    T6] usb 9-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[   96.920050][    T6] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.928890][    T6] usb 9-1: config 0 descriptor??
[   97.138906][  T725] usb 9-1: USB disconnect, device number 3
[   97.223936][  T287] usb 7-1: Cannot set autoneg
[   97.230191][  T287] MOSCHIP usb-ethernet driver: probe of 7-1:0.0 failed with error -71
[   97.239834][  T287] usb 7-1: USB disconnect, device number 9
[   97.261721][    T6] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[   97.462855][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.477336][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.487388][    T6] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   97.501276][    T6] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   97.510475][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.523221][    T6] usb 1-1: config 0 descriptor??
[   97.932149][    T6] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[   97.950357][    T6] plantronics 0003:047F:FFFF.0019: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   98.066767][ T5393] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   98.383454][ T5401] loop6: detected capacity change from 0 to 40427
[   98.387025][ T5426] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2145'.
[   98.398879][ T5401] F2FS-fs (loop6): Wrong SIT boundary, start(1536) end(2560) blocks(3072)
[   98.398908][ T5401] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[   98.399210][ T5401] F2FS-fs (loop6): quotafile must be on filesystem root
[   98.816596][ T5461] SELinux:  Context system_u:object_r:login_exec_t:s0 is not valid (left unmapped).
[   98.882455][ T5471] netlink: 'syz.6.2166': attribute type 4 has an invalid length.
[   99.031156][ T5487] SELinux: failed to load policy
[   99.412745][ T1362] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   99.602919][ T1362] usb 9-1: config 0 interface 0 altsetting 185 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.614195][ T1362] usb 9-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.630294][ T1362] usb 9-1: config 0 interface 0 has no altsetting 0
[   99.639247][ T1362] usb 9-1: New USB device found, idVendor=05ac, idProduct=029f, bcdDevice= 0.00
[   99.648716][ T1362] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.658867][ T1362] usb 9-1: config 0 descriptor??
[   99.721276][ T5560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5560 comm=syz.7.2205
[   99.748470][ T5562] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2206'.
[   99.782370][ T5564] syz.1.2208[5564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.782463][ T5564] syz.1.2208[5564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.839905][ T5564] SELinux: failed to load policy
[  100.062570][  T312] usb 1-1: USB disconnect, device number 14
[  100.070377][ T1362] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  100.087268][ T1362] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  100.097810][ T1362] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  100.115740][ T1362] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  100.131802][  T725] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  100.131883][ T1362] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  100.149417][ T1362] apple 0003:05AC:029F.001A: hidraw0: USB HID v8.00 Device [HID 05ac:029f] on usb-dummy_hcd.8-1/input0
[  100.287435][    T6] usb 9-1: USB disconnect, device number 4
[  100.322814][  T725] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  100.335899][   T28] kauditd_printk_skb: 52 callbacks suppressed
[  100.335915][   T28] audit: type=1400 audit(1752754928.347:1444): avc:  denied  { setopt } for  pid=5615 comm="syz.0.2231" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  100.363155][  T725] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  100.382239][  T725] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  100.391322][  T725] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  100.410691][  T725] usb 7-1: SerialNumber: syz
[  100.531814][ T5645] bridge0: port 1(dummy0) entered blocking state
[  100.538293][ T5645] bridge0: port 1(dummy0) entered disabled state
[  100.547438][ T5645] device dummy0 entered promiscuous mode
[  100.553773][ T5645] bridge0: port 1(dummy0) entered blocking state
[  100.560226][ T5645] bridge0: port 1(dummy0) entered listening state
[  100.580862][   T28] audit: type=1400 audit(1752754928.587:1445): avc:  denied  { watch_reads } for  pid=5649 comm="syz.1.2246" path="/458/file0" dev="tmpfs" ino=2402 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  100.617728][   T28] audit: type=1400 audit(1752754928.627:1446): avc:  denied  { read write } for  pid=5652 comm="syz.1.2247" name="usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  100.641758][   T28] audit: type=1400 audit(1752754928.627:1447): avc:  denied  { open } for  pid=5652 comm="syz.1.2247" path="/dev/usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  100.666675][  T725] usb 7-1: 0:2 : does not exist
[  100.694395][  T725] usb 7-1: USB disconnect, device number 10
[  100.730141][ T5665] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5665 comm=syz.0.2248
[  100.934343][ T5691] loop7: detected capacity change from 0 to 4096
[  100.952006][ T5691] EXT4-fs (loop7): Test dummy encryption mode enabled
[  100.980756][ T5691] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  100.990166][ T5691] System zones: 0-5
[  100.996601][ T5691] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  101.017816][   T28] audit: type=1400 audit(1752754929.027:1448): avc:  denied  { mounton } for  pid=5690 comm="syz.7.2263" path="/215/file0/bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  101.041419][   T28] audit: type=1400 audit(1752754929.027:1449): avc:  denied  { write } for  pid=5690 comm="syz.7.2263" name="bus" dev="loop7" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  101.063584][   T28] audit: type=1400 audit(1752754929.027:1450): avc:  denied  { add_name } for  pid=5690 comm="syz.7.2263" name="work" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  101.084063][   T28] audit: type=1400 audit(1752754929.027:1451): avc:  denied  { write open } for  pid=5690 comm="syz.7.2263" path=2F202864656C6574656429 dev="loop7" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  101.107814][   T28] audit: type=1400 audit(1752754929.027:1452): avc:  denied  { create } for  pid=5690 comm="syz.7.2263" name="#32" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  101.114431][ T5707] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  101.128054][   T28] audit: type=1400 audit(1752754929.027:1453): avc:  denied  { remove_name } for  pid=5690 comm="syz.7.2263" name="#32" dev="loop7" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  101.152334][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  101.164068][ T3376] EXT4-fs (loop7): unmounting filesystem.
[  101.198738][ T5709] loop6: detected capacity change from 0 to 512
[  101.222429][ T5709] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  101.264623][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  101.351417][ T5724] loop6: detected capacity change from 0 to 4096
[  101.371797][ T5724] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  101.408125][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  101.642102][ T5751] tmpfs: Unknown parameter '9'
[  101.796888][ T5766] netlink: 'syz.0.2294': attribute type 13 has an invalid length.
[  101.822725][ T5766] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  101.966397][ T5784] loop8: detected capacity change from 0 to 79
[  102.251371][ T5817] af_packet: tpacket_rcv: packet too big, clamped from 122 to 4294967286. macoff=82
[  102.379194][ T5814] loop7: detected capacity change from 0 to 40427
[  102.389846][ T5814] F2FS-fs (loop7): invalid crc value
[  102.396251][ T5814] F2FS-fs (loop7): Found nat_bits in checkpoint
[  102.426163][ T5814] F2FS-fs (loop7): Start checkpoint disabled!
[  102.433521][ T5814] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  102.468424][ T5814] F2FS-fs (loop7): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  102.495537][  T200] kworker/u4:3: attempt to access beyond end of device
[  102.495537][  T200] loop7: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  102.566321][ T5837] netlink: 'syz.1.2326': attribute type 4 has an invalid length.
[  102.574294][ T5837] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.2326'.
[  102.611740][   T39] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  102.637452][  T200] Bluetooth: hci0: Frame reassembly failed (-84)
[  102.645043][ T5842] netlink: 176 bytes leftover after parsing attributes in process `syz.1.2327'.
[  102.663546][ T5841] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  102.690021][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.697217][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.707583][ T5846] device bridge_slave_1 left promiscuous mode
[  102.714145][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.721810][ T5846] device bridge_slave_0 left promiscuous mode
[  102.727945][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.803954][   T39] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.814997][   T39] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.825102][   T39] usb 9-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  102.834240][   T39] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.843366][   T39] usb 9-1: config 0 descriptor??
[  102.882867][ T5856] netem: change failed
[  103.181728][    T6] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  103.252249][   T39] uclogic 0003:5543:0042.001B: item fetching failed at offset 6/7
[  103.260476][   T39] uclogic 0003:5543:0042.001B: parse failed
[  103.266512][   T39] uclogic: probe of 0003:5543:0042.001B failed with error -22
[  103.362768][    T6] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  103.373888][    T6] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  103.383653][    T6] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  103.396577][    T6] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  103.405636][    T6] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.414252][    T6] usb 7-1: config 0 descriptor??
[  103.458376][   T39] usb 9-1: USB disconnect, device number 5
[  103.473048][ T5868] SELinux:  Context : is not valid (left unmapped).
[  103.823096][    T6] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving
[  103.839590][    T6] plantronics 0003:047F:FFFF.001C: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  103.890054][ T5897] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2352'.
[  103.952604][ T5907] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2357'.
[  103.965872][ T5909] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2358'.
[  104.064685][ T5921] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  104.074390][ T5921] SELinux: failed to load policy
[  104.127241][ T5925] loop8: detected capacity change from 0 to 256
[  104.143311][    C0] plantronics 0003:047F:FFFF.001C: hid_field_extract() called with n (132) > 32! (kworker/u4:2)
[  104.176038][ T5925] FAT-fs (loop8): bogus number of FAT sectors
[  104.188685][ T5925] FAT-fs (loop8): Can't find a valid FAT filesystem
[  104.347516][ T1362] usb 7-1: USB disconnect, device number 11
[  104.560955][ T5966] input: syz0 as /devices/virtual/input/input21
[  104.671745][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[  104.677922][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  104.975736][ T6001] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2398'.
[  105.022594][ T5994] loop7: detected capacity change from 0 to 40427
[  105.058755][ T6009] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2402'.
[  105.084342][ T5994] F2FS-fs (loop7): Found nat_bits in checkpoint
[  105.148796][ T5994] F2FS-fs (loop7): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  105.173957][ T5994] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  105.244871][  T591] Bluetooth: hci0: Frame reassembly failed (-84)
[  105.252693][ T3376] syz-executor: attempt to access beyond end of device
[  105.252693][ T3376] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  105.318503][ T6035] netlink: 96 bytes leftover after parsing attributes in process `syz.8.2414'.
[  105.392582][ T6043] netlink: 76 bytes leftover after parsing attributes in process `syz.7.2413'.
[  105.401963][ T6045] loop8: detected capacity change from 0 to 4096
[  105.441037][ T6045] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  105.528021][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  105.733346][ T6084] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.740543][ T6084] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.751016][ T6084] device bridge_slave_1 left promiscuous mode
[  105.757217][ T6084] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.767528][ T6084] device bridge_slave_0 left promiscuous mode
[  105.773801][ T6084] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.839152][   T28] kauditd_printk_skb: 47 callbacks suppressed
[  105.839168][   T28] audit: type=1400 audit(105.820:1501): avc:  denied  { mount } for  pid=6092 comm="syz.8.2447" name="/" dev="ramfs" ino=43957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  106.011767][  T312] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  106.191779][  T312] usb 2-1: Using ep0 maxpacket: 16
[  106.198080][  T312] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.208337][  T312] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.219251][  T312] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  106.229030][  T312] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  106.242832][  T312] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  106.251942][  T312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  106.259942][  T312] usb 2-1: SerialNumber: syz
[  106.266184][  T312] hub 2-1:1.0: bad descriptor, ignoring hub
[  106.272177][  T312] hub: probe of 2-1:1.0 failed with error -5
[  106.278321][  T312] cdc_ether: probe of 2-1:1.0 failed with error -22
[  106.671205][ T6066] raw-gadget.1 gadget.1: fail, usb_ep_set_wedge returned -11
[  106.791857][  T312] usb 2-1: USB disconnect, device number 15
[  107.311740][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  107.311898][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[  107.337301][ T6097] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2440'.
[  107.352313][   T28] audit: type=1326 audit(107.340:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6094 comm="syz.0.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[  107.420772][ T6101] loop6: detected capacity change from 0 to 4096
[  107.429950][   T28] audit: type=1326 audit(107.370:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6094 comm="syz.0.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[  107.458185][   T28] audit: type=1326 audit(107.370:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6094 comm="syz.0.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[  107.483097][   T28] audit: type=1326 audit(107.370:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6094 comm="syz.0.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[  107.490051][ T6101] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  107.509541][ T6100] loop8: detected capacity change from 0 to 40427
[  107.539263][   T28] audit: type=1326 audit(107.370:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6094 comm="syz.0.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31af58e929 code=0x7ffc0000
[  107.563045][ T6100] F2FS-fs (loop8): fault_injection options not supported
[  107.570134][ T6100] F2FS-fs (loop8): heap/no_heap options were deprecated
[  107.577576][ T6100] F2FS-fs (loop8): Image doesn't support compression
[  107.586104][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  107.592530][ T6100] F2FS-fs (loop8): invalid crc value
[  107.595302][   T28] audit: type=1400 audit(107.580:1507): avc:  denied  { wake_alarm } for  pid=6113 comm="syz.1.2445" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  107.637398][ T6100] F2FS-fs (loop8): Found nat_bits in checkpoint
[  107.695077][ T6100] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  107.780058][ T3643] syz-executor: attempt to access beyond end of device
[  107.780058][ T3643] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  107.848111][ T6141] kvm [6139]: vcpu2, guest rIP: 0x9133 ignored wrmsr: 0x11e data 0xbe702111
[  107.990736][   T28] audit: type=1400 audit(107.973:1508): avc:  denied  { sys_module } for  pid=6155 comm="syz.8.2458" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  108.068355][ T6171] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready
[  108.205488][ T6188] kvm [6186]: vcpu2, guest rIP: 0x9114 disabled perfctr wrmsr: 0xc2 data 0x7
[  108.214679][ T6188] kvm [6186]: vcpu2, guest rIP: 0x9114 disabled perfctr wrmsr: 0xc1 data 0x7
[  108.229867][ T6188] kvm [6186]: vcpu2, guest rIP: 0x9114 vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x1, nop
[  108.258280][ T6188] kvm [6186]: vcpu2, guest rIP: 0x9114 disabled perfctr wrmsr: 0x187 data 0x1
[  108.271984][ T6188] kvm [6186]: vcpu2, guest rIP: 0x9114 disabled perfctr wrmsr: 0x186 data 0x1
[  108.316346][ T6201] tmpfs: Unknown parameter 'nolazytime˙˙'
[  108.445572][ T6224] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  108.452857][ T6224] IPv6: NLM_F_CREATE should be set when creating new route
[  108.462645][ T6224] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  108.505581][ T6219] user requested TSC rate below hardware speed
[  108.537347][   T28] audit: type=1400 audit(108.523:1509): avc:  denied  { ioctl } for  pid=6245 comm="syz.6.2496" path="socket:[45580]" dev="sockfs" ino=45580 ioctlcmd=0x7436 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  108.790133][ T6283] device bridge0 entered promiscuous mode
[  108.802697][ T6290] loop6: detected capacity change from 0 to 128
[  108.811804][ T6283] device macsec1 entered promiscuous mode
[  108.817951][   T28] audit: type=1400 audit(108.803:1510): avc:  denied  { read } for  pid=6294 comm="syz.0.2506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  108.839542][ T6283] bridge0: port 2(macsec1) entered blocking state
[  108.866744][ T6283] bridge0: port 2(macsec1) entered disabled state
[  108.882783][ T6283] device bridge0 left promiscuous mode
[  108.993705][ T6290] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  109.083068][ T6349] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2517'.
[  109.095079][ T6352] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6352 comm=syz.7.2514
[  109.248889][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  109.381733][  T312] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  109.484682][ T6397] loop8: detected capacity change from 0 to 128
[  109.488379][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2530'.
[  109.500169][ T6397] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  109.518009][ T6397] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  109.531127][ T6397] EXT4-fs error (device loop8): __ext4_find_entry:1696: inode #2: comm syz.8.2529: checksumming directory block 0
[  109.558460][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  109.584961][  T312] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  109.594105][  T312] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.602351][  T312] usb 1-1: Product: syz
[  109.606571][  T312] usb 1-1: Manufacturer: syz
[  109.611216][  T312] usb 1-1: SerialNumber: syz
[  109.715369][ T6404] loop8: detected capacity change from 0 to 40427
[  109.722485][ T6404] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  109.730269][ T6404] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  109.739208][ T6404] F2FS-fs (loop8): invalid crc value
[  109.746499][ T6404] F2FS-fs (loop8): Found nat_bits in checkpoint
[  109.780486][ T6404] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  109.787638][ T6404] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  109.921722][    T6] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  109.940579][ T6415] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2535'.
[  109.952960][ T6415] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2535'.
[  110.112279][    T6] usb 2-1: Using ep0 maxpacket: 16
[  110.118630][    T6] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  110.127399][    T6] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  110.137501][    T6] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  110.147838][    T6] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  110.156969][    T6] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.165064][    T6] usb 2-1: Product: syz
[  110.169362][    T6] usb 2-1: Manufacturer: syz
[  110.174384][    T6] usb 2-1: SerialNumber: syz
[  110.315595][ T6425] device bridge0 entered promiscuous mode
[  110.321422][ T6425] device macsec1 entered promiscuous mode
[  110.327820][ T6425] bridge0: port 3(macsec1) entered blocking state
[  110.334378][ T6425] bridge0: port 3(macsec1) entered disabled state
[  110.341819][ T6425] device bridge0 left promiscuous mode
[  110.460985][ T6438] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2545'.
[  110.502478][ T6442] loop7: detected capacity change from 0 to 1024
[  110.523303][ T6442] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  110.550644][ T3376] EXT4-fs (loop7): unmounting filesystem.
[  110.582511][    T6] usb 2-1: 0:2 : does not exist
[  110.624200][  T312] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  110.630699][  T312] cdc_ncm 1-1:1.0: setting tx_max = 184
[  110.830397][  T312] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  110.861232][  T312] usb 1-1: USB disconnect, device number 15
[  110.870256][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  110.870270][   T28] audit: type=1400 audit(110.863:1516): avc:  denied  { read } for  pid=141 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  110.870665][  T312] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[  110.903274][   T28] audit: type=1400 audit(110.893:1517): avc:  denied  { search } for  pid=141 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  110.930063][   T28] audit: type=1400 audit(110.893:1518): avc:  denied  { read } for  pid=141 comm="dhcpcd" name="n18" dev="tmpfs" ino=13326 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  110.951409][   T28] audit: type=1400 audit(110.893:1519): avc:  denied  { open } for  pid=141 comm="dhcpcd" path="/run/udev/data/n18" dev="tmpfs" ino=13326 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  110.973893][   T28] audit: type=1400 audit(110.893:1520): avc:  denied  { getattr } for  pid=141 comm="dhcpcd" path="/run/udev/data/n18" dev="tmpfs" ino=13326 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  110.998189][   T28] audit: type=1400 audit(110.953:1521): avc:  denied  { read } for  pid=6467 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=494 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  111.020766][   T28] audit: type=1400 audit(110.953:1522): avc:  denied  { open } for  pid=6467 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=494 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  111.045408][   T28] audit: type=1400 audit(110.953:1523): avc:  denied  { getattr } for  pid=6467 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=494 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  111.073193][   T28] audit: type=1400 audit(111.063:1524): avc:  denied  { write } for  pid=6466 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=493 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  111.095746][   T28] audit: type=1400 audit(111.063:1525): avc:  denied  { add_name } for  pid=6466 comm="dhcpcd-run-hook" name="resolv.conf.usb0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  111.296574][ T6497] loop8: detected capacity change from 0 to 2048
[  111.348286][ T6510] netlink: 'syz.7.2565': attribute type 15 has an invalid length.
[  111.359228][ T6497] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  111.409582][    T6] usb 2-1: 1:0: failed to get current value for ch 0 (-22)
[  111.428615][    T6] usb 2-1: USB disconnect, device number 16
[  111.454630][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  111.631590][ T6548] loop8: detected capacity change from 0 to 512
[  111.646114][ T6548] EXT4-fs (loop8): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  111.671806][ T6548] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  111.687988][ T6548] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  111.712482][ T6548] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  111.722870][ T6548] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  111.738750][ T6548] EXT4-fs (loop8): failed to initialize system zone (-117)
[  111.751817][ T6548] EXT4-fs (loop8): mount failed
[  111.771829][  T725] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  111.981707][  T725] usb 1-1: Using ep0 maxpacket: 32
[  111.988043][  T725] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  112.001716][  T725] usb 1-1: config 0 has no interface number 0
[  112.061924][  T725] usb 1-1: config 0 interface 184 has no altsetting 0
[  113.132818][  T725] usb 1-1: string descriptor 0 read error: -71
[  113.139083][  T725] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  113.153907][  T725] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.172549][  T725] usb 1-1: config 0 descriptor??
[  113.177802][  T725] usb 1-1: can't set config #0, error -71
[  113.197445][  T725] usb 1-1: USB disconnect, device number 16
[  113.216345][ T6586] loop6: detected capacity change from 0 to 512
[  113.240658][ T6586] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  113.251125][ T6586] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  113.261116][ T6586] EXT4-fs (loop6): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  113.275012][ T6586] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  113.287927][ T6586] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  113.295935][ T6586] EXT4-fs (loop6): failed to initialize system zone (-117)
[  113.303435][ T6586] EXT4-fs (loop6): mount failed
[  113.721031][ T6689] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  113.770079][ T6696] netlink: 'syz.8.2632': attribute type 13 has an invalid length.
[  113.852706][ T6696] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready
[  113.863619][ T6667] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  113.871425][ T6667] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  113.968614][ T6717] device veth1_macvtap left promiscuous mode
[  114.036053][ T6717] device macsec0 entered promiscuous mode
[  114.053217][ T6726] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  114.232830][ T6749] netlink: 'syz.7.2636': attribute type 13 has an invalid length.
[  114.329702][ T6749] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  114.412198][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  114.446393][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  114.458880][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  114.492249][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  114.522199][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  114.557580][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.580548][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.596592][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.605305][ T6757] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.737893][ T6798] loop7: detected capacity change from 0 to 128
[  114.947565][ T6808] binder: 6807:6808 ioctl c018620b 200000000d40 returned -14
[  114.949694][ T6804] SELinux: failed to load policy
[  114.971768][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  115.051697][  T312] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  115.136645][ T6820] loop8: detected capacity change from 0 to 1024
[  115.260781][ T6820] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  115.262845][  T312] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  115.301071][  T312] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  115.324011][  T312] usb 2-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  115.348891][  T312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.359747][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  115.369711][  T312] usb 2-1: config 0 descriptor??
[  115.807753][  T312] uclogic 0003:5543:0042.001D: item fetching failed at offset 6/7
[  115.826154][  T312] uclogic 0003:5543:0042.001D: parse failed
[  115.851692][  T312] uclogic: probe of 0003:5543:0042.001D failed with error -22
[  115.896858][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  115.896872][   T28] audit: type=1400 audit(115.883:1541): avc:  denied  { remount } for  pid=6859 comm="syz.7.2673" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  115.951477][   T28] audit: type=1400 audit(115.923:1542): avc:  denied  { unmount } for  pid=3376 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  116.026619][   T39] usb 2-1: USB disconnect, device number 17
[  116.368433][   T28] audit: type=1400 audit(116.353:1543): avc:  denied  { read } for  pid=6891 comm="syz.0.2684" path="socket:[47577]" dev="sockfs" ino=47577 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  116.688774][ T6905] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2689'.
[  117.249278][   T28] audit: type=1400 audit(117.233:1544): avc:  denied  { ioctl } for  pid=6950 comm="syz.1.2706" path="/dev/usbmon7" dev="devtmpfs" ino=180 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  117.289210][ T6953] device bridge_slave_0 left promiscuous mode
[  117.295842][ T6953] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.306284][ T6953] device bridge_slave_1 left promiscuous mode
[  117.314896][ T6953] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.333794][ T6953] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready
[  117.355253][   T28] audit: type=1400 audit(117.343:1545): avc:  denied  { append } for  pid=6950 comm="syz.1.2706" name="001" dev="devtmpfs" ino=182 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  117.391703][  T287] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  117.438320][ T6963] input: syz1 as /devices/virtual/input/input23
[  117.558735][ T7038] loop8: detected capacity change from 0 to 256
[  117.592046][ T7038] exfat: Unknown parameter '0x00000000000000030xffffffffffffffff'
[  117.602871][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.618100][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.632853][  T287] usb 1-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  117.642775][  T287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.653671][  T287] usb 1-1: config 0 descriptor??
[  117.889094][ T7049] input: syz0 as /devices/virtual/input/input24
[  118.068993][  T287] uclogic 0003:5543:0042.001E: item fetching failed at offset 6/7
[  118.081180][ T7061] loop7: detected capacity change from 0 to 512
[  118.084850][  T287] uclogic 0003:5543:0042.001E: parse failed
[  118.093766][  T287] uclogic: probe of 0003:5543:0042.001E failed with error -22
[  118.147422][ T7061] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  118.189209][   T28] audit: type=1400 audit(118.173:1546): avc:  denied  { write } for  pid=7060 comm="syz.7.2722" name="file2" dev="overlay" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.230825][ T7061] syz.7.2722 (7061) used greatest stack depth: 19672 bytes left
[  118.240868][   T28] audit: type=1400 audit(118.203:1547): avc:  denied  { setattr } for  pid=7060 comm="syz.7.2722" name="#20" dev="loop7" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.263118][   T28] audit: type=1400 audit(118.203:1548): avc:  denied  { link } for  pid=7060 comm="syz.7.2722" name="#20" dev="loop7" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.263675][ T3376] EXT4-fs (loop7): unmounting filesystem.
[  118.292347][   T28] audit: type=1400 audit(118.233:1549): avc:  denied  { unlink } for  pid=3376 comm="syz-executor" name="file2" dev="loop7" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  118.319301][  T486] usb 1-1: USB disconnect, device number 17
[  118.352956][   T28] audit: type=1400 audit(118.343:1550): avc:  denied  { ioctl } for  pid=7073 comm="syz.7.2725" path="socket:[47853]" dev="sockfs" ino=47853 ioctlcmd=0x48de scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  118.354216][ T7001] Bluetooth: hci0: Frame reassembly failed (-84)
[  118.441798][  T287] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  118.495195][ T7081] loop6: detected capacity change from 0 to 1024
[  118.512882][ T7081] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  118.533925][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  118.549573][ T7085] netlink: 'syz.6.2730': attribute type 4 has an invalid length.
[  118.562035][ T7085] netlink: 'syz.6.2730': attribute type 4 has an invalid length.
[  118.621761][    T6] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  118.641737][  T287] usb 9-1: Using ep0 maxpacket: 16
[  118.649369][  T287] usb 9-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  118.658634][  T287] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.666705][  T287] usb 9-1: Product: syz
[  118.670877][  T287] usb 9-1: Manufacturer: syz
[  118.675508][  T287] usb 9-1: SerialNumber: syz
[  118.680654][  T287] usb 9-1: config 0 descriptor??
[  118.686607][  T287] ftdi_sio 9-1:0.0: FTDI USB Serial Device converter detected
[  118.694350][  T287] usb 9-1: Detected FT232H
[  118.812773][    T6] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  118.826485][    T6] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  118.836741][    T6] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.847796][    T6] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  118.857598][    T6] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  118.867482][    T6] usb 2-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  118.887805][  T287] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  118.894805][    T6] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  118.903964][    T6] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.912563][    T6] usb 2-1: Product: syz
[  118.916937][    T6] usb 2-1: Manufacturer: syz
[  118.921590][    T6] usb 2-1: SerialNumber: syz
[  119.051770][   T39] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  119.231716][   T39] usb 7-1: Using ep0 maxpacket: 8
[  119.237913][   T39] usb 7-1: config 0 has no interfaces?
[  119.245093][   T39] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  119.254384][   T39] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.262448][   T39] usb 7-1: Product: syz
[  119.266625][   T39] usb 7-1: Manufacturer: syz
[  119.271220][   T39] usb 7-1: SerialNumber: syz
[  119.276577][   T39] usb 7-1: config 0 descriptor??
[  119.319256][  T287] usb 9-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  119.485820][  T287] usb 7-1: USB disconnect, device number 12
[  119.525166][   T39] usb 9-1: USB disconnect, device number 6
[  119.532538][   T39] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  119.542488][   T39] ftdi_sio 9-1:0.0: device disconnected
[  119.932176][    T6] cdc_ncm 2-1:1.0: bind() failure
[  119.938082][    T6] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  119.944955][    T6] cdc_ncm 2-1:1.1: bind() failure
[  120.351813][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  120.351899][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[  120.364264][ T7074] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  120.390251][   T39] usb 2-1: USB disconnect, device number 18
[  124.418527][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  124.418566][   T28] audit: type=1400 audit(124.403:1552): avc:  denied  { shutdown } for  pid=7119 comm="syz.0.2744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  124.447488][ T7124] loop8: detected capacity change from 0 to 512
[  124.471783][ T7124] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  124.511111][   T28] audit: type=1400 audit(124.493:1553): avc:  denied  { mounton } for  pid=7129 comm="syz.6.2750" path="/366/file1" dev="tmpfs" ino=1943 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  124.565746][ T7139] loop8: detected capacity change from 0 to 128
[  124.580564][ T7139] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  124.596472][ T7139] syz.8.2753 (pid 7139) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  124.617968][   T28] audit: type=1400 audit(124.603:1554): avc:  denied  { compute_member } for  pid=7144 comm="syz.0.2755" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  124.638862][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  124.663118][ T7147] xt_bpf: check failed: parse error
[  124.668813][   T28] audit: type=1400 audit(124.653:1555): avc:  denied  { unmount } for  pid=7149 comm="syz.0.2758" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  124.727152][ T7161] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2761'.
[  124.737292][ T7161] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2761'.
[  124.853373][ T7181] input: syz1 as /devices/virtual/input/input25
[  124.921501][ T7194] loop8: detected capacity change from 0 to 256
[  124.930673][ T7194] FAT-fs (loop8): bogus number of FAT sectors
[  124.948765][ T7194] FAT-fs (loop8): Can't find a valid FAT filesystem
[  125.189055][   T28] audit: type=1400 audit(125.173:1556): avc:  denied  { read } for  pid=7211 comm="syz.0.2784" laddr=fe80::948f:76ff:fe99:e001 lport=7 faddr=ff02::1 fport=20005 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  125.614414][   T28] audit: type=1400 audit(125.603:1557): avc:  denied  { connect } for  pid=7243 comm="syz.8.2797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  125.643776][   T28] audit: type=1400 audit(125.623:1558): avc:  denied  { ioctl } for  pid=7245 comm="syz.8.2798" path="/dev/rtc0" dev="devtmpfs" ino=263 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  125.675724][   T28] audit: type=1400 audit(125.663:1559): avc:  denied  { getopt } for  pid=7247 comm="syz.8.2799" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  125.822348][ T7259] netem: change failed
[  125.845900][ T7263] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  125.927659][ T7273] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2811'.
[  125.940321][ T7273] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  125.989153][   T28] audit: type=1400 audit(125.973:1560): avc:  denied  { read write } for  pid=3643 comm="syz-executor" name="loop8" dev="devtmpfs" ino=126 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  126.034359][   T28] audit: type=1400 audit(125.973:1561): avc:  denied  { open } for  pid=3643 comm="syz-executor" path="/dev/loop8" dev="devtmpfs" ino=126 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  126.045032][ T7292] loop8: detected capacity change from 0 to 512
[  126.080331][ T7292] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  126.123161][ T3643] EXT4-fs (loop8): unmounting filesystem.
[  126.288665][ T7314] device veth1_macvtap entered promiscuous mode
[  126.296613][ T7314] IPv6: ADDRCONF(NETDEV_CHANGE): ipip0: link becomes ready
[  126.305624][ T7314] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  126.359108][ T7322] tipc: Started in network mode
[  126.364379][ T7322] tipc: Node identity ac1414aa, cluster identity 4711
[  126.371357][ T7322] tipc: Enabled bearer <udp:syz2>, priority 10
[  126.390623][ T7324] loop6: detected capacity change from 0 to 16
[  126.402203][ T7324] erofs: (device loop6): EXPERIMENTAL compressed fragments feature in use. Use at your own risk!
[  126.413158][ T7324] erofs: (device loop6): EXPERIMENTAL global deduplication feature in use. Use at your own risk!
[  126.424426][ T7324] erofs: (device loop6): mounted with root inode @ nid 36.
[  126.475555][    T6] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  126.478251][ T7332] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  126.603439][ T7347] loop6: detected capacity change from 0 to 512
[  126.612767][ T7347] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  126.623977][ T7347] EXT4-fs error (device loop6): ext4_find_inline_data_nolock:164: inode #17: comm syz.6.2846: inline data xattr refers to an external xattr inode
[  126.639060][ T7347] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.2846: couldn't read orphan inode 17 (err -117)
[  126.651453][ T7347] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  126.672865][ T2583] VFS: Lookup of '.' in ext4 loop6 would have caused loop
[  126.680424][ T2583] VFS: Lookup of '.' in ext4 loop6 would have caused loop
[  126.723706][ T2583] EXT4-fs (loop6): unmounting filesystem.
[  126.875661][ T7350] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.882750][ T7350] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.890138][ T7350] device bridge_slave_0 entered promiscuous mode
[  126.897293][ T7350] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.904364][ T7350] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.911813][ T7350] device bridge_slave_1 entered promiscuous mode
[  126.991462][ T7361] Invalid ELF header len 8
[  127.019359][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[  127.034679][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  127.042489][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.050213][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  127.058926][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  127.068142][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.075256][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.083220][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  127.091802][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  127.100141][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.107220][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.123446][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  127.132055][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  127.141051][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  127.155738][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  127.168096][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  127.176625][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  127.184128][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  127.193467][ T7350] device veth0_vlan entered promiscuous mode
[  127.204116][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  127.213383][ T7350] device veth1_macvtap entered promiscuous mode
[  127.223644][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  127.234062][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  127.270550][ T7374] tipc: Started in network mode
[  127.275576][ T7374] tipc: Node identity ac1414aa, cluster identity 4711
[  127.282862][ T7374] tipc: Enabled bearer <udp:syz2>, priority 10
[  127.390455][ T7392] loop7: detected capacity change from 0 to 256
[  127.397016][  T312] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  127.416676][ T7392] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  127.482727][   T39] tipc: Node number set to 2886997162
[  127.581823][ T1362] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  127.590419][  T312] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.611770][  T312] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.621549][  T312] usb 1-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  127.640937][  T312] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.650446][  T312] usb 1-1: config 0 descriptor??
[  127.762743][ T1362] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  127.778060][ T1362] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.795737][ T1362] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.811653][ T1362] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  127.832532][ T1362] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  127.851711][ T1362] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  127.861268][ T1362] usb 10-1: Manufacturer: syz
[  127.870710][ T1362] usb 10-1: config 0 descriptor??
[  128.063494][  T312] isku 0003:1E7D:319C.001F: unknown main item tag 0x0
[  128.070406][  T312] isku 0003:1E7D:319C.001F: item fetching failed at offset 6/7
[  128.079271][  T312] isku 0003:1E7D:319C.001F: parse failed
[  128.085046][  T312] isku: probe of 0003:1E7D:319C.001F failed with error -22
[  128.251710][  T312] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  128.265217][   T39] usb 1-1: USB disconnect, device number 18
[  128.280117][ T1362] appleir 0003:05AC:8243.0020: unknown main item tag 0x0
[  128.287310][ T1362] appleir 0003:05AC:8243.0020: No inputs registered, leaving
[  128.295545][ T1362] appleir 0003:05AC:8243.0020: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.9-1/input0
[  128.401764][ T1362] tipc: Node number set to 2886997162
[  128.432819][  T312] usb 9-1: config 0 has no interfaces?
[  128.439706][  T312] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  128.448805][  T312] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.456814][  T312] usb 9-1: Product: syz
[  128.461026][  T312] usb 9-1: Manufacturer: syz
[  128.465695][  T312] usb 9-1: SerialNumber: syz
[  128.470821][  T312] usb 9-1: config 0 descriptor??
[  128.917069][ T7413] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2874'.
[  128.954832][  T725] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  128.958045][ T7417] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  129.071723][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  129.071744][  T522] Bluetooth: hci0: command 0x1003 tx timeout
[  129.137406][ T7430] binder: 7429:7430 ioctl c018620c 2000000000c0 returned -22
[  129.263989][ T7442] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2887'.
[  129.274750][ T7442] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  129.445227][   T28] kauditd_printk_skb: 99 callbacks suppressed
[  129.445242][   T28] audit: type=1400 audit(2000000002.970:1661): avc:  denied  { write } for  pid=7457 comm="syz.1.2895" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  129.641433][   T28] audit: type=1400 audit(2000000003.160:1662): avc:  denied  { remount } for  pid=7468 comm="syz.1.2909" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  129.641440][ T7469] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  129.725023][   T28] audit: type=1400 audit(2000000003.250:1663): avc:  denied  { read } for  pid=7471 comm="syz.1.2911" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  129.725257][ T7472] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2900'.
[  129.754837][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready
[  129.783983][   T28] audit: type=1400 audit(2000000003.300:1664): avc:  denied  { ioctl } for  pid=7471 comm="syz.1.2911" path="socket:[50071]" dev="sockfs" ino=50071 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  129.809247][   T28] audit: type=1400 audit(2000000003.310:1665): avc:  denied  { execute } for  pid=7477 comm="syz.0.2902" path="/623/blkio.bfq.io_service_bytes_recursive" dev="tmpfs" ino=3254 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  129.961660][   T28] audit: type=1400 audit(2000000003.480:1666): avc:  denied  { create } for  pid=7488 comm="syz.0.2905" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  129.982035][   T28] audit: type=1400 audit(2000000003.490:1667): avc:  denied  { bind } for  pid=7488 comm="syz.0.2905" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  130.002600][   T28] audit: type=1400 audit(2000000003.490:1668): avc:  denied  { connect } for  pid=7488 comm="syz.0.2905" lport=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  130.032895][   T28] audit: type=1400 audit(2000000003.490:1669): avc:  denied  { write } for  pid=7488 comm="syz.0.2905" laddr=::1 lport=38 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  130.123508][   T28] audit: type=1400 audit(2000000003.650:1670): avc:  denied  { name_bind } for  pid=7502 comm="syz.9.2914" src=24098 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  130.167701][ T7507] device pim6reg1 entered promiscuous mode
[  130.322092][    T6] usb 10-1: USB disconnect, device number 2
[  130.341773][ T1362] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  130.521771][ T1362] usb 1-1: Using ep0 maxpacket: 32
[  130.528835][ T1362] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  130.541711][ T1362] usb 1-1: config 0 has no interface number 0
[  130.551709][ T1362] usb 1-1: config 0 interface 184 has no altsetting 0
[  130.562654][ T1362] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  130.587252][ T1362] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.591902][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  130.595386][    C1] bridge0: port 1(dummy0) entered learning state
[  130.610934][ T1362] usb 1-1: Product: syz
[  130.615565][ T1362] usb 1-1: Manufacturer: syz
[  130.625293][ T1362] usb 1-1: SerialNumber: syz
[  130.645172][ T1362] usb 1-1: config 0 descriptor??
[  130.655940][ T1362] smsc75xx v1.0.0
[  130.773689][ T7549] loop7: detected capacity change from 0 to 16
[  130.778788][ T7549] erofs: (device loop7): mounted with root inode @ nid 36.
[  130.779779][ T7549] syz.7.2935: attempt to access beyond end of device
[  130.779779][ T7549] loop7: rw=0, sector=14546590680, nr_sectors = 16 limit=16
[  130.866434][  T312] kernel write not supported for file bpf-prog (pid: 312 comm: kworker/1:3)
[  130.903337][ T7562] device pim6reg1 entered promiscuous mode
[  130.938722][  T312] usb 9-1: USB disconnect, device number 7
[  130.958340][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[  131.457635][ T1362] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  131.468560][ T1362] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  131.592668][  T725] hid-generic 0000:0009:0001.0021: unknown main item tag 0x0
[  131.600156][  T725] hid-generic 0000:0009:0001.0021: unknown main item tag 0x0
[  131.608137][  T725] hid-generic 0000:0009:0001.0021: unknown main item tag 0x0
[  131.616212][  T725] hid-generic 0000:0009:0001.0021: hidraw0: <UNKNOWN> HID v0.04 Device [syz0] on syz1
[  131.651526][ T7597] fido_id[7597]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  131.678753][ T1362] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71
[  131.689807][ T1362] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71
[  131.699687][ T1362] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  131.709168][ T1362] smsc75xx: probe of 1-1:0.184 failed with error -71
[  131.716773][ T1362] usb 1-1: USB disconnect, device number 19
[  132.991728][ T2856] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  132.991866][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  133.004151][ T7564] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  133.151948][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  133.312088][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  133.468951][ T7638] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2972'.
[  133.480740][ T7638] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2972'.
[  133.491352][ T7638] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2972'.
[  133.527441][ T7000] Bluetooth: hci0: Frame reassembly failed (-84)
[  134.207683][ T7679] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2990'.
[  134.270304][ T7688] loop9: detected capacity change from 0 to 512
[  134.310494][ T7688] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  134.320313][ T7688] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.329383][ T7698] loop7: detected capacity change from 0 to 512
[  134.363025][ T7698] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  134.377640][ T7350] EXT4-fs (loop9): unmounting filesystem.
[  134.406442][ T3376] EXT4-fs (loop7): unmounting filesystem.
[  134.416548][  T102] udevd[102]: worker [1248] terminated by signal 33 (Unknown signal 33)
[  134.425467][  T102] udevd[102]: worker [1248] failed while handling '/devices/virtual/block/loop9'
[  134.506488][   T28] kauditd_printk_skb: 28 callbacks suppressed
[  134.506504][   T28] audit: type=1400 audit(2000000008.030:1699): avc:  denied  { bind } for  pid=7715 comm="syz.7.3006" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  134.578729][   T28] audit: type=1400 audit(2000000008.070:1700): avc:  denied  { map } for  pid=7716 comm="syz.8.3005" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  134.618481][   T28] audit: type=1400 audit(2000000008.070:1701): avc:  denied  { setopt } for  pid=7715 comm="syz.7.3006" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  134.670144][   T28] audit: type=1400 audit(2000000008.090:1702): avc:  denied  { mount } for  pid=7722 comm="syz.0.3008" name="/" dev="ramfs" ino=52461 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  134.710857][   T28] audit: type=1400 audit(2000000008.140:1703): avc:  denied  { watch } for  pid=7724 comm="syz.8.3009" path="/364/file0" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  134.733713][   T28] audit: type=1400 audit(2000000008.140:1704): avc:  denied  { unmount } for  pid=3643 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  134.843684][   T28] audit: type=1400 audit(2000000000.030:1705): avc:  denied  { execute_no_trans } for  pid=7751 comm="syz.8.3021" path="/367/file1" dev="tmpfs" ino=1946 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  134.893350][   T28] audit: type=1400 audit(2000000000.080:1706): avc:  denied  { bind } for  pid=7757 comm="syz.0.3023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  134.893548][ T7758] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3023'.
[  134.913048][   T28] audit: type=1400 audit(2000000000.080:1707): avc:  denied  { setopt } for  pid=7757 comm="syz.0.3023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  135.071695][    C1] ==================================================================
[  135.079818][    C1] BUG: KASAN: use-after-free in __run_timers+0x32b/0x9a0
[  135.086887][    C1] Write of size 8 at addr ffff8881199d0a00 by task syz.0.3024/7760
[  135.094776][    C1] 
[  135.097102][    C1] CPU: 1 PID: 7760 Comm: syz.0.3024 Not tainted 6.1.141-syzkaller-00039-g145c7fad733f #0
[  135.106915][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.116986][    C1] Call Trace:
[  135.120290][    C1]  <IRQ>
[  135.123138][    C1]  __dump_stack+0x21/0x24
[  135.127508][    C1]  dump_stack_lvl+0xee/0x150
[  135.132118][    C1]  ? __cfi_dump_stack_lvl+0x8/0x8
[  135.137179][    C1]  ? update_rq_clock+0x1c1/0x5c0
[  135.142131][    C1]  ? __run_timers+0x32b/0x9a0
[  135.146832][    C1]  print_address_description+0x71/0x210
[  135.152388][    C1]  print_report+0x4a/0x60
[  135.156744][    C1]  kasan_report+0x122/0x150
[  135.161246][    C1]  ? __run_timers+0x32b/0x9a0
[  135.165922][    C1]  __asan_report_store8_noabort+0x17/0x20
[  135.171647][    C1]  __run_timers+0x32b/0x9a0
[  135.176165][    C1]  ? sched_clock+0x9/0x10
[  135.180493][    C1]  ? sched_clock_cpu+0x6e/0x250
[  135.185345][    C1]  ? calc_index+0x200/0x200
[  135.189849][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  135.195053][    C1]  run_timer_softirq+0x6a/0xf0
[  135.199833][    C1]  handle_softirqs+0x1d7/0x600
[  135.204591][    C1]  ? irqtime_account_irq+0xc4/0x240
[  135.209788][    C1]  __irq_exit_rcu+0x52/0xf0
[  135.214290][    C1]  irq_exit_rcu+0x9/0x10
[  135.218535][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  135.224254][    C1]  </IRQ>
[  135.227185][    C1]  <TASK>
[  135.230110][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  135.236102][    C1] RIP: 0010:_raw_spin_lock+0x9b/0xe0
[  135.241396][    C1] Code: 00 00 00 48 89 df be 04 00 00 00 e8 9f 12 c4 fc 4c 89 f7 be 04 00 00 00 e8 92 12 c4 fc 8b 44 24 20 b9 01 00 00 00 f0 0f b1 0b <75> 2d 48 c7 04 24 0e 36 e0 45 4b c7 04 27 00 00 00 00 65 48 8b 04
[  135.261002][    C1] RSP: 0018:ffffc900045bf640 EFLAGS: 00000246
[  135.267092][    C1] RAX: 0000000000000000 RBX: ffff888106c0ebf0 RCX: 0000000000000001
[  135.275082][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc900045bf660
[  135.283055][    C1] RBP: ffffc900045bf6d0 R08: 0000000000000004 R09: 0000000000000003
[  135.291023][    C1] R10: fffff520008b7ecc R11: 1ffff920008b7ecc R12: dffffc0000000000
[  135.299036][    C1] R13: ffff8881342ff8c0 R14: ffffc900045bf660 R15: 1ffff920008b7ec8
[  135.307135][    C1]  ? __cfi__raw_spin_lock+0x10/0x10
[  135.312351][    C1]  ? __kasan_check_write+0x14/0x20
[  135.317478][    C1]  unix_stream_read_generic+0x13fd/0x2090
[  135.323207][    C1]  ? unix_stream_read_actor+0xc0/0xc0
[  135.328577][    C1]  ? __switch_to+0x51f/0xe30
[  135.333166][    C1]  ? __cfi_autoremove_wake_function+0x10/0x10
[  135.339240][    C1]  ? selinux_socket_recvmsg+0x208/0x2e0
[  135.344784][    C1]  ? __cfi_selinux_socket_recvmsg+0x10/0x10
[  135.350677][    C1]  unix_stream_recvmsg+0x165/0x1b0
[  135.355784][    C1]  ? __cfi_unix_stream_recvmsg+0x10/0x10
[  135.361416][    C1]  ? __cfi_unix_stream_read_actor+0x10/0x10
[  135.367314][    C1]  ? security_socket_recvmsg+0x99/0xc0
[  135.372815][    C1]  ? __cfi_unix_stream_recvmsg+0x10/0x10
[  135.378469][    C1]  ____sys_recvmsg+0x2a0/0x590
[  135.383241][    C1]  ? __cfi___futex_queue+0x10/0x10
[  135.388365][    C1]  ? __sys_recvmsg_sock+0x50/0x50
[  135.393406][    C1]  ? import_iovec+0x7c/0xb0
[  135.397931][    C1]  ___sys_recvmsg+0x1b2/0x510
[  135.402618][    C1]  ? __sys_recvmsg+0x270/0x270
[  135.407395][    C1]  ? __fget_files+0x2d5/0x330
[  135.412094][    C1]  ? __fdget+0x19c/0x220
[  135.416347][    C1]  __x64_sys_recvmsg+0x1ed/0x2c0
[  135.421286][    C1]  ? __cfi___x64_sys_recvmsg+0x10/0x10
[  135.426749][    C1]  ? __kasan_check_write+0x14/0x20
[  135.431871][    C1]  ? fpregs_restore_userregs+0x128/0x260
[  135.437509][    C1]  ? switch_fpu_return+0xe/0x10
[  135.442367][    C1]  x64_sys_call+0x75/0x9a0
[  135.446791][    C1]  do_syscall_64+0x4c/0xa0
[  135.451202][    C1]  ? clear_bhb_loop+0x30/0x80
[  135.455889][    C1]  ? clear_bhb_loop+0x30/0x80
[  135.460562][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  135.466451][    C1] RIP: 0033:0x7f31af58e929
[  135.470863][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.490465][    C1] RSP: 002b:00007f31b0464038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  135.498878][    C1] RAX: ffffffffffffffda RBX: 00007f31af7b5fa0 RCX: 00007f31af58e929
[  135.506850][    C1] RDX: 0000000040002002 RSI: 0000200000000000 RDI: 0000000000000004
[  135.514819][    C1] RBP: 00007f31af610ca1 R08: 0000000000000000 R09: 0000000000000000
[  135.522788][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  135.530759][    C1] R13: 0000000000000000 R14: 00007f31af7b5fa0 R15: 00007ffe8fdf1a88
[  135.538745][    C1]  </TASK>
[  135.541761][    C1] 
[  135.544080][    C1] Allocated by task 7564:
[  135.548397][    C1]  kasan_set_track+0x4b/0x70
[  135.552984][    C1]  kasan_save_alloc_info+0x25/0x30
[  135.558096][    C1]  __kasan_kmalloc+0x95/0xb0
[  135.562684][    C1]  __kmalloc+0xb1/0x1e0
[  135.566841][    C1]  hci_alloc_dev_priv+0x27/0x1bd0
[  135.571873][    C1]  hci_uart_tty_ioctl+0x3d6/0xa20
[  135.576906][    C1]  tty_ioctl+0x8ef/0xc60
[  135.581149][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  135.585832][    C1]  __x64_sys_ioctl+0x7b/0x90
[  135.590424][    C1]  x64_sys_call+0x58b/0x9a0
[  135.594926][    C1]  do_syscall_64+0x4c/0xa0
[  135.599345][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  135.605239][    C1] 
[  135.607557][    C1] Freed by task 7564:
[  135.611529][    C1]  kasan_set_track+0x4b/0x70
[  135.616129][    C1]  kasan_save_free_info+0x31/0x50
[  135.621154][    C1]  ____kasan_slab_free+0x132/0x180
[  135.626265][    C1]  __kasan_slab_free+0x11/0x20
[  135.631024][    C1]  slab_free_freelist_hook+0xc2/0x190
[  135.636397][    C1]  __kmem_cache_free+0xb7/0x1b0
[  135.641244][    C1]  kfree+0x6f/0xf0
[  135.644965][    C1]  hci_release_dev+0x13ad/0x1500
[  135.649899][    C1]  bt_host_release+0x82/0x90
[  135.654485][    C1]  device_release+0xa4/0x1d0
[  135.659081][    C1]  kobject_put+0x19d/0x280
[  135.663498][    C1]  put_device+0x1f/0x30
[  135.667656][    C1]  hci_dev_cmd+0x265/0x720
[  135.672073][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  135.676748][    C1]  sock_do_ioctl+0x101/0x310
[  135.681334][    C1]  sock_ioctl+0x4d8/0x6e0
[  135.685663][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  135.690348][    C1]  __x64_sys_ioctl+0x7b/0x90
[  135.694964][    C1]  x64_sys_call+0x58b/0x9a0
[  135.699467][    C1]  do_syscall_64+0x4c/0xa0
[  135.703875][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  135.709763][    C1] 
[  135.712084][    C1] Last potentially related work creation:
[  135.717790][    C1]  kasan_save_stack+0x3a/0x60
[  135.722462][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  135.727838][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  135.733648][    C1]  insert_work+0x51/0x300
[  135.737982][    C1]  __queue_work+0x9b1/0xd30
[  135.742496][    C1]  queue_work_on+0xd2/0x140
[  135.747169][    C1]  __hci_cmd_sync_sk+0xa3e/0xcf0
[  135.752107][    C1]  hci_cmd_sync_status+0x53/0x120
[  135.757130][    C1]  hci_dev_cmd+0x628/0x720
[  135.761550][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  135.766222][    C1]  sock_do_ioctl+0x101/0x310
[  135.770814][    C1]  sock_ioctl+0x4d8/0x6e0
[  135.775143][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  135.779821][    C1]  __x64_sys_ioctl+0x7b/0x90
[  135.784414][    C1]  x64_sys_call+0x58b/0x9a0
[  135.788913][    C1]  do_syscall_64+0x4c/0xa0
[  135.793329][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  135.799250][    C1] 
[  135.801567][    C1] Second to last potentially related work creation:
[  135.808136][    C1]  kasan_save_stack+0x3a/0x60
[  135.812804][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  135.818172][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  135.823981][    C1]  insert_work+0x51/0x300
[  135.828313][    C1]  __queue_work+0x9b1/0xd30
[  135.832850][    C1]  queue_work_on+0xd2/0x140
[  135.837356][    C1]  hci_cmd_timeout+0x191/0x200
[  135.842113][    C1]  process_one_work+0x71f/0xc40
[  135.846955][    C1]  worker_thread+0xa29/0x11f0
[  135.851632][    C1]  kthread+0x281/0x320
[  135.855700][    C1]  ret_from_fork+0x1f/0x30
[  135.860135][    C1] 
[  135.862452][    C1] The buggy address belongs to the object at ffff8881199d0000
[  135.862452][    C1]  which belongs to the cache kmalloc-8k of size 8192
[  135.876502][    C1] The buggy address is located 2560 bytes inside of
[  135.876502][    C1]  8192-byte region [ffff8881199d0000, ffff8881199d2000)
[  135.889948][    C1] 
[  135.892276][    C1] The buggy address belongs to the physical page:
[  135.898685][    C1] page:ffffea0004667400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1199d0
[  135.908923][    C1] head:ffffea0004667400 order:3 compound_mapcount:0 compound_pincount:0
[  135.917244][    C1] flags: 0x4000000000010200(slab|head|zone=1)
[  135.923327][    C1] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888100043500
[  135.931913][    C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  135.940488][    C1] page dumped because: kasan: bad access detected
[  135.946894][    C1] page_owner tracks the page as allocated
[  135.952600][    C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 7562, tgid 7561 (syz.7.2941), ts 130903326440, free_ts 130893019676
[  135.975366][    C1]  post_alloc_hook+0x1f5/0x210
[  135.980221][    C1]  prep_new_page+0x1c/0x110
[  135.984726][    C1]  get_page_from_freelist+0x2c7b/0x2cf0
[  135.990272][    C1]  __alloc_pages+0x19e/0x3a0
[  135.994863][    C1]  alloc_slab_page+0x6e/0xf0
[  135.999455][    C1]  new_slab+0x98/0x3d0
[  136.003530][    C1]  ___slab_alloc+0x6f6/0xb50
[  136.008209][    C1]  __slab_alloc+0x5e/0xa0
[  136.012545][    C1]  __kmem_cache_alloc_node+0x203/0x2c0
[  136.018012][    C1]  __kmalloc_node+0xa1/0x1e0
[  136.022607][    C1]  kvmalloc_node+0x294/0x480
[  136.027202][    C1]  pfifo_fast_init+0x3af/0x7a0
[  136.031974][    C1]  qdisc_create_dflt+0x150/0x3b0
[  136.036907][    C1]  dev_activate+0x2cf/0x1040
[  136.041495][    C1]  __dev_open+0x3ce/0x4f0
[  136.045819][    C1]  __dev_change_flags+0x21b/0x6b0
[  136.050838][    C1] page last free stack trace:
[  136.055504][    C1]  free_unref_page_prepare+0x742/0x750
[  136.060967][    C1]  free_unref_page+0x8f/0x530
[  136.065643][    C1]  __free_pages+0x67/0x100
[  136.070056][    C1]  __free_slab+0xca/0x1a0
[  136.074388][    C1]  __unfreeze_partials+0x160/0x190
[  136.079534][    C1]  put_cpu_partial+0xa9/0x100
[  136.084258][    C1]  __slab_free+0x1c4/0x280
[  136.088707][    C1]  ___cache_free+0xbf/0xd0
[  136.093128][    C1]  qlist_free_all+0xc6/0x140
[  136.097730][    C1]  kasan_quarantine_reduce+0x14a/0x170
[  136.103199][    C1]  __kasan_slab_alloc+0x24/0x80
[  136.108053][    C1]  slab_post_alloc_hook+0x4f/0x2d0
[  136.113171][    C1]  kmem_cache_alloc+0x16e/0x330
[  136.118040][    C1]  getname_flags+0xb9/0x500
[  136.122550][    C1]  __x64_sys_unlink+0x3c/0x50
[  136.127230][    C1]  x64_sys_call+0x958/0x9a0
[  136.131735][    C1] 
[  136.134055][    C1] Memory state around the buggy address:
[  136.139684][    C1]  ffff8881199d0900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.147754][    C1]  ffff8881199d0980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.155810][    C1] >ffff8881199d0a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.163888][    C1]                    ^
[  136.167960][    C1]  ffff8881199d0a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.176014][    C1]  ffff8881199d0b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.184065][    C1] ==================================================================
[  136.192119][    C1] Disabling lock debugging due to kernel taint
[  136.199077][    C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  136.210819][    C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  136.219240][    C1] CPU: 1 PID: 7760 Comm: syz.0.3024 Tainted: G    B              6.1.141-syzkaller-00039-g145c7fad733f #0
[  136.230516][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.240598][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  136.245894][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 b8 d2 28 00 4c 89 ff e8 f0 1f a9 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 5c 2c 6d 00 49 8b 7d 00 e8 d3 1b
[  136.265585][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  136.271664][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888116166540
[  136.279661][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  136.287648][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  136.295627][    C1] R10: ffffed102333a139 R11: 1ffff1102333a139 R12: dffffc0000000000
[  136.303608][    C1] R13: 0000000000000000 R14: ffff8881199d09c8 R15: 0000000000000008
[  136.311591][    C1] FS:  00007f31b04646c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  136.320534][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.327150][    C1] CR2: 000000110c3033b7 CR3: 0000000113fbe000 CR4: 00000000003506a0
[  136.335137][    C1] DR0: 0000000000008009 DR1: 0000000000000000 DR2: 0000000000000000
[  136.343113][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  136.351079][    C1] Call Trace:
[  136.354357][    C1]  <IRQ>
[  136.357214][    C1]  delayed_work_timer_fn+0x61/0x80
[  136.362339][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  136.368153][    C1]  call_timer_fn+0x46/0x2a0
[  136.372658][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  136.378468][    C1]  __run_timers+0x667/0x9a0
[  136.382979][    C1]  ? calc_index+0x200/0x200
[  136.387489][    C1]  ? kvm_sched_clock_read+0x18/0x40
[  136.392695][    C1]  run_timer_softirq+0x6a/0xf0
[  136.397466][    C1]  handle_softirqs+0x1d7/0x600
[  136.402243][    C1]  ? irqtime_account_irq+0xc4/0x240
[  136.407466][    C1]  __irq_exit_rcu+0x52/0xf0
[  136.411973][    C1]  irq_exit_rcu+0x9/0x10
[  136.416220][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  136.421854][    C1]  </IRQ>
[  136.424782][    C1]  <TASK>
[  136.427713][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  136.433696][    C1] RIP: 0010:_raw_spin_lock+0x9b/0xe0
[  136.438989][    C1] Code: 00 00 00 48 89 df be 04 00 00 00 e8 9f 12 c4 fc 4c 89 f7 be 04 00 00 00 e8 92 12 c4 fc 8b 44 24 20 b9 01 00 00 00 f0 0f b1 0b <75> 2d 48 c7 04 24 0e 36 e0 45 4b c7 04 27 00 00 00 00 65 48 8b 04
[  136.458602][    C1] RSP: 0018:ffffc900045bf640 EFLAGS: 00000246
[  136.464683][    C1] RAX: 0000000000000000 RBX: ffff888106c0ebf0 RCX: 0000000000000001
[  136.472662][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc900045bf660
[  136.480636][    C1] RBP: ffffc900045bf6d0 R08: 0000000000000004 R09: 0000000000000003
[  136.488611][    C1] R10: fffff520008b7ecc R11: 1ffff920008b7ecc R12: dffffc0000000000
[  136.496592][    C1] R13: ffff8881342ff8c0 R14: ffffc900045bf660 R15: 1ffff920008b7ec8
[  136.504578][    C1]  ? __cfi__raw_spin_lock+0x10/0x10
[  136.509795][    C1]  ? __kasan_check_write+0x14/0x20
[  136.514933][    C1]  unix_stream_read_generic+0x13fd/0x2090
[  136.520668][    C1]  ? unix_stream_read_actor+0xc0/0xc0
[  136.526041][    C1]  ? __switch_to+0x51f/0xe30
[  136.530656][    C1]  ? __cfi_autoremove_wake_function+0x10/0x10
[  136.536751][    C1]  ? selinux_socket_recvmsg+0x208/0x2e0
[  136.542316][    C1]  ? __cfi_selinux_socket_recvmsg+0x10/0x10
[  136.548223][    C1]  unix_stream_recvmsg+0x165/0x1b0
[  136.553344][    C1]  ? __cfi_unix_stream_recvmsg+0x10/0x10
[  136.558979][    C1]  ? __cfi_unix_stream_read_actor+0x10/0x10
[  136.564882][    C1]  ? security_socket_recvmsg+0x99/0xc0
[  136.570354][    C1]  ? __cfi_unix_stream_recvmsg+0x10/0x10
[  136.575993][    C1]  ____sys_recvmsg+0x2a0/0x590
[  136.580764][    C1]  ? __cfi___futex_queue+0x10/0x10
[  136.585892][    C1]  ? __sys_recvmsg_sock+0x50/0x50
[  136.590922][    C1]  ? import_iovec+0x7c/0xb0
[  136.595432][    C1]  ___sys_recvmsg+0x1b2/0x510
[  136.600115][    C1]  ? __sys_recvmsg+0x270/0x270
[  136.604888][    C1]  ? __fget_files+0x2d5/0x330
[  136.609576][    C1]  ? __fdget+0x19c/0x220
[  136.613830][    C1]  __x64_sys_recvmsg+0x1ed/0x2c0
[  136.618781][    C1]  ? __cfi___x64_sys_recvmsg+0x10/0x10
[  136.624249][    C1]  ? __kasan_check_write+0x14/0x20
[  136.629379][    C1]  ? fpregs_restore_userregs+0x128/0x260
[  136.635019][    C1]  ? switch_fpu_return+0xe/0x10
[  136.639881][    C1]  x64_sys_call+0x75/0x9a0
[  136.644308][    C1]  do_syscall_64+0x4c/0xa0
[  136.648723][    C1]  ? clear_bhb_loop+0x30/0x80
[  136.653429][    C1]  ? clear_bhb_loop+0x30/0x80
[  136.658117][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.664012][    C1] RIP: 0033:0x7f31af58e929
[  136.668432][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.688037][    C1] RSP: 002b:00007f31b0464038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  136.696449][    C1] RAX: ffffffffffffffda RBX: 00007f31af7b5fa0 RCX: 00007f31af58e929
[  136.704430][    C1] RDX: 0000000040002002 RSI: 0000200000000000 RDI: 0000000000000004
[  136.712404][    C1] RBP: 00007f31af610ca1 R08: 0000000000000000 R09: 0000000000000000
[  136.720383][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.728351][    C1] R13: 0000000000000000 R14: 00007f31af7b5fa0 R15: 00007ffe8fdf1a88
[  136.736349][    C1]  </TASK>
[  136.739381][    C1] Modules linked in:
[  136.743308][    C1] ---[ end trace 0000000000000000 ]---
[  136.748776][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  136.754068][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 b8 d2 28 00 4c 89 ff e8 f0 1f a9 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 5c 2c 6d 00 49 8b 7d 00 e8 d3 1b
[  136.773677][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  136.779753][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888116166540
[  136.787732][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  136.795705][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  136.803679][    C1] R10: ffffed102333a139 R11: 1ffff1102333a139 R12: dffffc0000000000
[  136.811652][    C1] R13: 0000000000000000 R14: ffff8881199d09c8 R15: 0000000000000008
[  136.819627][    C1] FS:  00007f31b04646c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  136.828552][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.835128][    C1] CR2: 000000110c3033b7 CR3: 0000000113fbe000 CR4: 00000000003506a0
[  136.843107][    C1] DR0: 0000000000008009 DR1: 0000000000000000 DR2: 0000000000000000
[  136.851087][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  136.859069][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[  136.866586][    C1] Kernel Offset: disabled
[  136.870917][    C1] Rebooting in 86400 seconds..